hostapd-mana icon indicating copy to clipboard operation
hostapd-mana copied to clipboard

Published 20 hours ago verified publisher icon sensepost

Feature request: Known Beacons attack

Open magnusstubman opened this issue 6 years ago • 2 comments

First of all, thanks for your awesome tool!

I'd like to see the Known Beacons attack implemented. https://census-labs.com/news/2018/02/01/known-beacons-attack-34c3/

TL;DR: it's just the ability for hostapd to anounce multipled ESSIDs instead of just one.

magnusstubman avatar Apr 17 '18 19:04 magnusstubman

Adding this as a feature would surely increase MANA's success rate! For example using a simple dictionary file containing common ESSIDs, or perhaps something better... (dictionary was literally the first thing that popped into my mind) 😛

adde88 avatar May 20 '18 17:05 adde88

It’s on the todo list. I’d quite simply preload a list of SSIDs in mana’s ssid hash ie it would be as if mana had seen those networks before.

Mana wouldn’t send out more than one beacon, just different probe responses, as it always has. This is good enough to get devices to connect because devices that only implement passive scanning will still send a broadcast probe request, to which mana responds.

fwiw, in loud mode, you get very close to this quite quickly, as common SSIDs will be leaked by some devices & rebroadcast to all.

singe avatar May 20 '18 20:05 singe