Skip to content

benjamin-jones/wccpscan

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

21 Commits
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
enumerate_all.sh
enumerate_all.sh
 
 
inetutils.py
inetutils.py
 
 
ip.py
ip.py
 
 
parse_enum_list.py
parse_enum_list.py
 
 
wccp.tpl
wccp.tpl
 
 
wccp2pcap.py
wccp2pcap.py
 
 
wccpenum.py
wccpenum.py
 
 
wccplib.py
wccplib.py
 
 
wccpreflect.py
wccpreflect.py
 
 
wccpscan.py
wccpscan.py
 
 
wccpspoof.py
wccpspoof.py
 
 
zmap_example.sh
zmap_example.sh
 
 

Repository files navigation

wccpscan

A WCCP service enumeration scanner and spoofer

You can use this to find and politely ask so configured routers and switches to foward you HTTP traffic using a GRE tunnel :)

Scanning

Usage: ./wccpscan.py -t <ip range begin>-<ip range end> -s <client IP routers should respond to>

Spoofing

Usage: ./wccpspoof.py -t <target router IP> -s <client IP routers should forward traffic to>

You must have a gre tunnel configured to access traffic:

$ sudo modprobe ip_gre

$ sudo ip tunnel add gre0 mode gre remote <router IP> local <client IP> ttl 255

$ sudo ip link set gre0 up

Then you should forward the traffic to an application:

$ sysctl -w net.ipv4.ip_foward=1

$ sysctl -w net.ipv4.conf.all.send_redirects=0

$ iptables -t nat -A PREROUTING -i gre0 -p tcp --dport 80 -j REDIRECT --to-port <whatever port>

Remember that to properly return traffic to the client they must be routable from your proxy or behind a routable NAT, otherwise you can try to return responses over the GRE tunnel!

Happy proxying!

About

A WCCP service enumeration scanner

Resources

Readme

License

GPL-2.0 license
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Languages