braindead-sec / rogue-captive Goto Github PK

Rogue Captive Portal for Raspberry Pi

License: GNU General Public License v3.0

PHP 27.07% CSS 43.19% Shell 29.74%

rogue-captive's Introduction

A rogue captive portal for Raspberry Pi

This is a simple website and set of configuration files that turns a Raspberry Pi Zero W (or other Pi with WiFi) into a rogue access point named "Google Free Wi-Fi." It spoofs a captive portal that looks like the Google Account login page, however authentication always fails and the credentials are logged to a text file.

It was designed to demonstrate the simplicity of offline credential grabbing and to educate about wireless security. Using this for malicious purposes is against the author's intent and could lead to prosecution under privacy laws.

Installation after a fresh install of Raspbian Buster Lite:

sudo apt update
sudo apt install git
git clone https://github.com/braindead-sec/rogue-captive
cd rogue-captive
chmod +x install.sh
sudo ./install.sh
sudo reboot

During installation, macchanger will ask whether or not MAC addresses should be changed automatically - choose "No". The startup script in rc.local will perform this task more reliably.

After reboot, look for an access point named "Google Free Wi-Fi." Connecting to it from any device should automatically bring up a captive portal login screen.

Credentials are logged in /var/www/html/creds.txt.

rogue-captive's People

Contributors

Stargazers

Watchers

rogue-captive's Issues

update dnsmasq.conf

in dnsmasq.conf file, remove all addresses and replace with the one below

address=/#/10.1.1.1

this will make all host names resolve to the Raspberry Pi's IP address, so no need for specifying other hostnames

SSH after reboot

is there a way for me to ssh into my raspberry pi (zero w) after activating the captive portal?

failed to create interface wlan0

i got these error...
any suggestions?

hostapd.conf failed to create interface wlan0:-95 operation not suported

hello

Break it I believe this for me

php5 deprecated

Use php7.0 instead of php5
Change that in install.sh

hostname

how can I change the configuration such that it shows hostname on the URL
ie
'http://myhost.net/index.php' instead of 'http://10.1.1.1/index.php'

add uninstall script

Would be great to have a uninstall script to remove the captive portal.

dnsmasq gives a wrong IP to br0 interface

I'm having the hardest time trying to get this up and running.
Currently, it seems like dnsmasq is not giving IP 10.1.1.1 to my br0 interface. Instead, the IP is 169.254.164.184

Any idea what can be causing this? My wlan0 (external adapter), also has this IP. The SSID is being broadcast, but connecting is impossible because of these related errors:

dnsmasq-dhcp[1448]: no address range available for DHCP request

Thanks for helping out!

Include license

No redirect is happening after connecting to the wifi network

I have just installed the rogue-captive package on a freshly installed and updated raspbian installation (rapsberry pi 2).

The wifi network is broadcasting and I can connect via my android device. However, when I try to browse to a page I would expect to be redirected to the fake google page. This is not happening, the browser just says I'm offline.

On mac, I do get the portal page showing the gmail screen. Is there any way to get this to work on mobile devices?

Thank you! I'm using this in my classes about web security.

braindead-sec / rogue-captive Goto Github PK

rogue-captive's Introduction

A rogue captive portal for Raspberry Pi

rogue-captive's People

Contributors

Stargazers

Watchers

Forkers

rogue-captive's Issues

Recommend Projects

Recommend Topics

Recommend Org