Direct traffic to specific interface

alphasoc / flightsim

A utility to safely generate malicious network traffic patterns and evaluate controls.

https://alphasoc.com

Other

1.25k stars 132 forks source link

Direct traffic to specific interface #4

Closed jlawre23 closed 6 years ago

jlawre23 commented 6 years ago

Is there a way I can direct the traffic to a specific interface like you can with tcpreplay? I want to send the traffic to an interface I have a sensor attached directly to in order to sniff the traffic.

chrisforce1 commented 6 years ago

Indeed. Just use --interface with the run command, as shown below.

$ ./flightsim run --help
Run all simulators (default) or a particular test

Usage:
  flightsim run [c2-dns|dga|scan|tunnel] [flags]

Flags:
      --fast               run simulator fast without sleep intervals
  -h, --help               help for run
  -i, --interface string   network interface to use

jlawre23 commented 6 years ago

Sorry for wasting your time. I completely overlooked that option when looking for it. :|

chrisforce1 commented 6 years ago

All good!