The internet started as a trusted network, all end users were beyond reproach. We've gradually phased out this trust model as our world wide network became more public, yet some vestiges remain. One of these is inherent in public DHCP services. When a DHCP server is not restricted to a select range of MAC addresses, it must accept any MAC and trust the end device to be truthful. Rapid spoofing and registration of random MACs by a single hostile device may consume all available ip addresses on the network and exhaust the server's address range, preventing new devices from registering and creating a simple yet effective DOS. Eris is a proof of concept that is designed to do just that.
Built With
- berkeley-sockets
- mac
Log in or sign up for Devpost to join the conversation.