Skip to content

Latest commit

 

History

History
88 lines (74 loc) · 5.28 KB

README.md

File metadata and controls

88 lines (74 loc) · 5.28 KB

ESP8266 Deauth All

Librarian

Arduino code for your ESP8266. Deauthenticate all clients from all access points

Instagram - YouTube - Website

Like my content? Show your support by subscribing to my channel and following my page.

Librarian Librarian Librarian Librarian

Supports the Wemos D1 Mini OLED Shield

Table of Condiments

Background

A WiFi deauthentication attack is a form of denial of service where an attacker crafts 802.11 frames designed to sever the connection between a WiFi client and a wireless access point.

These frames are unencrypted since most devices do not support the 802.11w standard and because of this vulnerability, there is no way to guard against this attack as long as these frames appear to come from a legitimate source.

An attacker can scan for surrounding access points, clone each BSSID it finds, and broadcast deauthentication frames spoofing the source MAC address as the access points it found. As other devices receive these deauthentication frames from their access point, they will be forced off of the network. The attacker doesn't even need to be on the target network to perform this attack.

My main objective for this project was to create a device that would be small enough to carry anywhere and be able to scan and maintain a list containing only of access points it has found recently while removing access points no longer in the area. Each new scan will then result in a deauthentication attack spanning one minute.

Do not be a dumbass and get yourself in trouble. This is a form of denial of service and in most countries, it is illegal without the explicit consent from the owner of the target network.

How it works

  1. Scan all channels twice

    Scan

  2. Clean out any APs from the last scan that did not show up in the current scan
  3. Deauthenticate all devices for one minute by sending broadcast deauth frames from all APs

    Deauth

  4. Repeat

Setup

Hardware

Uploading Code Using Arduino IDE

  1. Install and open the Arduino IDE
  2. Add URLs to board manager URLs (File, Preferences, Additional Boards Manager URLs):
    • http://arduino.esp8266.com/stable/package_esp8266com_index.json
    • http://phpsecu.re/esp8266/package_deauther_index.json
  3. Install ESP8266 boards (Tools, Boards Manager):
    • arduino-esp8266-deauther
    • esp8266
  4. Install the Adafruit SSD1306 Wemos Mini OLED library
  5. Copy and paste the code into your Arduino IDE
  6. Select the WeMos D1 Mini Board (Tools, Board, ESP8266 Deauther Modules)
  7. Upload

Flashing The Firmware

  1. Download the .bin file
  2. Download the NodeMCU Flasher

Usage

Just plug the device into any USB power source whether it's a computer, wall socket, or portable power supply, and let the device do the rest of the work. Refer to the run cycle of the attack here which will run automatically

Issues

Some devices are able to ignore deauth frames sent to broadcast so this may not work against all devices in your area

Trash Code

So this code is complete garbage, but it works.
There are a lot of repeats which could have just been used in a function (Searching for known MACs)
but I said, "Fuck it" and just made this.