-->
Page 1 of 1

ESP8266 Mini Sniff in Promiscuous Mode

PostPosted: Fri Oct 14, 2016 1:55 pm
by mrburnette
My ArduinoIDE project makes use of a number of code samples from multiple authors (attribution in the Notes.h file and on the project page) on github and the API documentation from Espressif.

I have completely re-ordered all sample code and it is now in 3 separate tabs:
[*] Main Project Tab is where the typical setup() and loop() live
[*] structures.h is where all of the sketch function live
[*] functions.h is where all of the enablers and the callback function live

It's that simple. I have removed large amount of code to simplify the codebase to the point I think you can actually follow what is happening! I have also removed the transmit code found on the Russian forum that was intended to jam WiFi devices - such action is illegal in my country and I suspect other parts of the world, too. No need to get a newbie thrown into jail and hit with a big-bad-A$$ fine!

Here is the download link: ESP Mini Sniff

I hope you all enjoy the project. Here is a sample output from the NodeMCU USB-serial on my Linux box:

Code: Select all1.5.3(aec24ac9)

ESP8266 mini-sniff by Ray Burnette http://www.hackster.io/rayburne/projects
Type:   /-------MAC------/-----WiFi Access Point SSID-----/  /----MAC---/  Chnl  RSSI
BEACON: <=============== [                   HOME-01FC-2.4]  84002da251d8    6    -93
BEACON: <=============== [                      TardisTime]  1afe34a08bc9    8    -80
BEACON: <=============== [                     xfinitywifi]  84002da251da    6    -92
DEVICE: 18fe34f977a0 ==> [                      TardisTime]  1afe34a08bc9    8    -91
BEACON: <=============== [                                ]  fa8fca34e26c   11    -86
BEACON: <=============== [                       HOME-30C2]  5c571a0730c0   11    -85
DEVICE: 6002b4484f2d ==>    Unknown/Malformed packet
BEACON: <=============== [                                ]  52571a0730c0   11    -82
BEACON: <=============== [                     xfinitywifi]  56571a0730c0   11    -88
BEACON: <=============== [                      ATT8Q4z656]  b077acc4dfd0   11    -92
BEACON: <=============== [                      ATTGH6Gs22]  1005b1d6ff90   11    -88
BEACON: <=============== [                                ]  fa8fca95bad3   11    -94
BEACON: <=============== [                                ]  92877c55b1c0   11    -93
DEVICE: 18fe34fdc2b8 ==> [                      TardisTime]  1afe34a08bc9    8    -78
DEVICE: 6c71d970d1b7 ==> [                      ATT8Q4z656]  01005e7ffffa   11    -94
BEACON: <=============== [                                ]  84002da251d9    6    -90
BEACON: <=============== [                       HOME-B1C2]  94877c55b1c0   11    -97
BEACON: <=============== [                      ATT4P3G9f8]  1c1448777420   11    -94
DEVICE: 28b2bd6b9d29 ==> [                      ATT8Q4z656]  ffffffffffff   11    -91
DEVICE: e0f847252fbc ==> [                      ATT8Q4z656]  ffffffffffff   11    -91
DEVICE: a4773369c4d8 ==> [                       HOME-30C2]  88cb8787697a   11    -91
BEACON: <=============== [                     xfinitywifi]  96877c55b1c0   11    -92



Enjoy! But, please do not ask about hacking the API calls for other purposes. There is a list of contributors in the Notes.h page with links .... If you go this route be aware that you have been advised here that missteps could run afoul of the Laws.

Re: ESP8266 Mini Sniff in Promiscuous Mode

PostPosted: Sat Oct 15, 2016 9:22 am
by gerardwr
Excellent work, thanks for sharing.

Compiles OK on Arduino 1.6.9 on Mac OSX, and runs fine on Wemos-D1-Mini.

Interesting display of network traffic, needs further investigation on my part to find a good use for it.

Listing the IP in the output is an interesting extension, but is seems like this is not included in the received packets :-(