Loading repository data…
Loading repository data…
migguel0 / repository
razorAP, Bash and Python tool used to generate Fake Access Points for Wi-Fi networks with 802.1X authentication.
A transparent discovery signal based on current public GitHub metadata.
This score does not audit code, security, maintainers, documentation quality, or suitability. Verify the repository and its current documentation before adoption.
razorAP is a Bash and Python tool used to generate Fake Access Points for Wi-Fi networks with 802.1X authentication.
The basic pieces for 802.1X authentication are
The Extensible Authentication Protocol (EAP) is used to send authentication information between the supplicant (the Wi-Fi workstation) and the authentication server (RADIUS) and it is the type of EAP that actually controls and defines the authentication.
This tool is aimed to assist in the execution of some controls in Wi-Fi audits. Following the OWISAM methodology (https://www.owisam.org/index.php) the controls that razorAP would help with are the following: OWISAM-CT-001, OWISAM-CT-004, OWISAM-CT-007.
An example of what is expected when using razorAP is to achieve that users connect to the Access Point that we have deployed with the tool, and then enter their username and password to authenticate. Afterwards, since razorAP acts as an Authenticator, it will collect the authentication information (username and the hash NTLM of the password).
Clone the github repository
git clone https://github.com/migguel0/razorAP
Grant execution permissions to the installation script.
chmod +x install.sh
Execute the installation script.
./install.sh
To launch the tool, run the initialization script, which will open two new terminals
./init.sh
On the one hand, the access point configuration terminal will be opened and on the other hand the cracking terminal.
The configuration terminal will help us in the configuration process with the following steps:
Once all the steps have been completed, the certificates to be included in the access point will be automatically generated and the access point will be automatically lifted.
Once the access point has been deployed, all that remains is to wait for a user to connect. Once connected, a message similar to the following one will be displayed on the terminal:
At this moment we can use the cracking terminal, or if it has been closed, execute the script 'cracker.sh'.
The tool implemented for now to try to crack the password is 'asleap'.
The steps to follow about the cracking script are the following:
The tests with the tool have been made in a virtual machine with Kali as OS.
The Alpha WiFi antenna AWUS036AC was used for the tests.
For the generation of the certificates we have used the Python script from the following github repository: https://github.com/WJDigby/apd_launchpad.git