Autonomous System Discovery by TCP Traceroute

Code PYTHON :
#!/usr/bin/env python

# Author: St0rn (anbu-pentest.com)

#

# Use scapy

# Usage: as_discover.py target port

# 

# Autonomous System discovering (from yours to your target) by TCP Traceroute 

#



from scapy.all import *

import sys

import os

import socket

import commands



ips_list = list()

asn = list()

as_name = list()



def tcp_traceroute(target, port):

 fail = 0

 ttl = 1

 while True:

  ans, unans = sr(IP(dst=target, ttl=ttl)/TCP(dport=int(port), flags="S"), timeout=2, verbose=0)

  if not ans:

   print "["+str(ttl)+"] "+"* * * * *"

   ips_list.append("filtred")

   ttl+=1

   fail+=1

   if fail == 10:

    break

  else:

   temp = ans[0]

   if temp[1].src == socket.gethostbyname(target):

    getname = commands.getoutput(str("host " + temp[1].src + " | cut -d' ' -f5"))  

    print "["+str(ttl)+"] "+str(temp[1].src)+" ("+str(getname[0<img src="https://dev.n-pn.fr/forum/images/smilies/sad.png" alt="Sad" title="Sad" class="smilie smilie_8" />len(getname)-1)])+")"

    ips_list.append(temp[1].src)

    break

   else:

    getname = commands.getoutput(str("host " + temp[1].src + " | cut -d' ' -f5"))  

    print "["+str(ttl)+"] "+str(temp[1].src)+" ("+str(getname[0<img src="https://dev.n-pn.fr/forum/images/smilies/sad.png" alt="Sad" title="Sad" class="smilie smilie_8" />len(getname)-1)])+")"

    ips_list.append(temp[1].src)

    ttl+=1

 print "\nFinish with "+str(ttl)+" hop\n"



def get_asn(ips):

 for ip in ips_list:

  if ip != "filtred":

   as_infos = scapy.as_resolvers.AS_resolver_multi().resolve(ip)

   asn.append(as_infos[0][1])

   as_name.append(as_infos[0][2])

 for info in asn:

  nb = asn.index(info)

  if "AS" in str(info):

   print str(info)+" ["+as_name[nb]+"]"

  else:

   print "AS"+str(info)+" ["+as_name[nb]+"]" 



os.system("clear")

print "TCP Traceroute to %s\n" %(sys.argv[1]) 

tcp_traceroute(sys.argv[1],sys.argv[2])

print "AS Route to %s\n" %(sys.argv[1])

get_asn(ips_list)