-
Notifications
You must be signed in to change notification settings - Fork 222
wifideaddrop
Anonymous file & message drop over Wi-Fi using a captive portal.
Turn your Evil-Cardputer into a temporary, offline, wireless dead drop.
A Dead Drop is a classic intelligence and underground technique used to exchange information without direct contact.
The WiFi Dead Drop module recreates this idea digitally: a temporary Wi-Fi access point exposing a captive portal where anyone nearby can upload files, download deposits, or leave notes without authentication or prior setup.
Everything happens locally, offline, and disappears as soon as the device is stopped.
[1] Evil-Cardputer starts a Wi-Fi Access Point
β
βΌ
[2] Captive Portal Triggered (Android / iOS / Windows)
β
βΌ
[3] Landing Page
- Upload files
- Leave text notes
β
βΌ
[4] Files stored on SD card
/evil/deaddrop/
β
βΌ
[5] Other clients can browse and download deposits
β
βΌ
[6] Live Dashboard on device
- Clients
- Uploads / Downloads
- Files
- Throughput
- πΆ Wi-Fi Access Point with cloned SSID
- π Captive portal compatible with Android, iOS and Windows
- π€ Anonymous file uploads (any type)
- π₯ Public file listing and downloads
- π Anonymous text notes (append-only)
- π Real-time on-device dashboard
- π Live throughput graphs (upload / download)
- πΎ SD card storage
- π§Ή Graceful shutdown (waits for active transfers)
While the Dead Drop is active, the Cardputer displays a live dashboard:
- Clients: number of connected devices
- Uploads: total completed uploads
- Downloads: total completed downloads
- Files: current number of stored files
- IO Throughput: KB/s upload & download
Small sparklines show activity evolution over time for:
- Connected clients
- Upload bandwidth
- Download bandwidth
All content is stored on the SD card:
/evil/deaddrop/ βββ file1.bin βββ picture.jpg βββ document.pdf βββ notes.txt
-
notes.txtcontains all submitted text notes (append-only) - Files are saved with sanitized filenames to prevent path traversal
The module answers common OS connectivity checks to force captive portal display:
-
Android:
/generate_204,/gen_204 -
iOS:
/hotspot-detect.html -
Windows:
/ncsi.txt,/connecttest.txt
Any unknown request is redirected to the landing page.
This module is intentionally minimal and anonymous:
- No authentication
- No encryption at application level
- No logging of client identities
- No IP storage
It is designed for:
- Demonstrations
- Training labs
- Field experiments
- Awareness of captive portal abuse patterns
No. The Dead Drop exists only while the module is running. Stopping it shuts down the access point and server.
No. Traffic is plain HTTP over Wi-Fi. This is intentional to keep the setup simple and compatible with captive portals.
Yes. The system tracks active transfers and performs a graceful shutdown, allowing in-flight uploads/downloads to complete when exiting.
No. This module does not exploit vulnerabilities. It demonstrates how captive portals can be used as anonymous exchange points.
WiFi Dead Drop is a practical illustration of how simple wireless infrastructure can be repurposed for anonymous data exchange.
- Installation
- Slave
- ESP32 RIG Tutorial
- Scan WiFi
- Select WiFi
- Clone & Details
- Captive Portal Management
- Admin WebUI
- Check Credential
- Probes Attack
- Sniffing Probes
- Karma Attack
- Automated Karma Attack
- Karma Spear
- Bluetooth Serial Control
- Wardriving
- Wardriving Master
- Beacon Spam
- Deauther
- Auto Deauther
- Evil Twin
- Handshake Master
- WiFi Raw Sniffing
- Sniff Raw Client
- WiFi Channel Visualizer
- Client Sniff And Deauth
- Handshakes/Deauth sniffing
- Wall Of Flipper
- Send Tesla Code with RFunit
- SSH Shell
- Scan Network and Port
- Full Network Scan
- Web Crawler
- PwnGridSpam
- Skimmer Detector
- Mouse Jiggler
- BadUSB
- Bluetooth Keyboard
- Reverse TCP Tunnel
- DHCP Starvation Attack
- Rogue DHCP Server
- Switch DNS
- Network Hijacking
- Printer Attack
- Web Siphoning Cookie
- Honeypot
- LLM Chat Stream
- EvilChatMesh
- Responder
- WPAD Abuse
- Crack NTLMv2
- FileManager
- UART Shell
- SIP toolkit
- CCTV toolkit
- SSDP poisoning
- SkyJack
- Wifi Dead Drop
- BLENameFlood
- Wall Of Airtag
- FindMyEvil
- UPnP Mapping
- UPnP NAT
- LDAPDump
- IMSI Catcher
- Open Wifi Checker
- CIW ZeroClick
- Settings
- Installation
- Slave
- ESP32 RIG Tutorial
- Scan WiFi
- Select WiFi
- Clone & Details
- Captive Portal Management
- Admin WebUI
- Check Credential
- Probes Attack
- Sniffing Probes
- Karma Attack
- Automated Karma Attack
- Karma Spear
- Bluetooth Serial Control
- Wardriving
- Wardriving Master
- Beacon Spam
- Deauther
- Auto Deauther
- Evil Twin
- Handshake Master
- WiFi Raw Sniffing
- Sniff Raw Client
- WiFi Channel Visualizer
- Client Sniff And Deauth
- Handshakes/Deauth sniffing
- Wall Of Flipper
- Send Tesla Code with RFunit
- SSH Shell
- Scan Network and Port
- Full Network Scan
- Web Crawler
- PwnGridSpam
- Skimmer Detector
- Mouse Jiggler
- BadUSB
- Bluetooth Keyboard
- Reverse TCP Tunnel
- DHCP Starvation Attack
- Rogue DHCP Server
- Switch DNS
- Network Hijacking
- Printer Attack
- Web Siphoning Cookie
- Honeypot
- LLM Chat Stream
- EvilChatMesh
- Responder
- WPAD Abuse
- Crack NTLMv2
- FileManager
- UART Shell
- SIP toolkit
- CCTV toolkit
- SSDP poisoning
- SkyJack
- Wifi Dead Drop
- BLENameFlood
- Wall Of Airtag
- FindMyEvil
- UPnP Mapping
- UPnP NAT
- LDAPDump
- IMSI Catcher
- Open Wifi Checker
- CIW ZeroClick
- TagTinker ESL
- Settings