kali安装evillimiter实现同网段断网

kali安装evillimiter实现同网段断网

先使用魔法，让虚拟机里的kali能实现魔法上网

打开终端输入

(root㉿kali)-[~]
└─# cd /var       //切换到这个var目录存放文件
(root㉿kali)-[/var]
└─# git clone https://github.com/bitbrute/evillimiter.git
正克隆到 'evillimiter'...
remote: Enumerating objects: 256, done.
remote: Counting objects: 100% (106/106), done.
remote: Compressing objects: 100% (31/31), done.
remote: Total 256 (delta 81), reused 75 (delta 75), pack-reused 150 (from 1)
接收对象中: 100% (256/256), 68.84 KiB | 684.00 KiB/s, 完成.
处理 delta 中: 100% (158/158), 完成.
┌──(root㉿kali)-[/var]
└─# cd evillimiter		//进去
                                                                             
┌──(root㉿kali)-[/var/evillimiter]
└─# ls		//看看
bin        CODE_OF_CONDUCT.md  evillimiter  README.md
CHANGELOG  CONTRIBUTORS.md     LICENSE      setup.py
┌──(root㉿kali)-[/var/evillimiter]
└─# python3 setup.py install
running install
/usr/lib/python3/dist-packages/setuptools/_distutils/cmd.py:66: SetuptoolsDeprecationWarning: setup.py install is deprecated.
!!

        ********************************************************************************
        Please avoid running ``setup.py`` directly.
        Instead, use pypa/build, pypa/installer or other
        standards-based tools.

        See https://blog.ganssle.io/articles/2021/10/setup-py-deprecated.html for details.
        ********************************************************************************

......

Using /usr/lib/python3/dist-packages
Searching for scapy==2.5.0+git20240324.2b58b51
Best match: scapy 2.5.0+git20240324.2b58b51
Adding scapy 2.5.0+git20240324.2b58b51 to easy-install.pth file
Installing scapy script to /usr/local/bin

Using /usr/lib/python3/dist-packages
Searching for netifaces==0.11.0
Best match: netifaces 0.11.0
Adding netifaces 0.11.0 to easy-install.pth file

Using /usr/lib/python3/dist-packages
Searching for netaddr==0.10.1
Best match: netaddr 0.10.1
Adding netaddr 0.10.1 to easy-install.pth file
Installing netaddr script to /usr/local/bin

Using /usr/lib/python3/dist-packages
Searching for colorama==0.4.6
Best match: colorama 0.4.6
Adding colorama 0.4.6 to easy-install.pth file

Using /usr/lib/python3/dist-packages
Finished processing dependencies for evillimiter==1.5.0
                                                                             
┌──(root㉿kali)-[/var/evillimiter]
		//安装完成

将虚拟机改为桥接模式

──(root㉿kali)-[/var/evillimiter]
└─# ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host noprefixroute 
       valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 1000
    link/ether 00:0c:29:74:79:be brd ff:ff:ff:ff:ff:ff
    inet 10.201.3.181/22 brd 10.201.3.255 scope global dynamic noprefixroute eth0
       valid_lft 86398sec preferred_lft 86398sec
    inet6 fe80::a57c:2d94:e8c8:71be/64 scope link noprefixroute 
       valid_lft forever preferred_lft forever

使用方法

Last login: Mon Dec 16 04:27:34 2024 from 10.201.3.136
┌──(root㉿kali)-[~]
└─# evillimiter		//输入这个命令启动

███████╗██╗   ██╗██╗██╗       ██╗     ██╗███╗   ███╗██╗████████╗███████╗██████╗ 
██╔════╝██║   ██║██║██║       ██║     ██║████╗ ████║██║╚══██╔══╝██╔════╝██╔══██╗
█████╗  ██║   ██║██║██║       ██║     ██║██╔████╔██║██║   ██║   █████╗  ██████╔╝
██╔══╝  ╚██╗ ██╔╝██║██║       ██║     ██║██║╚██╔╝██║██║   ██║   ██╔══╝  ██╔══██╗
███████╗ ╚████╔╝ ██║███████╗  ███████╗██║██║ ╚═╝ ██║██║   ██║   ███████╗██║  ██║
╚══════╝  ╚═══╝  ╚═╝╚══════╝  ╚══════╝╚═╝╚═╝     ╚═╝╚═╝   ╚═╝   ╚══════╝╚═╝  ╚═╝
                by bitbrute  ~  limit devices on your network :3
                                    v1.5.0


