‹ Back

 

Building a wi-fi deauther with esp8266

 

By: Grant Arnold

 

Materials Needed: 

 

ESP8266 :

 

https://www.amazon.com/HiLetgo-Internet-Development-Wireless-Micropython/dp/B081CSJV2V/ref=sr_1_3?crid=1F7TA9VECFHKC&keywords=esp8266&qid=1663089339&sprefix=esp8266%2Caps%2C131&sr=8-31

 

OR
 

https://www.amazon.com/Organizer-ESP8266-Internet-Development-Compatible/dp/B081PX9YFV/ref=sr_1_5?crid=1F7TA9VECFHKC&keywords=esp8266&qid=1663089339&sprefix=esp8266%2Caps%2C131&sr=8-5

 

Part 1: What is a WiFi Deauther?

 

A “Wifi Deauthenticator” is a device that connects to a computer using a 2.4Ghz WiFi Connection, and is programmed to be able to sniff and attack different WiFi using its own access point.

 

See my next presentation on Kali on a Raspberry Pi to own 5G WiFi too ;)

 

These WiFi Deautheniticators: 

Can allow users to gather Network information Including Passwords  (Useful for Botnets)

 

Can allow the attacker to remove (via deauthentication) from their current network connection

 

Part 2: Benefits of Wifi Deauthers

 

With the WiFi Deauthenticator, attackers have the ability to quickly and easily sniff surrounding networks and enable to them to do some different things in order to exploit the network 

 

OPTIONS INCLUDE:

 

Gathering Networks to use for BotNets: Many times, gaining access to a persons WiFi connection means that you can then use their WiFi in order to support botnets for DDOS attacks

 

To Snoop on Internet Traffic: Allows attackers to see what is going on through their victims WiFi

 

To Troll: Kick your buddy of the WiFi while they’re in the middle of a Game, its really funny

 

Part 3: Disadvantages of Wifi Deauthers

 

Unfortunately, although not many. there are a few disadvantages to the WiFi deauther. Most of them are related to drawbacks from victims computers or the hardware/programming of the Bad USB itself.

 

DRAWBACKS INCLUDE:

 

1. ONLY WORKS ON 2.4GHZ: The specific Deauther we are building today will be capable of only 2.4Ghz WiFi, however, 2.4 is still a standard that many companies use, so there is no shortage of targets.

 

2. LITERALLY NOTHING ELSE EXCEPT THAT IT IS OBVIOUSLY ILLEGAL TO DO THIS TO SOMEONE WHO IS NOT A WILLING PARTICIPANT OR YOUR FRIEND WHO IS DESTINED FOR DOOM WHO WONT PRESS CHARGES

 

 

ALSO: (Stay tuned on how to take down 5Ghz Networks; that article is coming)

 

Part 4: Building the WiFi Deauther

 

Windows:

 

1.Plug in the ESP8266 to you Windows device via USB port

 

2. Make sure the device is recognized in the Device Manager

 

3. Download ESP8266Flasher.exe 

    https://github.com/nodemcu/nodemcu-flasher/raw/master/Win64/Release/ESP8266Flasher.exe

 

4. Download the esp8266_deauther_2.6.1_NODEMCU.bin file in the Canvas Module or from here:

     https://github.com/SpacehuhnTech/esp8266_deauther/releases

 

5. Open up ESP8266Flasher.exe  

 

6. Under “Operations” Select the COMM port that your device is in (Device Manager) 

 

7. Under “Config”, Select the  esp8266_deauther_2.6.1_NODEMCU.bin file that was downloaded earlier

 

8. Under “Advanced”, have the following settings:

       Baudrate: 230400

       Flash Size: 4Mbyte

       Flash Speed: 40Mhz

       SPI Mode: DIO

 

9. Click Flash (This may take a few tries); After this, unplug and replug device

 

10. Connect to "pwnd" network (Default Pass is "deauther") and go to 192.168.4.1 in any browser

 

MacOS

 

1. Install Arduino IDE; After it downloads, Open it

    https://www.arduino.cc/en/software

 

 

2. Go to Arduino > Preferences > Additional Boards Manager URLS > 

     Add the following URL:

https://arduino.esp8266.com/stable/package_esp8266com_index.json> Click OK

 

3.  Then, Under Tools at the top of the screen, Go to Boards > Boards Manager… Search for “esp8266” INSTALL THE ONE THAT SAYS        “esp8266”

 

4. Plug in the ESP8266 to you Mac device via USB port 

    (Command to see which port in terminal: ls /dev/cu.*  ) 

 

5. Download the esp8266_deauther.ino file from here:

     https://github.com/SpacehuhnTech/esp8266_deauther/archive/v2.zip

 

6. Open the file (esp8266_deauther.ino)  in Arduino IDE 

 

7. Click Upload (The Arrow pointing right)  after the file has been opened in Arduino 

 

8. After Successful upload (May take a few tries), Unplug and replug the device and wait roughly 30 seconds 

 

9.  Connect to "pwnd" network (Default Pass is "deauther") and go to 192.168.4.1 in any browser 

 

Part 5: Attack Vectors

 

At this point, if you can access the 192.168.4.1 IP address when connected to the WiFi, you now have a completed deauthenticator. This can be used to study you network as well as boot people from the network by basically telling their own router that they are not allowed to be on it, and promptly kicks them off, keep in mind once the attack stops they will reconnect. Three way handshakes are capable of being captured if using the correct software with it (i.e. aircrack-ng) 

 

There are 3 Attacks available:

 

Deauth: Deauthenticates users and kicks users off to rejoin. (Useful for grabbing handshakes)

 

Spoof: Create fake network addresses for users to attempt to connect to (More of a gag) (NOT ILLEGAL) 

 

Probe: Can be used to gather different kinds of information about different networks in the area.

 

 

 

 

Final Remarks:

 

Much of the credit for this project should go to Spacehuhn, who provided the framework and files for this to be possible, this is merely me spreading the information in a different way. Please be responsible and enjoy your new equipment!

 

-Grant