can now run on interfaces without a default gateway.

Initial support for #436

Author: tux-mind

cSploit/src/main/java/org/csploit/android/core/System.java

@@ -954,15 +954,22 @@ public static void reset() {
     synchronized (mTargets) {
       mTargets.clear();
 
-      Target network = new Target(mNetwork),
-              gateway = new Target(mNetwork.getGatewayAddress(), mNetwork.getGatewayHardware()),
-              device = new Target(mNetwork.getLocalAddress(), mNetwork.getLocalHardware());
+      Target network, gateway, device;
+
+      network = new Target(mNetwork);
+      device = new Target(mNetwork.getLocalAddress(), mNetwork.getLocalHardware());
+
 
-      gateway.setAlias(mNetwork.getSSID());
       device.setAlias(android.os.Build.MODEL);
 
       mTargets.add(network);
-      mTargets.add(gateway);
+
+      if(mNetwork.haveGateway()) {
+        gateway = new Target(mNetwork.getGatewayAddress(), mNetwork.getGatewayHardware());
+        gateway.setAlias(mNetwork.getSSID());
+        mTargets.add(gateway);
+      }
+
       mTargets.add(device);
 
       scanThemAll();
@@ -1004,7 +1011,9 @@ public static void markNetworkAsDisconnected() {
 
   public static void markInitialNetworkTargetsAsConnected() {
     InetAddress localAddress = mNetwork.getLocalAddress();
+    boolean haveGateway = mNetwork.haveGateway();
     InetAddress gatewayAddress = mNetwork.getGatewayAddress();
+
     synchronized (mTargets) {
       for (Target t : mTargets) {
         switch (t.getType()) {
@@ -1014,7 +1023,7 @@ public static void markInitialNetworkTargetsAsConnected() {
             }
           default:
             if (localAddress.equals(t.getAddress()) ||
-                    gatewayAddress.equals(t.getAddress())) {
+                    (haveGateway && gatewayAddress.equals(t.getAddress()))) {
               t.setConneced(true);
             }
             break;
@@ -1221,10 +1230,6 @@ public static Collection<Exploit> getCurrentExploits() {
     return getCurrentTarget().getExploits();
   }
 
-  public static String getGatewayAddress() {
-    return mNetwork.getGatewayAddress().getHostAddress();
-  }
-
   public static boolean isForwardingEnabled() {
     boolean forwarding = false;
     BufferedReader reader;

cSploit/src/main/java/org/csploit/android/net/Network.java

@@ -34,6 +34,7 @@
 import java.io.FileInputStream;
 import java.io.IOException;
 import java.io.InputStreamReader;
+import java.lang.reflect.Method;
 import java.net.InetAddress;
 import java.net.InterfaceAddress;
 import java.net.NetworkInterface;
@@ -101,6 +102,7 @@ public String toString() {
   private IP4Address mNetmask = null;
   private IP4Address mLocal = null;
   private IP4Address mBase = null;
+  private Method mTetheredIfacesMethod = null;
 
   /**
    * see http://en.wikipedia.org/wiki/Reserved_IP_addresses
@@ -121,6 +123,7 @@ public Network(Context context, String iface) throws SocketException, UnknownHos
     mGateway = new IP4Address(mInfo.gateway);
     mNetmask = getNetmask();
     mBase = new IP4Address(mInfo.netmask & mInfo.gateway);
+    mTetheredIfacesMethod = getTetheredIfacesMethod(mConnectivityManager);
 
     if (iface != null) {
       if (initNetworkInterface(iface))
@@ -136,6 +139,15 @@ public Network(Context context, String iface) throws SocketException, UnknownHos
     throw new NoRouteToHostException("Not connected to any network.");
   }
 
+  private static Method getTetheredIfacesMethod(ConnectivityManager connectivityManager) {
+    try {
+      return connectivityManager.getClass().getDeclaredMethod("getTetheredIfaces");
+    } catch (NoSuchMethodException e) {
+      Logger.warning("unable to get 'ConnectivityManager#getTetheredIfaces()': " + e.getMessage());
+      return null;
+    }
+  }
+
   public boolean initNetworkInterface(String iface) {
 
     try {
@@ -158,10 +170,17 @@ public boolean initNetworkInterface(String iface) {
                       Short.toString(ifaceAddress.getNetworkPrefixLength()));
 
       mLocal = new IP4Address(su.getInfo().getAddress());
-      mGateway = new IP4Address(getSystemGateway(mInterface.getDisplayName()));
       mNetmask = new IP4Address(su.getInfo().getNetmask());
       mBase = new IP4Address(su.getInfo().getNetworkAddress());
 