OK   interface: eth0
OK   gateway ip: 10.201.0.1
OK   gateway mac: 00:be:d5:eb:ae:01
OK   netmask: 255.255.252.0

type help or ? to show command information.
(Main) >>> ?		//输入？看介绍

scan (--range [IP range])          scans for online hosts on your network.
                                   required to find the hosts you want to limit.
                                   e.g.: scan
                                         scan --range 192.168.178.1-192.168.178.50
                                         scan --range 192.168.178.1/24

hosts (--force)                    lists all scanned hosts.
                                   contains host information, including IDs.

limit [ID1,ID2,...] [rate]         limits bandwith of host(s) (uload/dload).
      (--upload) (--download)      e.g.: limit 4 100kbit
                                         limit 2,3,4 1gbit --download
                                         limit all 200kbit --upload

block [ID1,ID2,...]                blocks internet access of host(s).
      (--upload) (--download)      e.g.: block 3,2
                                         block all --upload

free [ID1,ID2,...]                 unlimits/unblocks host(s).
                                   e.g.: free 3
                                         free all

add [IP] (--mac [MAC])             adds custom host to host list.
                                   mac resolved automatically.
                                   e.g.: add 192.168.178.24
                                         add 192.168.1.50 --mac 1c:fc:bc:2d:a6:37

monitor (--interval [time in ms])  monitors bandwidth usage of limited host(s).
                                   e.g.: monitor --interval 600

analyze [ID1,ID2,...]              analyzes traffic of host(s) without limiting
        (--duration [time in s])   to determine who uses how much bandwidth.
                                   e.g.: analyze 2,3 --duration 120

watch                              detects host reconnects with different IP.
watch add [ID1,ID2,...]            adds host to the reconnection watchlist.
                                   e.g.: watch add 3,4
watch remove [ID1,ID2,...]         removes host from the reconnection watchlist.
                                   e.g.: watch remove all
watch set [attr] [value]           changes reconnect watch settings.
                                   e.g.: watch set interval 120

clear                              clears the terminal window.

quit                               quits the application.

(Main) >>> scan --range 10.201.3.136   	//这是我主机的真实地址/也可以是IP段

100% |██████████████████████████████████| 1/1
OK   1 hosts discovered.

(Main) >>> hosts		//查看扫描到的地址

┌Hosts──────────────┬───────────────────┬──────────┬────────┐
│ ID │ IP address   │ MAC address       │ Hostname │ Status │
├────┼──────────────┼───────────────────┼──────────┼────────┤
│ 0  │ 10.201.3.136 │ 00:e0:70:86:d9:31 │          │ Free   │
└────┴──────────────┴───────────────────┴──────────┴────────┘
(Main) >>> limit 0 1kbit 		//输入这个命令限制主机速度到1kb，此时主机断网了
OK   10.201.3.136 upload / download limited to 1kbit.
(Main) >>> WARNING: You should be providing the Ethernet destination MAC address when sending an is-at ARP.
WARNING: You should be providing the Ethernet destination MAC address when sending an is-at ARP.
WARNING: more You should be providing the Ethernet destination MAC address when sending an is-at ARP.
WARNING: You should be providing the Ethernet destination MAC address when sending an is-at ARP.
WARNING: You should be providing the Ethernet destination MAC address when sending an is-at ARP.
^C
OK   cleaning up... stand by...
WARNING: more You should be providing the Ethernet destination MAC address when sending an is-at ARP.
//ctrl+c终止，停止攻击