KINGSABRI/get_SYN-ACK.rb

## get_SYN-ACK.rb
=begin
PoC for parsing input/output packets' headers
This PoC will print "Yes, Got SYN/ACK guys!!" if it capture a AYN/ACK packet to/from 10.20.50.45
Note that you can change IP and flags and many mangy things
=end


require 'packetfu'

config = PacketFu::Config.new(PacketFu::Utils.whoami?(:iface=> "wlan0")).config
cap    = PacketFu::Capture.new(:iface => $iface, :start => true, :filter => "tcp and host 10.20.50.45")


puts "[+] Before Start Capturing.."
cap.stream.each do |pkt|
  puts "[+] After Start Capturing.. \n\n\n"

  puts "[-] Before Analysing Captured data.."
  packet = PacketFu::Packet.parse pkt		# parse packets

  puts "Are SYN/ACK have sent/recived?"
  if (packet.tcp_flags.syn == 1 && packet.tcp_flags.ack == 1)
     puts "\n Yes, Got SYN/ACK guys!! \n\n"
  end
  puts "[-] After Analysing Captured data.. \n\n\n"

end
	=begin
	PoC for parsing input/output packets' headers
	This PoC will print "Yes, Got SYN/ACK guys!!" if it capture a AYN/ACK packet to/from 10.20.50.45
	Note that you can change IP and flags and many mangy things
	=end


	require 'packetfu'

	config = PacketFu::Config.new(PacketFu::Utils.whoami?(:iface=> "wlan0")).config
	cap = PacketFu::Capture.new(:iface => $iface, :start => true, :filter => "tcp and host 10.20.50.45")


	puts "[+] Before Start Capturing.."
	cap.stream.each do \|pkt\|
	puts "[+] After Start Capturing.. \n\n\n"

	puts "[-] Before Analysing Captured data.."
	packet = PacketFu::Packet.parse pkt # parse packets

	puts "Are SYN/ACK have sent/recived?"
	if (packet.tcp_flags.syn == 1 && packet.tcp_flags.ack == 1)
	puts "\n Yes, Got SYN/ACK guys!! \n\n"
	end
	puts "[-] After Analysing Captured data.. \n\n\n"

	end