金御网安

How to install WiFi-Pumpkin in Linux Mint or Ubuntu

发布时间:3年前热度: 2883 ℃评论数:

WiFi-Pumpkin is a very complete framework for auditing Wi-Fi security. The main feature is the ability to create a fake AP and make Man In The Middle attack, but the list of features is quite broad.

To install WiFi-Pumpkin on the any release Linux Mint or Ubuntu, copy-paste the following commands in console:

sudo apt update
sudo apt install git isc-dhcp-server
git clone https://github.com/P0cL4bs/WiFi-Pumpkin.git
cd WiFi-Pumpkin
chmod +x installer.sh
sudo ./installer.sh --install
sudo pip install --upgrade pip
sudo pip install BeautifulSoup4 service_identity

In order to run WiFi-Pumpkin, type the command in console:

sudo wifi-pumpkin

21-1.png

22.png

23.png


The purpose of attacks with a rogue access point is not WPA passphrase (password of a Wi-Fi network). The attack targets to the transmitted network traffic, which can contain web site login passwords and another sensitive information. An attacker is able to perform Man-In-The-Middle attacks to extract important data.

Configuring Rogue Access Point is to configure an open wireless access point. It is the same as to set up a Wi-Fi hotspot. But usual Wi-Fi hotspot turns in Rogue Access Point when an attacker starts Man-In-The-Middle attacks.

There are programs that automate the process of creating configuration files for a wireless access point, and also provide the proper traffic routing. For example, it can do create_ap.

The same actions, but across with launching a man-in-the-middle attack, are performed by the mitmAPprogram.

WiFi-Pumpkin is another program for automatic setting up a wireless rogue access point. Its feature is the graphical interface, which further simplifies the Rogue Wi-Fi Access Point Attack.

The program has built-in plug-ins (other programs) that collect data and perform various attacks.

To install WiFi-Pumpkin in Kali Linux:

In the Plugins tab, select what is more important to you. Pumpkin-Proxy allows you to use various ready-made solutions (key loggers, BeEF, code injection, etc. But SSLStrip+ paired with dns2proxy allow you to bypass HTTPS and intercept much more credentials.

Available plugins:

PluginDescription
Dns2proxyThis tools offer a different features for post-explotation once you change the DNS server to a Victim.
SSLstrip (SSLStrip+)Sslstrip is a MITM tool that implements Moxie Marlinspike's SSL stripping attacks based version fork @LeonardoNve/@xtr4nge.
Sergio_proxySergio Proxy (a Super Effective Recorder of Gathered Inputs and Outputs) is an HTTP proxy that was written in Python for the Twisted framework.
BDFProxyPatch Binaries via MITM: BackdoorFactory + mitmProxy, bdfproxy-ng is a fork and review of the original BDFProxy @secretsquirrel.
ResponderResponder an LLMNR, NBT-NS and MDNS poisoner. Author: Laurent Gaffie

When the configuration is complete, click Start.

05-4.jpg

06-5.jpg

  • DHCP Starvation
  • Fake Windows Updates
  • Phishing Web Server and others.

Conclusion

Thanks to the graphical interface, WiFi-Pumpkin further simplifies popular attacks. The framework implements a comprehensive approach to Rogue Wi-Fi Access Point Attack.

WiFi-Pumpkin

栏目导航

手机扫码访问