Differences
This shows you the differences between two versions of the page.
|
iothings:proiecte:2022sric:wifi-dev-board [2023/06/01 20:31] andrei.david0207 created |
iothings:proiecte:2022sric:wifi-dev-board [2023/06/02 08:21] (current) andrei.david0207 |
||
|---|---|---|---|
| Line 1: | Line 1: | ||
| ====== WiFi Attacks using ESP32 and Flipper Zero ====== | ====== WiFi Attacks using ESP32 and Flipper Zero ====== | ||
| + | |||
| + | Author: [[mailto:andrei.david0207@upb.ro|Andrei David]] | ||
| ==== Wifi Attacks ==== | ==== Wifi Attacks ==== | ||
| Line 25: | Line 27: | ||
| ==== Hardware Specification ==== | ==== Hardware Specification ==== | ||
| + | {{:iothings:proiecte:2022sric:img_20230527_214605.jpg?200|}} | ||
| === ESP32 === | === ESP32 === | ||
| - | For This setup the ESP32-WROOM32 development board is used. | + | For his setup the ESP32-WROOM32 development board is used. |
| === Flipper Zero === | === Flipper Zero === | ||
| Line 35: | Line 38: | ||
| === Interfacing === | === Interfacing === | ||
| + | In order to interface the ESP32 and the Flipper Zero the Serial Communication is used therefore there are only 4 wires needed for communication and power delivery to ESP32 | ||
| + | |||
| + | ^ ESP32 ^ Flipper Zero ^ | ||
| + | | 3.3V | 3.3V | | ||
| + | | GND | GND | | ||
| + | | RX | TX | | ||
| + | | TX | RX | | ||
| ==== Software Specification ==== | ==== Software Specification ==== | ||
| === ESP32 Firmware === | === ESP32 Firmware === | ||
| + | The firmware that was flash onto the ESP32 was ESP32 Marauder. This is an opensource firmware designed specifically for the ESP32 boards including the Flipper Zero Wifi Dev Board. This firmware has built-in all the functionality from Wifi Scanning to Packet Crafting. Then it exposes to serial an API for accepting commands and providing output. | ||
| === Wifi Marauder === | === Wifi Marauder === | ||
| - | The application running on Flipper Zero is Wifi Marauder. This is a C application that is specifically designed to interface with Wifi Dev Board available for Flipper Zero that also is built using ESP32. | + | The application running on Flipper Zero is Wifi Marauder. This is a C application that is specifically designed to interface with Wifi Dev Board available for Flipper Zero which also is built using ESP32. The application's main purpose is to send to ESP32 via Serial the commands that the user provides. Then it renders the output that ESP32 generated onto the screen making it more user-friendly and giving a more compact way of generating Wifi attacks. |
| ==== Testing ==== | ==== Testing ==== | ||
| - | === Environment === | ||
| === Methodology === | === Methodology === | ||
| + | I created a network (mobile hotspot) in order to test the deauthentication capabilities. Then I connected my laptop to the newly created network. For checking the connectivity a ping was running indefinitely and the Gnome Wifi Settings were monitored. | ||
| + | |||
| === Results === | === Results === | ||
| + | I was able to unauthenticated my laptop from my own network and I was able to prevent the laptop from re-associating with the AP as long as the attack was ongoing. | ||
| + | |||
| === Demo === | === Demo === | ||
| + | A full walkthrough of the ESP32 & Flipper Zero capabilities can be found here. [[https://youtu.be/Q4Oe6_EmS-g]] | ||
| ==== References ==== | ==== References ==== | ||
| - | https://github.com/ClaraCrazy/Flipper-Xtreme/tree/main/applications/external/wifi_marauder_companion | + | Wifi Marauder App [[https://github.com/0xchocolate/flipperzero-wifi-marauder]] |
| + | Easy Marauder Flash [[https://github.com/SkeletonMan03/FZEasyMarauderFlash]] | ||
| + | ESP32 Marauder Firmware [[https://github.com/justcallmekoko/ESP32Marauder]] | ||
