The goal of this repository is to create a WiFi explore tool for the self educated purpose.
- Espressif/idf. (no arduino).
- C++/C mixed code.
I am sorry for sometimes ugly source code. I have got the result and I have no desire to do a source code refactoring.
- Web page (ESP32 AP mode).
- download exploration results files
- edit & upload configurations
- AP scanner.
- Beacon spammer.
- Wifi traffic sniffer & optional pcap file PCAP_LINKTYPE_IEEE802_11(105).
- Deauther packets traffic scanner.
- Deauther sender (patched ieee80211_output.o).
- NAT router & optional pcap file PCAP_LINKTYPE_ETHERNET(1).
I had not know before how often a 'deauther' used for jamming the unwelcome WiFi APs in government's offices or a private company offices.
This sender created only for the self educated purpose.
I investigate the reactions difference of various type STA/AP on a deauthentication packet.
Based on the https://github.com/martin-ger lwip fork.
All IP traffic of ESP32 SoftAP can be saved in to PCAP file.
This mode was created only for the self educated purpose. It's very useful to see what your phone try to send into the open WiFi network after connect.
![[photo]](./demo_images/photo0.jpg)
![[photo]](./demo_images/photo1.jpg)
![[photo]](./demo_images/photo2.jpg)
![[photo]](./demo_images/photo3.jpg)
- ESP32 AP default url: 192.168.4.1:80
- Demo/debug mode without ESP32:
- ./project/main/web/test_server.py - localhost web page test
- ./project/main/web/sd - tests files
![[demo page ]](./demo_images/wp0.png)
![[demo page ]](./demo_images/wp1.png)
![[demo page ]](./demo_images/wp2.png)
![[demo page ]](./demo_images/wp3.png)
![[demo page ]](./demo_images/wp4.png)
- ESP32 module ESP32_Espressif_ESP-WROOM-32_Dev_Board
- 1.44 TFT st7735 128x128
- SMD button switches
- SD card (SPI mode).
For practical use case, ESP32 is working with a SD card without external SPI pins pull up.
![[wiring]](./demo_images/wiring.png)
- Espressif bulding tools and IDF. espressif/idf docker builder
- Fork of esp-lwIP with NAT feature. For 'router' mode. github martin-ger/esp-lwip
- Install latest docker image espressif/idf. I used the 2b09259647b image.
- Do 'git clone https://github.com/martin-ger/esp-lwip.git' or download fork of esp-lwIP with NAT feature in to '$HOME/project/lwip_nat' github martin-ger/esp-lwip
- Build project.
docker run --rm -v $HOME/project:/project -w /project espressif/idf ./build_patched.sh- Upload ESP32 images into the ESP32 board.
esptool.py -p COM4 -b 460800 --before default_reset --after hard_reset --chip esp32 write_flash --flash_mode dio --flash_size detect --flash_freq 40m 0x1000 "m:/project/build/bootloader/bootloader.bin" 0x8000 "m:/project/build/partition_table/partition-table.bin" 0x10000 "m:/project/build/mm-test.bin"- Download & install VM VirtualBox
- Install ubuntu server image. Ubuntu server
- Run virtual ubuntu server
- Install last docker
- Optional install dperson samba
samba anonymous login:
docker run -it --name samba -p 139:139 -p 445:445 -v /home/mm:/mount --name samba -e USERID=`id -u $USER` -e GROUPID=`id -g $USER` -d dperson/samba -s "public;/mount;yes;no;yes;all"login/password:
docker run -it --name samba -p 139:139 -p 445:445 -v /home/mm:/mount --name samba -e USERID=`id -u $USER` -e GROUPID=`id -g $USER` -d dperson/samba -u "$USER;$USER" -s "public;/mount;yes;no;no;$USER" esptool.py -p COM4 -b 460800 --before default_reset --after hard_reset --chip esp32 write_flash --flash_mode dio --flash_size detect --flash_freq 40m 0x1000 "m:/project/build/bootloader/bootloader.bin" 0x8000 "m:/project/build/partition_table/partition-table.bin" 0x10000 "m:/project/build/mm-test.bin"- Download image
- Install
cat docker.gpg | sudo apt-key add -
sudo apt-key fingerprint 0EBFCD88
sudo dpkg -i docker-ce_19.03.5_3-0_ubuntu-bionic_amd64.deb
sudo dpkg -i docker-ce-cli_19.03.5_3-0_ubuntu-bionic_amd64.deb
sudo dpkg -i containerd.io_1.2.6-3_amd64.deb
sudo /usr/sbin/service docker start- Validate installation
sudo systemctl status docker.socket
sudo docker version
sudo docker info
sudo systemctl status docker.socket
docker images
docker pa -a- Install xtensa CPU object file editor (cutter v1.10)
- Find & download xtensa.pdf
- Get ieee80211_output.o file from the espressif/idf docker image.
rm -R $HOME/libnet80211_src
mkdir $HOME/libnet80211_src
docker run --rm --user=`id -u $USER`:`id -g $USER` -v $HOME/libnet80211_src:/project -w /project espressif/idf ar x /opt/esp/idf/components/esp_wifi/lib/esp32/libnet80211.a ieee80211_output.o- Do research work xtensa CPU object file editor (cutter v1.10)
React
Typescript
Django
Laravel
Facebook
Microsoft
Google
Alibaba
D3
Tencent
