c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.
THE RULES
Instance Rules
Community Rules
If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.
Learn about hacking
Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected]
Notable mention to [email protected]
Tl;dr enable protected management frames if you can.
It's the "if you can" part that's holding it back. There's a lot of devices, both clients and WiFi systems, out there that don't support it well.
I'll just leave this here..
How different is this from aircrackng? Based on the description, it sounds like they both accomplish the same thing.
Pwnagotchi mainly just does gamified deauth, by default it doesn't do the cracking of the collected pcaps.
Aircrackng can be installed as a plugin, but since it typically runs on rpi zeros it isn't very performant. You'd typically want to move your pcaps to a different machine to do the cracking portion (either using aircrack or hashcat), or use aircrack's entire suite on a more powerful laptop or something like that.
Ah ok cool. So pwnagotchi is intended more as a teaching tool or a POC pentest, as opposed to an actual pentest. Am I understanding correctly?
Yeah, pretty much. Although I'm sure plenty of people use it for malicious purposes, since it's more convenient than carrying around a laptop, or for building out/competing on the opwngrid.
It's definitely not meant for commercial use, if that's what you're asking.
Less for commercial use, and more for a true pentest of your own network. Well, I guess also for commercial use, for those professional pentesters out there, but I wasn't thinking of them when I asked :/
This whole gamified thing sounds pretty awesome, to be honest, and I'm intrigued.