An automated wireless attack tool.
wifite is a program automates attacking and cracking wireless access points protected by WEP, WPA with/without WPS. Traditionally it has to be done manually and involved numerous program with many parameters, which is very inconvenient for batch access points security auditing. This little python script saves your time by automatically attack chosen access points in batch.
To download and execute wifite, run the commands below:
wget https://github.com/derv82/wifite/raw/master/wifite.py
(devr82's orginal version) or wget https://github.com/brianpow/wifite/raw/master/wifite.py
(my fork)
chmod +x wifite.py
./wifite.py
wifite.py --showb --attack all,-eMYWIFI,-wpa0,-wps2,wps1 --timeout 120,e,n\>50 --save ap --two
Meaning: show BSSID when scanning; attack all APs excepts APs with name containing MYWIFI, exclude WPA APs without client, exclude both locked and WPS-enabled APs and include wps-enabled AP (i.e. remove WPS locked APs); Automatically attack APs after scanning for 120 seconds, or if hidden network is detected, or if total targets are more than 50; Save scanned APs into ap.csv and ap.cap; List APs in two columns.
- Wireless card with supported driver for entering promiscuous/monitor mode and support packet injection (USB wireless dongle if you are running in virtual machine.)
Pentesting distributions of Linux, such as Kali Linux, Pentoo, BackBox (Ubuntu 11/10, Debian 6, and Fedora 16 may work but not confirmed).
Unless you are using very old distro of Linux, the following software should be pre-installed and available. Please see the installation guide on the wiki if you really need to install any of the tools below manually.
-
Python 2.7.x. wifite is a Python script and requires Python to run.
-
aircrack-ng suite. This is absolutely required. The specific programs used in the suite are:
- airmon-ng,
- airodump-ng,
- aireplay-ng,
- packetforge-ng, and
- aircrack-ng.
-
Standard linux programs.
- iwconfig, ifconfig, which, iw
- Computer with NVIDIA or ATI display card (for accelerated cracking)
*
indicates program is not included in Backtrack 5 R1
-
*
reaver, a Wifi-Protected Setup (WPS) attack tool. Reaver includes a scanner "walsh" (or "wash") for detecting WPS-enabled access points. wifite uses Reaver to scan for and attack WPS-enabled routers. -
*
pyrit, a GPU cracker for WPA PSK keys. Wifite uses pyrit (if found) to detect handshakes. -
tshark. Comes bundled with Wireshark, packet sniffing software.
-
cowpatty, a WPA PSK key cracker. Wifite uses cowpatty (if found) to detect handshakes.
- Rainbow table (for accelerated cracking)
wifite is licensed under the GNU General Public License version 2 (GNU GPL v2).
(C) 2010-2015 Derv Merkler