This post is on about detailed concept of ZiFi tool.
Github repo: https://github.com/sankethj/ZiFi
FEATURES :
Lets first setup the platform for the tool.
INSTALLATION :
- Install Arduino IDE
- Add Esp8266 in Additional Board Manager
http://arduino.esp8266.com/stable/package_esp8266com_index.json - Esp8266 board NODEMCU
- Install your board, choose correct Port.
- Compile and Upload.
Now lets see how to works
CONCEPT :
- Upon uploading the code an Access Point (AP) named
ZiFiwith passwordEviltwinwill be created. Connect it with your device. - As soon as you connect you will redirected to web-interface page. There you can see all the nearby wifi devices. Select the target you want (list of available APs refreshes every 15secs — page reload is required).
- There will be two types of attack mode. One is Deauth attack. If you choose Deauth it will start deauthing the clients in that network. If you choose Eviltwin attack it will clone the same network.
- The main concept is first start deauth attack, all clients on that network will start get disconnecting. And then Start Evil-twin attack, which will create the clone of the selected network. Now the clients who got disconnected from that network will see another network with same ssid. So they will start connecting to that network.
- Then our cloned network will redirect them to a Sign-in page where it says the router needs to be updated and asks the users to enter the network password.
- So users will enter password, if they enter some random password it will show its wrong password. After entering right password only it will get turned off and shows us the result in our web interface.
- Reconnect to
ZiFinetwork after some time, it will display you the correct password in Result section if they have entered.
DEMONSTRATION VIDEO:
CREDITS :
- M1z23R → MODIFIED VERSION OF HIS SCRIPT
- Spacehuhn Technologies → TEMPLATE
- 125K → TEMPLATE
Originally published at https://dev.to on January 29, 2022.