Do it all tool for CAN-BUS Exploration, Enumeration and Exploitation
Written by and
- Add ICSIM script?
- Add data abstraction modules
- DBC file conversion
- Matplotlib?
- Machine learning?
- Module for creating new DBC files?
- Windows interface setup
- Make GUI front end for raspberry pi screen and infotainment uses
- Fix --version flag
- Add multicast options for multiple output types
- Add replay-dump with correct timings
- Cross module execution
CARpwnd is a colaborative project that is intended to be a framework for building automotive hacking tools. There is a particular focus on the CAN bus but in theory anything can be added to it due to its dynamic loading of modules. Modules can be added or removed at will allowing for very small package sizes to be installed on micro computers aslong as python is installed. A majority of the base modules utilize Python-Can and hence are OS agnostic. Windows and Linux specific modules are also included and will the user will be flaged if they are trying to run an incompatible module. Contributions are welcomed and anything that is of value and isnt already included will be added to the next release.
Installation is easy and the only required dependencies currently are python-can, cantools, click and canutils.
For a Debian based system:
sudo pip install python-can cantools click
sudo apt install canutils
To download the repository
git clone https://github.com/CrashOverid3/CARpwned
The main carpwnd program will be in ./CARpwnd/carpwnd and can be run as an executable
cd ./CARpwnd
./carpwnd
The execution of carpwnd is as follows ./carpwnd <module> <submodule> [Options] <arguments>
Example:./carpwnd capture store -c can0 -e txt socketcan output.txt
Injects individual CAN packets into the selected python-can supported interface
Usage: carpwnd injection [OPTIONS] COMMAND [ARGS]...
Options:
-h, --help Show this message and exit.
Commands:
inject-frame 'injection inject_frame' will inject a can frame using...
replay-dump 'injection replay_dump' will inject all of the packets on...
Captures packets from a python-can supported interface and either dumps them to a file or the terminal
Usage: carpwnd capture [OPTIONS] COMMAND [ARGS]...
Options:
-h, --help Show this message and exit.
Commands:
print 'capture print' will output the captured frames to stdout
store 'capture store' command will dump can data into file specified
Converts database and captured interface formats to any other format supported by python-can and cantools.
Usage: carpwnd convert [OPTIONS] COMMAND [ARGS]...
Options:
-h, --help Show this message and exit.
Commands:
tofile 'convert tofile' Converts input file to a different format and...
Simmilar to Capture but it sends and recieves packets over a multicast udp connection
Usage: carpwnd multicast [OPTIONS] COMMAND [ARGS]...
Options:
-h, --help Show this message and exit.
Commands:
recieve 'multicast recieve' recieves frames over udp multicast and...
send 'multicast send' sends can frames over udp multicast
Script that sets an interface up on a linux machine. Does nothing if the machine is windows or macos.
Usage: carpwnd interface [OPTIONS] COMMAND [ARGS]...
Options:
-h, --help Show this message and exit.
Commands:
setup 'interface setup' Setup ICSIM style virtual socketcan interface
Each module is just a seperate python file that is placed in the carpwnd-tools directory. The file located at carpwnd/example-tool-template/example.py is a copy of the capture module with an excessive ammount of comments added to describe how it works.
The following is a general template of how modules in carpwnd are written.
#click argument parsing requirements for each module
@click.group()
#Set name for the click commands. In this case its 'cli'
def cli():pass
#set first command
@cli.command()
#click options
@click.option("-e", "--example-option", help="example option")
#click arguments
@click.argument("example-argument")
#first module command that has the previous options and arguments
def example1(example_option, example_argument)
#Module command help text
"""
example help text
"""
function contents...
#second command stuff
@cli.command()
@cli.option()
@cli.argument()
def example2()
"""
help page
"""
function contents...