Shulou(Shulou.com)06/01 Report--

FruityWifi is a wireless security audit inspired by WiFi pineapple. This program can be installed on the Debian family of operating systems and tested on Debian, Kali Linux, Kali Linux ARM (Raspberry Pi), Raspbian (Raspberry Pi), Pwnpi (Raspberry Pi).

Third-party modules can be installed, and these modules have

Hostapd Karma URLsnarf DNSspoof Kismet Squid (code injection capabilities) SSLstrip (code injection capabilities) nmap mdk3 ngrep Captive Portal

The installation method is particularly simple:

Download zip package: github.com/xtr4nge/FruityWifi/archive/master.zip

After decompression, execute install-FruityWifi.sh

Visit http://localhost/FruityWifi username and password same as admin

Select config to configure

Set up the network card for accessing the Internet and the network card as a hot spot respectively

Select modules to configure third-party modules

It should be noted that Karma is a must, because karma and hostapd are installed together, and hostapd can make the wireless network card switch to master mode, simulating AP(usually considered a router) function, that is, we say Soft AP(Soft AP).

Other modules are briefly described below

nmap port scan

sslstrip is used to sniff https

dnsspoof DNS spoofing

urlsnarf sniffs the contents of HTTP request messages

MDK3 Initiates Denial of Service ***

ngrep searches for specified packets

Captive portal Hotspot Mandatory certification page

squid3 script injection

kismet wireless network detector

autostart switch

Whatsapp gets numbers by sniffing Whatsapp traffic

nmcl network management tool

In terms of module support, this set of tools is not inferior to WiFiPineApple

Finally, it is worth noting that due to different hostapd support for network cards, some network cards do not work properly in FruityWifi, the author's RT73 chip USB network card and Ralink USB network card do not work properly, realized as a hot spot to establish no problem, but can not connect, at first thought it is necessary to configure DHCP server separately, normal configuration found that still can not obtain IP, later tried to manually set static IP found that it can not access the network normally. Later, check the data to see that it may be related to the network card model, but the Tplink network card of the Atheros chip always fails to hang the virtual machine. Finally, try kali on the hard disk and find that opening Wireless in FruityWifi does not require any configuration, and the hotspot works normally. The 10.0.0.X address is automatically assigned.

As a wireless security audit tool, I feel FruityWifi is particularly simple from installation to configuration, of course, because of the network card took a lot of detours. As an open source wireless security tool, I hope his modules will become more and more rich and support more platforms.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.