netattack - Scan and Attack Wireless Networks
The netattack.py is a python script that allows you to scan your local area for WiFi Networks and perform deauthentification attacks. The effectiveness and power of this script highly depends on your wireless card.
SCANNING FOR WIFI NETWORKS
This example will perform a WiFi network scan. The BSSID, ESSID and the Channel will be listet in a table.
python netattack.py -scan -mon
This parameter must be called when you want to do a scan. It's one of the main commands. It is searching for beacon frames that are sent by routers to notify there presence.
-scan | --scan
By calling this parameter the script automatically detects you wireless card and puts it into monitoring mode to capture the ongoing traffic. If you know the name of your wireless card and it's already working in monitoring mode you can call
-mon | --monitor
This can be used instead of
This command will obviously perform a deauthentification attack.
python netattack.py -deauth -b AB:CD:EF:GH:IJ:KL -u 12:34:56:78:91:23 -c 4 -mon
This parameter is a main parameter as well as scan. It is necessary to call if you want to deauth attack a certain target.
-deauth | --deauth
-b | --bssid
-byou select the AP's MAC-Address (BSSID). The
-deauthparameter requires one or multiple BSSID's
If you don't want to attack the whole network, but a single user/client/device, you can do this with
-u | --client
-u. It is not necessary.
By adding this parameter, your deauthentification attack is going to be performed on the entered channel. The usage of
-c | --channel
-cis highly recommended since the attack will be a failure if the wrong channel is used. The channel of the AP can be seen by doing a WiFi scan (
-scan). If you don't add
-cthe attack will take place on the current channel.
-iis necessary for this attack as well.
DEAUTHENTIFICATION ATTACK ON EVERYBODY
When this command is called, the script automatically searches for AP in your area. After the search it start deauth-attacking all of the found AP's. The
python netattack.py -deauthall -i [IFACE]
-deauthallparameter only needs an interface to get it working. ATTENTION: If you want all of this attacks to be as efficient as possible, have a look at the following "ADVANCED"-section
This parameter is understood as the packetburst. Especially when you are targeting multiple AP's or even performing a
-p | --packetburst
-deauthallattack, the command is a must have. It defines the amount of deauth-packages to send after switching the target. When not adding the parameter it is going to be set to 64 by default. But that is highly unefficient if you are attacking 4+ AP's.
This parameter can be added to a
-t | --timeout
-deauth. If it's added to the
-scanparameter it defines the delay while switching the channel. It is set to 0.75s by default, so it is waiting 0.75s on each channel to collect beacon frames. If it's added to the
-deauthparameter, it defines the delay between each packetburst. This can be used to decrease the intense of the attack or to attack the target(s) at a certain time.
This parameter can only be added to
-cf | --channelformat
-scan. It shows a more detailed output while scanning. It's mainly recommended when the location changes and with it the AP's.
This parameter can only be added to
-a | --amount
-deauth. It defines a certain amount of packetbursts to send. This can be used for taking down the WiFi for a certain time.
THE OWNER AND PRODUCER OF THIS SOFTWARE IS NOT LIABLE FOR ANY DAMAGE OR ANY LAW VIOLATIONS CAUSED BY THE SOFTWARE.