Targetted Deauth Functionality and SD support to M5StickC devices

n0xa / m5stick-nemo

M5 Stick C firmware for high-tech pranks

Other

731 stars 148 forks source link

Targetted Deauth Functionality and SD support to M5StickC devices #70

Closed bmorcelli closed 7 months ago

bmorcelli commented 7 months ago

Added support do SD Card reader for M5StickC devices;

Added Deauthentication Attack, running from two places:

1: From Nemo Portal when cloned an AP from Wifi Scanning option
2: From "Targ. Deauth" menu in Wifi menu. The seccond option uses the wifi scanner function, to not rewrite menus and loop functions

The scanner details was showing wrong BSSID of the APs... I corrected that too.

The seccond option uses the wifi scanner function, to not rewrite menus and loop functions

Added support to Portuguese language.

Congratulations for your Job!

bmorcelli commented 7 months ago

For these multiple def for ieee80211_raw_frame_sanity_check, people need to add some flags to "platform.txt" of the M5 boards. I´m thinking in a way to automatize that with a .bat script, to make it simpler.

Close your Arduino IDE With any text editor, open C:\Users\\AppData\Local\Arduino15\packages\m5stack\hardware\esp32\2.0.9\platform.txt

Add -w to the following compiler settings

build.extra_flags.esp32
build.extra_flags.esp32s2
build.extra_flags.esp32s3
build.extra_flags.esp32c3

Add -zmuldefs to the following compiler settings

compiler.c.elf.libs.esp32
compiler.c.elf.libs.esp32s2
compiler.c.elf.libs.esp32s3
compiler.c.elf.libs.esp32c3

Open Arduino IDE

(These changes are almost the same needed to compile Marauder, form justcallmekoko)

Yesterday night a friend helped me fixing the BITMAP stuff, but I will review that on my brench

bmorcelli commented 7 months ago

Fixed the BITMAP, to sync with yours.

I also made a README with instructions to make DEAUTH compile without errors.

https://github.com/bmorcelli/m5stickC_Plus2-nemo/tree/main/DEAUTH%20Prerequisites

There is a .bat file that makes all the changes.

n0xa commented 7 months ago

I know the multiple definitions stuff probably crept in from how ESP32Marauder does a lot of stuff. Can you verify that there's no clean way to do what's needed in code to avoid those steps? One piece of feedback I've gotten is that NEMO is pretty easy to compile, and manually tweaking the compiler options buried in the platform configs is going to make it harder. I'm not 100% averse to it, but I'd like to make sure there's no other way.

bmorcelli commented 7 months ago

Unfortunately I didn't find a way to send the deauthentication frames without having to change the compiler's platform.txt.

I will continue researching a way to bypass sanity_check, which would probably lead to very advanced obfuscation techniques, and even so there is no guarantee that it will work.

With that in mind, I left the functionality optional, through #define DEAUTHER, so you can let it commented and let it to more advanced users.

n0xa commented 7 months ago

Let's re-convene on this after @vs4vijay helps me get the GitHub actions compiling images on the fly. Everyone wants Deauth, and you're on the right track. Targeted deauth is a good balance of useful vs chaos.

bmorcelli commented 7 months ago

Hello again...

I will update my code to match with the last version of Nemo... since the differences are not automattically done ... so i will close this pull request and open a new one, with clean changes..