Thanks Koala, that's very fresh, I'd say new movement in Rouge AP attacks. Best wishes from antichat community. Thanks for keep us informed with your script and to continue improve it !
Hi all New version of hostbase, currently in 1.1 with a small ruby gui and with more things automatised. If you don't have the previous version of hostbase you need to install the following tools: Code: apt-get install -y build-essential upgrade-system subversion wget g++ iptables iptables-dev pavucontrol ffmpeg sqlite3 libsqlite3-dev libssl-dev libnl-3-dev libnl-genl-3-dev dsniff hostapd isc-dhcp-server pkg-config xterm freeradius apache2 php libapache2-mod-php php-mcrypt php-cli tcpdump scapy vokoscreen wireshark python-twisted bridge-utils devscripts gengetopt autoconf libtool make Then look into the readme to install the dependencies of the gtk small GUI. Usage is very sample: After the install above and the gui install on the readme, copy/paste the entire hostbase-1.1 folder into /tmp and then open a shell directly in /tmp/hostbase-1.1 folder and launch it: Code: ruby hostbase.rb Begin by the scan to stop network-manager and grab the data of target network then choose your fake AP attack. What you have to know: To modify the phishing page filter according to your country, you have to go on check.rb line 54.Then on the phishing page entry type your page. How it works ? Hostbase is a rogue AP script based on encrypted fake AP using the WPS/PBC method. For the French and Spain country i have already done the phishing page.The Phishings pages must be place on the /etc folder.Currently we have two type of phishing page for each router.One ask the key and the other ask to push the WPS button.If you want to use this option you can write on the phishing page entry: mypage: if you want to use the key methos mypagewps: if you want to use the WPS method WARNING: hostbase require a few knowledge to manage apache2 web server. Hostbase also include an active DoS attack, it check every 12 minutes the AP channel and DoS it again if he moved. It was a little project and now it begin an international project. Hostbase is the only script to provide: -Encrypted AP to make a silencious attack (you can of course use airbase-ng as open network if your wifi card is not working with hostapd) -Active DoS tracking the AP -Use WPS connect method under linux to grab the key if the user push his WPS button. NOTE: to be more powerfull and for more stability, hostbase work with 2 wifi card. Video on youtube to see of it work type: hostbase-1.1 teaser This script is working under kali-linux. More information on the readme. Download it on my git: https://github.com/Koala633/hostbase/blob/master/hostbase-1.1EN-FR.zip