+      String gateway = getSystemGateway(mInterface.getDisplayName());
+
+      if(gateway == null) {
+        mGateway = null;
+      } else {
+        mGateway = new IP4Address(gateway);
+      }
+
       return true;
     } catch (Exception e) {
       Logger.error("Error: " + e.getLocalizedMessage());
@@ -194,11 +213,11 @@ public boolean equals(Network network) {
   }
 
   public boolean isInternal(byte[] address) {
-    byte[] gateway = mGateway.toByteArray();
+    byte[] local = mLocal.toByteArray();
     byte[] mask = mNetmask.toByteArray();
 
-    for (int i = 0; i < gateway.length; i++)
-      if ((gateway[i] & mask[i]) != (address[i] & mask[i]))
+    for (int i = 0; i < local.length; i++)
+      if ((local[i] & mask[i]) != (address[i] & mask[i]))
         return false;
 
     return true;
@@ -265,8 +284,25 @@ public InetAddress getNetmaskAddress() {
     return mNetmask.toInetAddress();
   }
 
+  public boolean haveGateway() {
+    return mGateway != null;
+  }
+
+  public boolean isTetheringEnabled() {
+    if(mTetheredIfacesMethod == null) {
+      return false;
+    }
+    try {
+      String[] ifaces = (String[]) mTetheredIfacesMethod.invoke(mConnectivityManager);
+      return ifaces.length > 0;
+    } catch (Exception e) {
+      Logger.error("unable to retrieve tethered ifaces: " + e.getMessage());
+      return false;
+    }
+  }
+
   public InetAddress getGatewayAddress() {
-    return mGateway.toInetAddress();
+    return mGateway == null ? null : mGateway.toInetAddress();
   }
 
   public byte[] getGatewayHardware() {

cSploit/src/main/java/org/csploit/android/plugins/mitm/MITM.java

@@ -95,16 +95,22 @@ static class Action{
     public String name;
     public String description;
     public OnClickListener listener;
+    public ActionEnabler enabler;
 
-    public Action(String name, String description, int resourceId, OnClickListener listener){
+    public Action(String name, String description, int resourceId, OnClickListener listener, ActionEnabler enabler){
       this.resourceId = resourceId;
       this.name = name;
       this.description = description;
       this.listener = listener;
+      this.enabler = enabler;
     }
 
     public Action(String name, String description, OnClickListener listener){
-      this(name, description, R.drawable.action_plugin, listener);
+      this(name, description, R.drawable.action_plugin, listener, null);
+    }
+
+    public interface ActionEnabler {
+      boolean isEnabled();
     }
   }
 
@@ -138,11 +144,11 @@ public View getView(int position, View convertView, ViewGroup parent){
         if (getSharedPreferences("THEME", 0).getBoolean("isDark", false))
             row.setBackgroundResource(R.drawable.card_background_dark);
         holder = new ActionHolder();
-        holder.icon = (ImageView) (row != null ? row.findViewById(R.id.actionIcon) : null);
-        holder.name = (TextView) (row != null ? row.findViewById(R.id.itemName) : null);
-        holder.description = (TextView) (row != null ? row.findViewById(R.id.itemDescription) : null);
-        holder.activity = (ProgressBar) (row != null ? row.findViewById(R.id.itemActivity) : null);
-        if(row != null) row.setTag(holder);
+        holder.icon = (ImageView) row.findViewById(R.id.actionIcon);
+        holder.name = (TextView) row.findViewById(R.id.itemName);
+        holder.description = (TextView) row.findViewById(R.id.itemDescription);
+        holder.activity = (ProgressBar) row.findViewById(R.id.itemActivity);
+        row.setTag(holder);
 
       } else holder = (ActionHolder) row.getTag();
 
@@ -152,7 +158,8 @@ public View getView(int position, View convertView, ViewGroup parent){
       holder.name.setText(action.name);
       holder.description.setText(action.description);
 
-      if(row != null) row.setOnClickListener(action.listener);
+      row.setOnClickListener(action.listener);
+      row.setEnabled(action.enabler == null || action.enabler.isEnabled());
 
       return row;
     }
@@ -442,7 +449,7 @@ public void onClick(View v) {
                                 );
                         overridePendingTransition(R.anim.fadeout, R.anim.fadein);
                       }
-                    }));
+                    }, null));
 
     mActions.add(new Action
     (
@@ -452,7 +459,7 @@ public void onClick(View v) {
       new OnClickListener(){
         @Override
         public void onClick(View v){
-          if(System.checkNetworking(MITM.this) == false)
+          if(!System.checkNetworking(MITM.this))
             return;
 
           setStoppedState();
@@ -467,7 +474,7 @@ public void onClick(View v){
             );
           overridePendingTransition(R.anim.fadeout, R.anim.fadein);
         }
-      }));
+      }, null));
 
