Advertisements

WIFI Pumpkin – Framework for Rogue Wi-Fi Access Point Attack

WiFi-Pumpkin is a security tool that provides the Rogue access point to Man-In-The-Middle and network attacks.

Installation
Kali 2.0/WifiSlax 4.11.1/Parrot 2.0.5

  • Python 2.7
 git clone https://github.com/P0cL4bs/WiFi-Pumpkin.git
 cd WiFi-Pumpkin
 chmod +x installer.sh
 ./installer.sh --install

refer to the wiki for Installation

Features

  • Rogue Wi-Fi Access Point
  • Deauth Attack Clients AP
  • Probe Request Monitor
  • DHCP Starvation Attack
  • Credentials Monitor
  • Transparent Proxy
  • Windows Update Attack
  • Phishing Manager
  • Partial Bypass HSTS protocol
  • Support beef hook
  • Mac Changer
  • ARP Poison
  • DNS Spoof

Plugins

Plugin Description
net-creds Sniff passwords and hashes from an interface or pcap file
dns2proxy This tools offer a different features for post-explotation once you change the DNS server to a Victim.
sslstrip2 Sslstrip is a MITM tool that implements Moxie Marlinspike’s SSL stripping attacks based version fork @LeonardoNve/@xtr4nge.
sergio-proxy Sergio Proxy (a Super Effective Recorder of Gathered Inputs and Outputs) is an HTTP proxy that was written in Python for the Twisted framework.

Transparent Proxy
Transparent proxies that you can use to intercept and manipulate HTTP/HTTPS traffic modifying requests and responses, that allow to inject javascripts into the targets visited. You can easily implement a module to inject data into pages creating a python file in directory “Proxy” automatically will be listed on PumpProxy tab.

Plugins Example
The following is a sample module that injects some contents into the tag to set blur filter into body html page:

from Plugin import PluginProxy

class blurpage(PluginProxy):
    ''' this module proxy set blur into body page html response'''
    _name          = 'blur_page'
    _activated     = False
    _instance      = None
    _requiresArgs  = False

    @staticmethod
    def getInstance():
        if blurpage._instance is None:
            blurpage._instance = blurpage()
        return blurpage._instance

    def __init__(self):
        self.LoggerInjector()
        self.injection_code = []

    def setInjectionCode(self, code):
        self.injection_code.append(code)

    def inject(self, data, url):
        injection_code = '''<head> <style type="text/css">
        body{
        filter: blur(2px);
        -webkit-filter: blur(2px);}
        </style>'''
        self.logging.info("Injected: %s" % (url))
        return data.replace('<head>',injection_code )

FAQ

I can’t install it

have a look at the Installation

I have this message warning Error Network Card

You system does not support Wifi-Pumpkin. Run it with a Wireless network adapter

Does it work on X Wireless Adapters ?

You can check this page

I can’t install package X

Try installing the package via pip, Google is your friend!

Is it Windows supported?

No

download now
Advertisements

8 thoughts on “WIFI Pumpkin – Framework for Rogue Wi-Fi Access Point Attack

  • May 18, 2016 at 1:20 pm
    Permalink

    Would it be possible to install all this on a Raspberry Pi 2?

    Reply
  • May 18, 2016 at 1:45 pm
    Permalink

    I have not tested it on a Raspberry Pi2 before, but I strongly doubt that it will work. I might be wrong….

    Reply
    • May 18, 2016 at 2:01 pm
      Permalink

      Going to be my project for the day, downloading the Kali image now, will keep you updated.

      Reply
      • May 18, 2016 at 3:03 pm
        Permalink

        Cool. Let me know if it works! 🙂

        Reply
        • May 18, 2016 at 5:36 pm
          Permalink

          Okay so now I’m running in to some issues. after installing Kali image to micro sd, I got on and run the command apt-get update && apt-get upgrade -y then everything went smoothly. Rebooted and then followed the install from this site and Wi-Fi Pumpkin installed with no issues or errors. I cd to the directory and ./wifi-pumpkin.py and it gives me an error saying “ImportError: No module named netifaces” I tried apt-get upgrade -f to install the unfinished upgrades then rebooted still the same error. Also tried $ sudo apt-get install python-dev and then $ sudo pip install netifaces. still not working. Any possible ideas and im using ALFA AWUS036NHA.

          Reply
          • May 19, 2016 at 9:16 am
            Permalink

            @MrSwordan

            Thanks for the feedback on your project.

            Regarding the error. I saw on the installation page that they do recommend your WIFI adapter but can you still test the following and whether it picks it up

            Your USB WIFI adapter must have support AP/monitor mode. how to check this ? execute this command on terminal:

            iw list

            If there is ‘AP’ in the list of “Supported interface modes” your device will support. The adapter needs to have drivers for GNU/Linux.

  • October 25, 2016 at 7:51 am
    Permalink

    i have problem after installin wifi-pupmkin

    root@madhav-PC:~/WiFi-Pumpkin# sudo wifi-pumpkin
    [✘] hostapd is not installed.
    Traceback (most recent call last):
    File “wifi-pumpkin.py”, line 50, in
    from core.main import Initialize
    File “/usr/share/WiFi-Pumpkin/core/main.py”, line 55, in
    from netfilterqueue import NetfilterQueue
    ImportError: No module named netfilterqueue

    How can i solve this problem? Pls rply

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

Advertisements
Advertisements
%d bloggers like this: