Filtering the internet_detector tool ICMP requests at fakenet

Author: d35ha

packages/fakenet-ng.vm/tools/default.ini

@@ -116,9 +116,12 @@ DefaultUDPListener:    ProxyUDPListener
 BlackListPortsTCP: 139
 BlackListPortsUDP: 67, 68, 137, 138, 443, 1900, 5355
 
+# Specify ICMP IDs to be ignored when diverting the packets.
+# BlackListIDsICMP: 1234
+
 # Specify processes to ignore when diverting traffic. Windows example used
 # here.
-ProcessBlackList: internet_detector.exe
+# ProcessBlackList: java.exe
 
 # Specify processes to consider when diverting traffic (others will be
 # ignored). Linux examples used here.

packages/internet_detector.vm/tools/chocolateyinstall.ps1

@@ -5,6 +5,15 @@ $toolName = 'internet_detector'
 $category = 'Networking'
 $packageToolDir = "$(Split-Path -parent $MyInvocation.MyCommand.Definition)"
 
+# Modify fakenet's configuration to ignore the internet detector traffic
+$fakenetConfig = "$Env:RAW_TOOLS_DIR\fakenet\fakenet3.3\configs\config.ini"
+VM-Assert-Path $fakenetConfig
+
+$IcmpID = Get-Random -Maximum 0x10000
+$config = Get-Content -Path $fakenetConfig
+$config = $config -replace '^.*BlackListIDsICMP.*$', "BlackListIDsICMP: $IcmpID"
+Set-Content -Path $fakenetConfig -Value $config -Encoding UTF8 -Force
+
 # Create tool directory
 $toolDir = Join-Path ${Env:RAW_TOOLS_DIR} $toolName
 New-Item -Path $toolDir -ItemType Directory -Force -ea 0
@@ -14,8 +23,15 @@ VM-Assert-Path $toolDir
 $dependencies = "pyinstaller==6.11.1,pywin32==308,icmplib==3.0.4"
 VM-Pip-Install $dependencies
 
+# Set the ICMP ID at the tool script
+$scriptPath = "$packageToolDir\internet_detector.pyw"
+$tempScript = Join-Path ${Env:TEMP} "temp_$([guid]::NewGuid())"
+$script = Get-Content -Path $scriptPath
+$script = $script -replace '^ICMP_ID.*$', "ICMP_ID = $IcmpID"
+Set-Content -Path $tempScript -Value $script -Encoding UTF8 -Force
+
 # This wrapper is needed because PyInstaller emits an error when running as admin and this mitigates the issue.
-Start-Process -FilePath 'cmd.exe' -WorkingDirectory $toolDir -ArgumentList "/c pyinstaller --onefile -w --log-level FATAL --distpath $toolDir --workpath $packageToolDir --specpath $packageToolDir $packageToolDir\internet_detector.pyw" -Wait
+Start-Process -FilePath 'cmd.exe' -WorkingDirectory "$toolDir" -ArgumentList "/c pyinstaller --onefile -w --log-level FATAL --distpath `"$toolDir`" --workpath `"$packageToolDir`" --specpath `"$packageToolDir`" `"$tempScript`"" -Wait
 
 # Move images to %VM_COMMON_DIR% directory
 $imagesPath = Join-Path $packageToolDir "images"

packages/internet_detector.vm/tools/chocolateyuninstall.ps1

@@ -6,3 +6,8 @@ $category = 'Utilities'
 
 VM-Uninstall $toolName $category
 Unregister-ScheduledTask -TaskName 'Internet Detector' -Confirm:$false
+
+$fakenetConfig = "$Env:RAW_TOOLS_DIR\fakenet\fakenet3.3\configs\config.ini"
+$config = Get-Content -Path $fakenetConfig
+$config = $config -replace '^.*BlackListIDsICMP.*$', "# BlackListIDsICMP: 1234"
+Set-Content -Path $fakenetConfig -Value $config -Encoding UTF8 -Force

packages/internet_detector.vm/tools/internet_detector.pyw

@@ -36,6 +36,7 @@ CHECK_INTERVAL = 2  # Seconds
 #   no DNS resolution is needed.
 # - The used IP addresses are some of the largest public DNS servers to
 #   ensure zero or minimal downtime.
+ICMP_ID = 1234
 TEST_IPS = [
     "8.8.8.8",  # Google
     "8.8.4.4",  # Google
@@ -315,7 +316,7 @@ def check_internet():
     for ip_address in TEST_IPS:
         try:
             # Perform internet connectivity tests
-            ip_host = icmplib.ping(ip_address, 1)
+            ip_host = icmplib.ping(ip_address, 1, id=ICMP_ID)
             if ip_host.is_alive:
                 print(f"Internet connectivity detected via IP: {ip_address}")
                 return True