Fake AP Main:
Project Homepage:
http://www.blackalchemy.to/project/fakeap/
"Black Alchemy's Fake
AP generates thousands of counterfeit 802.11b access points. Hide in plain sight
amongst Fake AP's cacophony of beacon frames. As part of a honeypot or as an
instrument of your site security plan, Fake AP confuses Wardrivers,
NetStumblers, Script Kiddies, and other undesirables." -blackalchemy
Installing Fake AP
Note: Fake AP only works with prism cards.
Using Fake AP:
cd
/tools/wifi/fakeap
perl fakeap.pl
(for usage):
Running Fake AP in its
basic form:
perl fakeap.pl
--interface wlan0
Will produce numerous
Fake APs, however they will all be based on the default ESSIDs (Access Point,
tsunami, host, airport, linksys) and default vendor MACs (00:00:0C, 00:00:CE,
00:00:EF) listed in the fakeap.pl file.
Fake AP gives us many
more options to personalise our configuration we are able to specify:
-
Channel number
--channel [Channel No.]
-
Essid --essid [NAME]
-
MAC address --max
[MAC ADDRESS]
-
Sleep interval e.g. time
between AP changes --sleep [N] (Where N is seconds between AP change)
-
WEP key usage
probability --wep [N] (Use WEP with probability N where 0 < N <= 1)
-
WEP key itself --key
[WEP KEY]
-
Transmission power
between two values --power [N] (Vary transmit power between 1 and N.
In milliwatts)
In addition we can also
opt to use word files (/tools/wifi/fakeap-[version]/lists) to specify
ESSIDs and vendor MACs. Fake AP comes complete with 2 ESSID wordlists (koaps-fo-wordlist.txt,
stefan-wordlist.txt) and 1 MAC list (stefan-maclist.txt)
Examples:
perl fakeap.pl
--interface wlan0 --words lists/stefan-wordlist.txt --vendors
lists/stefan-maclist.txt
perl fakeap.pl
--interface wlan0 --channel 11 --essid BANANA --wep 1 --key [WEP KEY]
A screen capture of NetStumbler
probing the Fake AP
activity above:
|
Linux
