dadav
commented
5 years ago why whould you choose "chinko"? it means penis in japanese LOL
Open evilsocket opened 5 years ago
dadav
commented
5 years ago why whould you choose "chinko"? it means penis in japanese LOL
evilsocket
commented
5 years ago it's @caquino's idea! :D but i think it makes sense, it's like a small(er) wifi cock for pwnagotchi XD
hmax42
commented
5 years ago do the esp and the pwnagotchi communicate? since both can listen only on one channel, channel changes should happen synchonous, right?
MischaBoender
commented
5 years ago do the esp and the pwnagotchi communicate? since both can listen only on one channel, channel changes should happen synchonous, right?
They could connect / sync to each other over bluetooth.
evilsocket
commented
5 years ago but if you read what i'm suggesting you'll see there's no need for them to communicate other than reinjecting the frames from the esp side
hmax42
commented
5 years ago would the wifi channel not be an issue?
caquino
We should do something very simple but effective. An ESP should listen for management frames and reinject them as they are, this will effectively boost their rssi levels and, if the pwnagotchi is in range, it will detect them from the ESP itself, which would add as kind of a bridge.
The ESP should keep a list of the APs being "proxied".
Whenever pwnagotchi will deauthenticate or associate to one of those stations, the ESP will detect this packets as well, "remember" that they contain elements that they previously proxied and perform the same operation, reinject the deauths and association frames, along with the resulting (if any) handshake packets.
In a second iteration of this, given that pwnagotchi's identity is RSA based, we might want to experiment and see if ESP can do RSA encryption at the firmware level, so that only the target pwnagotchi would be able to decrypt the proxied frames.