WiFi-Pumpkin is a complete framework for auditing Wi-Fi security. The main feature is the ability to create a fake AP and make Man In The Middle attack, but the list of features is quite broad.
Installation – WiFi-Pumpkin
Python 2.7 git clone https://github.com/P0cL4bs/WiFi-Pumpkin.git cd WiFi-Pumpkin ./installer.sh --install
- Rogue Wi-Fi Access Point.
- Deauth Attack Clients AP.
- Probe Request Monitor.
- DHCP Starvation Attack.
- Credentials Monitor.
- Transparent Proxy.
- Windows Update Attack.
- Phishing Manager.
- Partial Bypass HSTS protocol.
- Support beef hook.
- ARP PoisonDNS Spoof.
- Patch Binaries via MITM.
- Karma Attacks (support hostapd-mana).
- LLMNR, NBT-NS and MDNS poisoner (Responder).
- Pumpkin-Proxy (ProxyServer (mitmproxy API)).
- Capture images on the fly.
- TCP-Proxy (with scapy)
|Dns2proxy||This tools offer a different features for post-explotation once you change the DNS server to a Victim.|
|Sstrip2||Sslstrip is a MITM tool that implements Moxie Marlinspike’s SSL stripping attacks based version fork @LeonardoNve/@xtr4nge.|
|Sergio_proxy||Sergio Proxy (a Super Effective Recorder of Gathered Inputs and Outputs) is an HTTP proxy that was written in Python for the Twisted framework.|
|BDFProxy||Patch Binaries via MITM: BackdoorFactory + mitmProxy, bdfproxy-ng is a fork and review of the original BDFProxy @secretsquirrel.|
|Responder||an LLMNR, NBT-NS and MDNS poisoner. Author: Laurent Gaffie|
Also Read Fern Wifi Cracker For Wireless Security
A proxy that you can place between in a TCP stream. It filters the request and response streams with (scapy module) and actively modify packets of a TCP protocol that gets intercepted by WiFi-Pumpkin. this plugin uses modules to view or modify the intercepted data that possibly the easiest implementation of a module, just add your custom module on “plugins/analyzers/” automatically will be listed on the TCP-Proxy tab.