How to configure wallcracker



  • Config file is a python3 script that is read when wallcracker starts.

    key - stores key code.
    gateway - stores your router ip, sometimes router provide also dns or dhcp capabilities.
    dns - stores list of ip strings, you can type here your ISP dns ip.
    dhcp - stores list of ip strings, you can type here ip that are used by dhcp client.
    users - stores list of user names as strings, you can type here all user names that are using this desktop.
    browser - stores list of user names as strings, you can type here all user names that are allowed to use browser.
    show_green - stores True or False, show green records in explorer.

    key = 'xxxx-xxxx-xxxx'
    gateway = '192.168.0.1'
    dns = [gateway,'8.8.8.8','8.8.4.4','9.9.9.9']
    dhcp = [gateway,'255.255.255.255']
    users = ['root','guest','net','browse']
    browser = ['net','browse']
    show_green = True
    

    exe('firefox') - means find firefox exe path and use it as parent, firefox don't have child 'NONE'. Child is a subprocess, will be explain later.
    R_tcp - means remote (or right as explorer right side is always remote), tcp is type of protocol used. Allow firefox to connect with ports 443 on all IP and port 80 on all IP.
    R_udp - means remote (or right as explorer right side is always remote), udp is type of protocol used. Allow firefox to connect with ports 53 on specific dns IP.
    dev_name - allow to use all device names.
    user_name - allow to browser users only.
    safe_pid - allow only one pid of firefox of the same user to connect with the outside world.

    exe('firefox'): {'NONE': {
                    'R_tcp': { 443:['ALL'], 80:['ALL'] },
                    'L_tcp': {},
                    'R_udp': { 53:dns },
                    'L_udp': {},
                    'dev_name': ['ALL'],
                    'user_name': browser,
                    'safe_pid': True,
                             },
                    },
    

    safe_pid - if you try to use two different instances of lynx from the same user, it will block the second one.

    exe('lynx'):    {'NONE': {
                    'R_tcp': { 443:['ALL'], 80:['ALL'] },
                    'L_tcp': {},
                    'R_udp': { 53:dns },
                    'L_udp': {},
                    'dev_name': ['ALL'],
                    'user_name': users,
                    'safe_pid': True,
                              },
                    },
    

    R_tcp, R_udp - Allow nmap to connect on all ports for all ip.

    exe('nmap'):    {'NONE': {
                    'R_tcp': { 'ALL':['ALL'] },
                    'L_tcp': {},
                    'R_udp': { 'ALL':['ALL'] },
                    'L_udp': {},
                    'dev_name': ['ALL'],
                    'user_name': users,
                    'safe_pid': True,
                              },
                    },
    

    Dont forget on your desktop about sshd
    L_tcp - means local (or left as explorer left side is always local), tcp is type of protocol used. Allow sshd to receive connections on port 22 for all IP.

    exe('sshd'):    {'NONE': {
                    'R_tcp': { },
                    'L_tcp': { 22:['ALL',] },
                    'R_udp': {},
                    'L_udp': {},
                    'dev_name': ['ALL'],
                    'user_name': users,
                    'safe_pid': False,
                              },
                    },
    

    Would be smart to replace 'ALL' with list of specific IP for client and server.

    exe('ssh'):     {'NONE': {
                    'R_tcp': { 22:['ALL'], 222:['ALL'] },
                    'L_tcp': { },
                    'R_udp': { 53:dns},
                    'L_udp': {},
                    'dev_name': ['ALL'],
                    'user_name': users,
                    'safe_pid': True,
                              },
                    },