Skip to content

vavkamil/SpyPortal

main
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
1 branch 0 tags
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
OWASP_talk
 
 
requirements
 
 
README.md
 
 
index.php
 
 
macaddress.io-db.json
 
 
output_probe_data.db
 
 
probe_sniff.py
 
 
ssid_osint.py
 
 
SpyPortal OWASP Czech Chapter Meeting Slides Proof of Concept Usage Captive Portal Example

README.md

SpyPortal

Sniffing & geolocating saved SSIDs

OWASP Czech Chapter Meeting

August 5, 2021 | By @vavkamil

I know where you live

An introduction into the KARMA attack, exploiting the behavior of some Wi-Fi devices, where vulnerable clients broadcast a "preferred network list" (PNL), which contains the SSIDs of access points to which they have previously connected. We will revisit the old technique, current defenses applied by vendors and build a custom access point using Raspberry Pi & Python.

Slides

xss.vavkamil.cz/owasp

Proof of Concept

raspberry-pi

Usage

$ pip3 install -r requirements/requirements-probe_sniff.txt
$ sudo /home/${USER}/.pyenv/shims/python3 probe_sniff.py

$ pip3 install -r requirements/requirements-ssid_osint.txt
$ python3 ssid_osint.py -ssid "McDonald's FREE WIFI" -city "Brno"

Captive Portal

Use index.php with Building a Rogue Captive Portal with the Raspberry Pi

Example

probe_sniff.py

ssid_osint.py

captive-portal

About

Sniffing & geolocating saved SSIDs

Resources

Readme
Activity

Stars

7 stars

Watchers

2 watching

Forks

4 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages