wifite v2 beta

[derv82]

Hello BT5 community,

I'm working on a second version of Wifite, an automated wireless auditor. The program has been completely re-written and I want to get a few more hands on it before I release the official update.

Notable changes in version 2:

• Command-line only (no more buggy GUI)
• Support for "reaver", the WPS cracker
• Handshake verification using up to 4 programs; includes a "handshake checker" option (-check).
• 2 more WEP attacks (hirte and caffe latte)
• Much cleaner code: no more "rm -rf *" commands.
• Removed sqlite3/tkinter dependencies.

Here's a screenshot of the WPS PIN attack on multiple networks:


Wifite makes use of aircrack-ng, cowpatty, and tshark; all of which come standard on BT5R1. Wifite will run fine with just these programs but I recommend installing reaver and pyrit to get added functionality. Reaver is used to crack the 8-digit PINs on WPS-enabled routers (project homepage). Pyrit is used to verify that a valid handshake has been captured; Wifite will NOT crack WPA handshakes using Pyrit (yet).

To install reaver, open a terminal and type:

apt-get update
apt-get install reaver

To install pyrit, type:

apt-get install pyrit

To download and run Wifite, type:

wget https://raw.github.com/derv82/wifite/master/wifite.py
chmod +x wifite.py
./wifite.py

And for the full list of options, type:

./wifite.py -h

The purpose of this is to get bug reports, problems, confusions, suggestions, and feature requests.

There are 4 places you can report these to:

• Preferably at wifite's issue page on github (requires github account)
• at wifite's old issue page on google code (requires google account)
• here, in a reply to this post (requires bt-linux.org account)
• via email at derv82 at gmail.

I will appreciate all feedback, be it critical or constructive.

[Stallh0f3n]

It's a very nice tool/script, but there is one thing I don't like so much:

While wifite is scanning the available APs and the connected clients, it would be much better, in my opinion, that the APs are shown instantly and refreshed dynamically. So I can see if the desired access point is available instead of waiting about a minute and the only things I see are the number of the available APs and the connected clients.

It's just a small "issue" in my mind, but it would be great if you'll fix that.

[n1tr0g3n]

v2 works awesome! Thanks for keeping it up to date and adding reaver support. Keep up the good work!

I added a new post about it on my blog.. http://www.n1tr0g3n.com/1532/new-v2-...cker-released/

[sirano]

This is a great tool I'll defenetly try it !!
Thank you for you hard work

[derv82]

@stallh0f3n, I wanted to dynamically list all AP's but the only way to do this is to clear the screen at every update.

I've implemented what (I think) you've mentioned. Check out the latest version.

There's no "-upgrade" option (yet) so you'll have to re-download the latest version from github. I'll implement the upgrade option after beta.

To disable the clear-screens, use command line argument "-q" or "-quiet".

[bugme]

great tool... hope it could be integrated in the upcoming bt5r2!

[lambo]

Great tool derv82 but how accurate is it at detecting wps, I drove around my neighbourhood and out of 480 ap's 18 were detected as wps enabled, mostly vodafone and 3wireless with one netgear and one belkin, I have done this as I am thinking of buying the reaver pro when it comes out over at hak5.

[Stallh0f3n]

awesome script

[derv82]

@lambo: Wifite uses reaver's "wash" (or "walsh") program to detect WPS-enabled networks. From what I can tell, tacnetsol's programs are of very high caliber, designed to be compatible with a wide range of devices.

[lambo]

thanks derv82 I got same results using walsh with the awus03sh, again great work Thanks.