这是一个弃用的Python工具,用于捕获和记录未加密的无线设备探测请求。新版本3.0改进了性能,支持离线MAC地址供应商解析,并使用tshark进行数据包捕获。功能包括实时显示探测请求、离线供应商解析、RSSI显示、SQL日志记录等。工具需要Kali Linux或Raspbian,以及root权限、Python3、pip3、tshark和pyshark。使用者可以自定义选项过滤输出,如忽略重复请求或指定MAC地址。
____ ____ ___ ____ ___ _________ ____ _____ _____ ___ ____
| \| \ / \| \ / _/ ___| \| | | |/ _| \
| o | D | | o )/ [( \_| _ || || __| __/ [_| D )
| _/| /| O | | _\__ | | || || |_ | |_| _| /
| | | \| | O | [_/ \ | | || || _]| _| [_| \
| | | . | | | \ | | || || | | | | | . \
|__| |__|\_|\___/|_____|_____|\___|__|__|____|__| |__| |_____|__|\__|
v3.0 by David Schütz (@xdavidhu)
⚠️ Warning! This project is no longer maintained and may not work as excepted.
A tool for sniffing unencrypted wireless probe requests from devices
new in 3.0:
Less packet drop
Offline / Faster vendor resolving
Way better performance on slower systems
Switching from scapy to tshark packet capture
Displaying / Logging BSSID's from probe requests (only if not broadcast)
features:
Capturing and displaying probe requests real time
Offline vendor resolving from MAC addresses
Displaying the number of devices nearby
Displaying the RSSIs of probe requests
Settable nicknames for mac addresses
Option to filter output by mac address
Displaying BSSIDs from probe requests
Capturing 'broadcast' probe requests (without ssid)
Logging the probe requests to an SQLite database file
requirements:
Kali Linux / Raspbian with root privileges
Python3 & pip3 & tshark & pyshark
A wireless card (capable for monitor mode)
options:
-h / display the help message
-d / do not show duplicate requests
-b / do not show 'broadcast' requests (without ssid)
-a / save duplicate requests to SQL
--filter / only show requests from the specified mac address
--norssi / do not include RSSI in output
--nosql / disable SQL logging completely
--addnicks / add nicknames to mac addresses
--flushnicks / flush nickname database
--noresolve / skip resolving mac address
--debug / turn debug mode on
installing:
Kali Linux / Raspbian:
$ sudo apt-get update && sudo apt-get install python3 python3-pip tshark -y
$ git clone https://github.com/xdavidhu/probeSniffer
$ cd probeSniffer/
$ python3 -m pip install -r requirements.txt
WARNING: probeSniffer is only compatible with Python 3.3 & 3.4 & 3.5 & 3.6
usage:
Make sure to put your interface into monitor mode before!
$ sudo python3 probeSniffer.py [monitor-mode-interface] [options]
disclaimer:
I'm not responsible for anything you do with this program, so please only use it for good and educational purposes.
扫一扫
562
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
