airgeddon is a multi-use bash script for Linux systems to audit wireless networks.
The script offers a wide range of features.
This is free and open source software.
Key Features
- Interface mode switcher (Monitor-Managed) keeping selection even on interface name changing.
- DoS over wireless networks using different methods (mdk3, mdk4, aireplay-ng). “DoS Pursuit mode” available to avoid AP channel hopping (available also on DoS performed on Evil Twin attacks).
- Full support for 2.4Ghz and 5Ghz bands.
- Assisted WPA/WPA2 personal networks Handshake file and PMKID capturing.
- Cleaning and optimizing Handshake captured files.
- Offline password decrypting on WPA/WPA2 captured files for personal networks (Handshakes and PMKIDs) using dictionary, bruteforce and rule based attacks with aircrack, crunch and hashcat tools. Enterprise networks captured password decrypting based on john the ripper, crunch, asleap and hashcat tools. GPU support available for hashcat.
- Evil Twin attacks (Rogue AP):
- Only Rogue/Fake AP mode to sniff using external sniffer (Hostapd + DHCP + DoS).
- Simple integrated sniffing (Hostapd + DHCP + DoS + Ettercap).
- Integrated sniffing, sslstrip2 (Hostapd + DHCP + DoS + Bettercap).
- Integrated sniffing, sslstrip2 and BeEF Browser Exploitation Framework (Hostapd + DHCP + DoS + Bettercap + BeEF).
- Captive portal with “DNS blackhole” to capture wifi passwords (Hostapd + DHCP + DoS + Dnsspoff + Lighttpd).
- Optional MAC spoofing for all Evil Twin attacks.
- WPS features:
- WPS scanning (wash). Self parameterization to avoid “bad fcs” problem.
- Custom PIN association (bully and reaver).
- Pixie Dust attacks (bully and reaver).
- Bruteforce PIN attacks (bully and reaver).
- Null PIN attack (reaver).
- Known WPS PINs attack (bully and reaver), based on online PIN database with auto-update.
- Integration of the most common PIN generation algorithms (ComputePIN, EasyBox, Arcadyan, etc.).
- Offline PIN generation and the possibility to search PIN results on database for a target
- Parameterizable timeouts for all attacks.
- Enterprise networks attacks:
- Fake AP using “smooth” and “noisy” modes capturing enterprise hashes and plain passwords.
- Custom certificates creation.
- WEP All-in-One attack (combining different techniques: Chop-Chop, Caffe Latte, ARP Replay, Hirte, Fragmentation, Fake association, etc.).
- Easy targeting and selection in every section.
- Drag and drop files on console window for entering file paths or autocomplete using tab key on every path input for easier use.
- Dynamic screen resolution detection and windows auto-sizing for optimal viewing.
- Controlled Exit. Cleaning tasks and temp files. Restoring nftables/iptables after an attack that require changes on them. Option to keep monitor mode if desired on exit.
- Multilanguage support and autodetect OS language feature.
- Help hints in every zone/menu for easy use.
- Auto-update. Script checks for newer version if possible.
- Docker image for easy and quick container deployment. Use already built image on Docker Hub or build your own.
- Http proxy auto detection for updates.
- Wayland graphic system supported (not only X window system).
- Tmux support for headless (systems without X window) environments.
- Multiple configurable options based on fallback substitution variables options system which allow to configure many enhancements like enable/disable colors, 5Ghz band, auto updates, hint printing, etc.
- Full compatibility with iptables and nftables with autodetection and possibility to force iptables by setting an option
- Available plugins system to let the community create their own content in an easy and flexible way using the created function hooking system.
Website: github.com/v1s1t0r1sh3r3/airgeddon
Support:
Developer: v1s1t0r
License: GNU General Public License v3.0
Related Software
| Wireless Security Tools | |
|---|---|
| bettercap | Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance |
| airgeddon | Multi-use bash script for Linux systems to audit wireless networks |
| URH | Complete suite for wireless protocol investigation |
| aircrack-ng | WiFi security auditing tools suite |
| wavemon | ncurses-based monitoring for wireless network devices |
| Kismet | 802.11 layer2 wireless network detector, sniffer, intrusion detection system |
| hcxdumptool | Capture packets from wlan devices |
| Wifite | Python script for auditing wireless networks |
| HORST | Highly Optimized Radio Scanning Tool |
| Fern Wifi Cracker | Wireless security auditing and attack software |
| LinSSID | Graphical wireless scanning |
Read our verdict in the software roundup.
 Explore our comprehensive directory of recommended free and open source software. Our carefully curated collection spans every major software category.This directory is part of our ongoing series of informative articles for Linux enthusiasts. It features hundreds of detailed reviews, along with open source alternatives to proprietary solutions from major corporations such as Google, Microsoft, Apple, Adobe, IBM, Cisco, Oracle, and Autodesk. You’ll also find interesting projects to try, hardware coverage, free programming books and tutorials, and much more. Discovered a useful open source Linux program that we haven’t covered yet? Let us know by completing this form. |