DIY Wifi Network Graph

Back in episode 157 I mentioned talked about a great article that walks you through using Kali to create a map of the wifi networks around you. I had a need to go through this exercise over the weekend, so here’s my condensed walkthrough:

cd /opt (or wherever you want to stick airgraph-ng)

svn co http://svn.aircrackng.org/trunk/scripts/airgraph-ng

cd airgraph-ng

chmod +x airgraph-ng

Then open up /opt/airgraph-ng/graphviz/libOuiParse.py and look for this line:

HexOui?[lineList[0].replace(“-“,”:”)] = lineList[2]

Change it to:

HexOui?[lineList[1].replace(“-“,”:”)] = lineList[3]

(It’s really just the two lineList values that get changed)

Now set the path in .bashrc:

export PATH=$PATH:/root/airgraph-ng

And create symbolic link (required):

ln -s /root/airgraph-ng /usr/share/airgraph-ng

Now put your NIC in monitor mode:

airmon-ng start wlan0

You might want to do an ifconfig at this point to see if your monitor interface name is something wonky. Mine became wlan0mon.

Now start dumping the info on wifi networks around you to an .out file:

airodump-ng wlan0mon --channel 1-11 -w airodump.out

Let that run for a while, then hit Control+C when done.

When you’re ready to generate your graph, run this:

airgraph-ng -i airodump.out-01.csv -o CAPR.png -g CAPR

---

DIY Dojo Scavenger Vulnerable Webapp

First "git" it from here:

git clone https://github.com/meeas/Samurai-Dojo /

I made my destination folder /var/www/html/sd because Dojo actually has two sub-sites (basic and scavenger).

Then import the SQL db for Samurai-Dojo by using this command:

mysql -u root -p < build.sql

Then update the mysql root password in the following two files:

• /var/www/html/sd/basic/config.inc
• /var/www/html/sd/scavenger/partners.php

If you’re hosting with Digital Ocean, I personally recommend locking down the iptables rules so that nobody casually comes by and has fun at the expense of your security!