Linux command
yersinia 命令
安全
权限或系统影响较大,执行前请核对目标。
常用示例
Start interactive ncurses mode
sudo yersinia -I
Start GTK graphical interface
sudo yersinia -G
Launch DHCP starvation attack
sudo yersinia dhcp -attack 1 -i [eth0]
Send STP BPDU
sudo yersinia stp -attack 4 -i [eth0]
Start DTP attack
sudo yersinia dtp -attack 1 -i [eth0]
Flood CDP table
sudo yersinia cdp -attack 1 -i [eth0]
Start network daemon
sudo yersinia -D
说明
yersinia is a framework for performing Layer 2 network attacks. It exploits weaknesses in network protocols that operate at the data link layer, which are often overlooked in security assessments. The tool supports multiple attack modes: interactive ncurses console (-I), GTK graphical interface (-G), network daemon (-D), and direct command-line execution. Interactive mode displays protocol fields and available attacks with indicators for which are DoS attacks. Common attacks include DHCP starvation (exhausting IP pools), STP root bridge claiming (traffic interception), DTP trunk negotiation (VLAN access), and CDP flooding (switch table overflow). These attacks can disrupt network operations or enable man-in-the-middle positions.
参数
- -h, --help
- Display help
- -V, --Version
- Show version
- -G
- Start GTK graphical interface
- -I
- Start ncurses interactive mode
- -D
- Start as network daemon (telnet server on port 12000)
- -d
- Enable debug mode.
- -e
- Execute attack without interactive mode.
- -i _INTERFACE_
- Network interface to use.
- -l _FILE_
- Log output to file.
- -c _FILE_
- Read configuration from file.
- -r _FILE_
- Read packets from pcap file.
- -w _FILE_
- Write packets to pcap file.
- -attack _NUM_
- Attack number to execute.
FAQ
What is the yersinia command used for?
yersinia is a framework for performing Layer 2 network attacks. It exploits weaknesses in network protocols that operate at the data link layer, which are often overlooked in security assessments. The tool supports multiple attack modes: interactive ncurses console (-I), GTK graphical interface (-G), network daemon (-D), and direct command-line execution. Interactive mode displays protocol fields and available attacks with indicators for which are DoS attacks. Common attacks include DHCP starvation (exhausting IP pools), STP root bridge claiming (traffic interception), DTP trunk negotiation (VLAN access), and CDP flooding (switch table overflow). These attacks can disrupt network operations or enable man-in-the-middle positions.
How do I run a basic yersinia example?
Run `sudo yersinia -I` in a terminal, then adjust file names, paths, flags, or remote targets for your system.
What does -h, --help do in yersinia?
Display help