Worked a bit on the client discovery function, it runs, but doesn't pick up anything at the moment. This is most likely due to an issue with not correctly channel hopping nor have I focused down on a specific channel. So the next goal is to go back to the disc() function and fix the issue with getting the correct channel. After we fix that we're going to build a default function to channel hop and start off with that in order to find clients. Once that is complete will hone the function for selecting a specific channel from argument and really drive home the information we can gather with --client-discover

Author: Islc12

discover.py

@@ -26,8 +26,8 @@ def disc(interface):
         disc_net = set() # set to store unique network names - set is used to avoid duplicates
 
         print("\nScanning for networks, press CTRL+C to stop\n")
-        print(f"{'BSSID':<20}{'SSID'.center(20)}{'Channel'.center(10)}{'Frequency Band'.center(16)}{'Signal Strength'.center(20)}{'MFP Required'.center(12)}{'MFP Enabled'.rjust(14)}")
-        print("-" * 112)
+        print(f"{'BSSID':<20}{'SSID'.center(35)}{'Channel'.center(10)}{'Frequency Band'.center(16)}{'Signal Strength'.center(20)}{'MFP Required'.center(12)}{'MFP Enabled'.rjust(14)}")
+        print("-" * 127)
         while True:
             try:
                 p = s.recvfrom(2048)[0] # recieves packet from socket, up to 2048 bytes, extracts raw packet data
@@ -102,7 +102,7 @@ def disc(interface):
                     ssid = "".join(chr(x) if chr(x) in string.printable else "" for x in ssid_raw) # convert ssid bytes to string
 
                     if (bssid, ssid) not in disc_net: # check if network has already been discovered
-                        print(f"{bssid:<20}{ssid.center(20)}{str(channel).center(10)}{freq_band.center(16)}{(str(sigstr) + ' dBm').center(20)}{mfp_required.center(12)}{mfp_enabled.rjust(14)}") # print network info
+                        print(f"{bssid:<20}{ssid.center(35)}{str(channel).center(10)}{freq_band.center(16)}{(str(sigstr) + ' dBm').center(20)}{mfp_required.center(12)}{mfp_enabled.rjust(14)}") # print network info
                         disc_net.add((bssid, ssid)) # if not discovered, add to set
 
             # used to handle network interuptions - typically caused by additional network services such as NetworkManager
@@ -126,18 +126,36 @@ def disc(interface):
 
 
 def client_disc(bssid, interface):
+    pass
     try:
         s = socket.socket(socket.AF_PACKET, socket.SOCK_RAW, socket.htons(0x0003))
         s.bind((interface, 0))
 
         client_disc = set()
 
         print("\nScanning for networks, press CTRL+C to stop\n")
+        print(f"{'Client':<20}{'Source':<20}{'BSSID':<20}")
         while True:
             try:
                 p = s.recvfrom(2048)[0]
 
-                # Enter code here
+                frame_control = p[0:2]
+                frame_type = (frame_control[0] & 0b00001100) >> 2
+                frame_subtype = (frame_control[0] & 0b11110000) >> 4
+
+                if frame_type in (0, 2):
+                    to_ds = (frame_control[1] & 0b00000001) >> 0
+                    from_ds = (frame_control[1] & 0b00000010) >> 1
+
+                    if to_ds in (0, 1) and from_ds in (0, 1):
+                        dest_mac = p[4:10]
+                        src_mac = p[10:16]
+                        bssid_mac = p[16:22]
+                    else:
+                        continue
+
+                    if bssid_mac == bssid:
+                        print(f"{dest_mac:<20}{src_mac.center(20)}{bssid_mac.center(20)}")
 
             except OSError as e:
                 if e.errno == 100:
@@ -159,4 +177,4 @@ def client_disc(bssid, interface):
 
 if __name__  == "__main__":
     disc()
-    client_disc()
+    client_disc()

okeus

@@ -88,7 +88,7 @@ def main():
         print("Error: target input required") # requires target input for most operations
         exit(1)
     if (power_level or broadcast_attack or timedelay or frame_flood or num_frames or
-    frag_size or sequence_number or reason or durof_attack) and not network_bssid:
+    frag_size or sequence_number or reason or dur_of_attack) and not network_bssid:
         print("Error: network BSSID required") # requires network BSSID for most operations
         exit(1)
 

okeusstrike.1

@@ -70,30 +70,30 @@ OPTIONS
         Specifies that the deauthentication frames should be fragmented and will be fragmented based on a user supplied size in bytes. This option will automatically
         add padding for fragment sizes that are odd in number to the frame size or are larger than the frame size. 
             Example: if the frame size is 50 bytes, the user inputs 26 bytes for the fragment size, OkeusStrike will send (2) 26 byte fragmented frames, with each frame
-        having an extra byte of padding to make up for the odd numbered total. 
+            having an extra byte of padding to make up for the odd numbered total. 
 
         This is also true for input fragment sizes larger than the frame size, in which case the frame will be padded and fragmented based on the specified
         fragment size. 
             Example: if the frame size is 50 bytes, the user inputs 60 bytes for the fragment size, OkeusStrike will send (2) 60 byte fragmented frames, with each
-        frame having 25 bytes of the original frame and 35 bytes of padding. 
+            frame having 25 bytes of the original frame and 35 bytes of padding. 
 
         For fragment sizes are a less than half the size of the original frame size, the frame will be
         divided into fragments of the specified size and sent in as many fragments as needed to send the entire frame with padding for equal sized fragments.
-            Example: if the frame size is 50 bytes, the user inputs 20 bytes for the fragment size, OkeusStrike will send (3) 20 byte fragmented frames, with each frame
-        an equal amount of padding to make up for the odd numbered total.
+            Example: if the frame size is 50 bytes, the user inputs 24 bytes for the fragment size, OkeusStrike will send (2) 24 byte fragmented frames, followed by (1) 
+            2 byte fragmented frame, for a total of (3) fragmented frames.
 
         This option can be combined with --sequence (described below) for increased control over the fragmentation of the deauthentication frame.
 
     --sequence <sequence_number>
        Specifies the total number of fragmented frames to send from user input. The option will automatically provide padding for odd numbered totals.
 
             Example: if the frame size is 50 bytes, the user inputs (4) for the sequence number, OkeusStrike will send (4) frames of 13 bytes each, with each frame sending
-       a portion of the origial frame and padded to account for the odd numbered total.
+            a portion of the origial frame and padded to account for the odd numbered total.
 
-       If the user inputs a sequence number greater than the size of the frame, then OkeusStrike will send as many fragmented frames as possible with the original frame
-       data and then send the remaining frames with padding to make up the total number of frames specified.
+        If the user inputs a sequence number greater than the size of the frame, then OkeusStrike will send as many fragmented frames as possible with the original frame
+        data and then send the remaining frames with padding to make up the total number of frames specified.
             Example: if the frame size is 50 bytes, the user inputs (60) for the sequence number, OkeusStrike will send the first 50 frames with 1 byte each of the original
-       data, and the remaining 10 frames will be sent with 1 byte of padding each.
+            data, and the remaining 10 frames will be sent with 1 byte of padding each.
 
         This option can be combined with --fragment (described above) for increased control over the fragmentation of the deauthentication frame.