SYWorks/wireless-ids SYWorks/wireless-ids

  • Stars
    star
    240
  • Rank 167,299 (Top 4 %)
  • Language
    Python
  • License
    GNU General Publi...
  • Created over 10 years ago
  • Updated over 10 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
SYWorks/wireless-ids
github

SYWorks

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Ability to detect suspicious activity such as (WEP/WPA/WPS) attack by sniffing the air for wireless packets.

Wireless IDS [Intrusion Detection System]

Wireless IDS is an open source tool written in Python and work on Linux environment. This tool will sniff your surrounding air traffic for suspicious activities such as WEP/WPA/WPS attacking packets. It do the following

  • Detect mass deauthentication sent to client / access point which unreasonable amount indicate possible WPA attack for handshakes.
  • Continual sending data to access point using broadcast MAC address which indicate a possibility of WEP attacks
  • Unreasonable amount of communication between wireless client and access point using EAP authentication which indicate the possibility of WPS bruteforce attack by Reaver / WPSCrack
  • Detection of changes in connection to anther access point which may have the possibility of connection to Rogue AP (User needs to assess the situation whether similar AP name)
  • Detects possible Rogue Access Point responding to probe by wireless devices in the surrounding.

Newly Added !!!!

  • Display similar Access Point's name (SSID) which could have the possibility of WiFi 'Evil Twins'.
  • Display of probing SSID by wireless devices
  • Detection of Korek Chopchop packets sent by Aircrack-NG (WEP attacks)
  • Detection of Fragmentation PRGA packets sent by Aircrack-NG (WEP attacks)
  • Detection of possible WPA Downgrade attack by MDK3
  • Detection of possible Michael Shutdown exploitation (TKIP) by MDK3
  • Detection of Beacon flooding by MDK3
  • Detection of possible Authentication DoS by MDK3
  • Detection of possible association flooding
  • Detection of WPA Migration Attack by Aircrack-NG (WPA Attack)
  • Allow logging of events to file.
  • Allow disabling of displaying of probing devices
  • Setting of scanning count..

Visit and Like my Facebook Page for other updated information and tools.

Read Wiki for installation and other details (https://github.com/SYWorks/wireless-ids/wiki)

Submit issue here

More Repositories

1

waidps

Wireless Auditing, Intrusion Detection & Prevention System
Python
499
star
2

wpa-bruteforcer

Attacking WPA/WPA encrypted access point without client.
Python
44
star
3

wifi-harvester

For collecting probed SSID name by wireless devices, Access point detail and connected clients.
Python
33
star
4

AES-HTML-Protect

Protect your sensitive HTML content with this AES encryption HTML loader. User will need to key in password in order to view the HTML content.
HTML
9
star
5

network_harvester

Collect surrounding network information (Access Point/Station)
7
star
6

CDN_Resolver

Obtaining and verifying possible IP address of domain behind CDN.
6
star
7

Database

This repository contain optional files for applications by SYWorks
4
star
8

SecureMail

1
star