 
       mActions.add(new Action
@@ -478,7 +485,7 @@ public void onClick(View v){
                new OnClickListener() {
                @Override
                public void onClick(View v) {
-                    if (System.checkNetworking(MITM.this) == false)
+                    if (!System.checkNetworking(MITM.this))
                        return;
 
                setStoppedState();
@@ -493,7 +500,7 @@ public void onClick(View v) {
                );
                  overridePendingTransition(R.anim.fadeout, R.anim.fadein);
                           }
-      }));
+      }, null));
 
     mActions.add(new Action
     (
@@ -503,7 +510,7 @@ public void onClick(View v) {
       new OnClickListener(){
         @Override
         public void onClick(View v){
-          if(System.checkNetworking(MITM.this) == false)
+          if (!System.checkNetworking(MITM.this))
             return;
 
           setStoppedState();
@@ -518,7 +525,7 @@ public void onClick(View v){
             );
           overridePendingTransition(R.anim.fadeout, R.anim.fadein);
         }
-      }));
+      }, null));
 
     mActions.add(new Action
     (
@@ -528,19 +535,21 @@ public void onClick(View v){
       new OnClickListener(){
         @Override
         public void onClick(View v){
-          if(System.checkNetworking(MITM.this) == false)
+          if (!System.checkNetworking(MITM.this))
             return;
 
           final ProgressBar activity = (ProgressBar) v.findViewById(R.id.itemActivity);
 
           if(activity.getVisibility() == View.INVISIBLE){
-            if(System.getCurrentTarget().getType() != Target.Type.ENDPOINT)
+            if (System.getCurrentTarget().getType() != Target.Type.ENDPOINT) {
               new ErrorDialog(getString(R.string.error), getString(R.string.mitm_connection_kill_error), MITM.this).show();
-
-            else{
+            } else if(!System.getNetwork().haveGateway() && !System.getNetwork().isTetheringEnabled()) {
+              new ErrorDialog(getString(R.string.error), "Connection killer requires a gateway or active Tethering", MITM.this).show();
+            } else {
               setStoppedState();
 
               try {
+                if(System.getNetwork().haveGateway()) {
                 mConnectionKillerProcess = System.getTools().arpSpoof.spoof(System.getCurrentTarget(), new ArpSpoof.ArpSpoofReceiver() {
 
                   @Override
@@ -560,6 +569,10 @@ public void run() {
                     });
                   }
                 });
+                } else {
+                  mConnectionKillerProcess = null;
+                  System.setForwarding(false);
+                }
 
                 activity.setVisibility(View.VISIBLE);
 
@@ -575,10 +588,19 @@ public void run() {
               mConnectionKillerProcess = null;
             }
 
+            if(!System.getNetwork().haveGateway() && System.getNetwork().isTetheringEnabled()) {
+              System.setForwarding(true);
+            }
+
             activity.setVisibility(View.INVISIBLE);
           }
         }
-      }));
+      }, new Action.ActionEnabler() {
+      @Override
+      public boolean isEnabled() {
+        return System.getNetwork().haveGateway() || System.getNetwork().isTetheringEnabled();
+      }
+    }));
 
     mActions.add(new Action
     (
@@ -643,7 +665,7 @@ public void onError(String error, int resId){
           } else
             setStoppedState();
         }
-      }));
+      }, null));
 
     mActions.add(new Action
     (
@@ -745,7 +767,7 @@ public void onError(String error, int resId){
             setStoppedState();
           }
         }
-      }));
+      }, null));
 
     mActions.add(new Action
     (
@@ -825,7 +847,7 @@ public void onError(String error, int resId){
           } else
             setStoppedState();
         }
-      }));
+      }, null));
 
     mActions.add(new Action
     (
@@ -835,7 +857,7 @@ public void onError(String error, int resId){
       new OnClickListener(){
         @Override
         public void onClick(View v){
-          if(System.checkNetworking(MITM.this) == false)
+          if(!System.checkNetworking(MITM.this))
             return;
 
           final ProgressBar activity = (ProgressBar) v.findViewById(R.id.itemActivity);
@@ -912,7 +934,7 @@ public void onError(String error, int resId){
             setStoppedState();
           }
         }
-      }));
+      }, null));
 
     mActions.add(new Action
     (
@@ -921,7 +943,7 @@ public void onError(String error, int resId){
       new OnClickListener(){
       @Override
       public void onClick(View v){
-        if(System.checkNetworking(MITM.this) == false)
+        if(!System.checkNetworking(MITM.this))
           return;
 
         final ProgressBar activity = (ProgressBar) v.findViewById(R.id.itemActivity);