1 :: Script to null route an ip address.
6 FOR /F "TOKENS=1* DELIMS= " %%A IN ('DATE/T') DO SET DAT=%%A %%B
7 FOR /F "TOKENS=1-3 DELIMS=:" %%A IN ("%TIME%") DO SET TIM=%%A:%%B:%%C
9 :: Check for required arguments
10 IF /I "%1"=="" GOTO ERROR
11 IF /I "%2"=="" GOTO ERROR
12 IF /I "%3"=="" GOTO ERROR
14 :: Check for a valid IP
15 ECHO "%3" | %WINDIR%\system32\findstr.exe /R "\." >nul || GOTO ipv6
27 IF /I "%1"=="add" GOTO ADD
28 IF /I "%1"=="delete" GOTO DEL
31 ECHO Invalid argument(s).
32 ECHO Usage: route-null.cmd ^(ADD^|DELETE^) user IP_Address
33 ECHO Example: route-null.cmd ADD - 1.2.3.4
36 :: Adding IP to be null-routed.
39 %WINDIR%\system32\route.exe ADD %3/%prefixlength% %gateway%
41 ECHO %DAT%%TIM% "%~f0" %1 %2 %3 >> "%OSSECPATH%active-response\active-responses.log"
45 %WINDIR%\system32\route.exe DELETE %3/%prefixlength%
46 ECHO %DAT%%TIM% "%~f0" %1 %2 %3 >> "%OSSECPATH%active-response\active-responses.log"