Advanced tool for creating a WiFi hotspot with OSINT monitoring capabilities, DNS Spoofing, and educational captive portal. Designed for pentesting and security demonstrations.
Español: version en español:
- Configurable WiFi Hotspot: Customizable access point with WPA2/WPA3 or open networks
- OSINT Monitoring: Real-time network traffic capture, DNS/HTTP logging, device analysis
- DNS Spoofing: Domain redirection with fake pages for demonstrations
- Captive Portal: Web authentication portal with credential capture
- WPA Handshake Capture: Automatic 4-way handshake detection and capture
- Web Control Panel: Modern interface with real-time monitoring at
http://localhost:5000
- Linux (Kali Linux recommended)
- Debian/Ubuntu and derivatives
Install all dependencies with a single command:
sudo apt-get update
sudo apt-get install -y hostapd dnsmasq tcpdump tshark iptables expect python3-flask python3-flask-socketioDescription of each package:
- hostapd: Software for creating WiFi access points
- dnsmasq: DHCP and DNS server
- tcpdump: Network packet capture
- tshark: Traffic analysis tool (Wireshark CLI)
- iptables: Linux firewall and NAT
- expect: Interactive script automation
- python3-flask: Python web framework
- python3-flask-socketio: Real-time WebSocket communication
- WiFi adapter with AP (Access Point) mode capability
- Internet connection (for NAT and upstream access)
- Navigate to project directory
cd /path/to/project- Install dependencies
sudo apt-get update
sudo apt-get install -y hostapd dnsmasq tcpdump tshark iptables expect python3-flask python3-flask-socketio- Verify network interfaces
ip link show
# Identify your WiFi interface (e.g., wlan0, wlan1)- Grant execution permissions
chmod +x wifi_hotspot_osint.sh
chmod +x spoof_functions.sh- Start the web control panel:
sudo python3 hotspot_control_web.py- Access the panel at
http://localhost:5000 - Configure hotspot options and click "Start Hotspot"
sudo ./wifi_hotspot_osint.shFollow the interactive menu to configure and start the hotspot.
- SSID: WiFi network name
- Password: Leave empty for open network, minimum 8 characters for WPA2
- Channel: WiFi channel (1-11 for 2.4GHz, recommended: 6)
- Portal: Enable/disable captive portal
- MAC Spoofing: Random, custom, or disabled
project/
├── wifi_hotspot_osint.sh # Main script
├── spoof_functions.sh # DNS Spoofing functions
├── hotspot_control_web.py # Web control panel
├── webcautivo/ # Captive portal templates
├── logs/ # Auto-generated logs
│ ├── traffic_YYYYMMDD.pcap # Network captures
│ ├── dns_queries_YYYYMMDD.log # DNS logs
│ ├── captive_credentials.txt # Captured credentials
│ └── handshake_*.cap # WPA handshakes
└── README.md
EDUCATIONAL USE ONLY
This tool is designed exclusively for:
- Controlled testing environments
- Educational security demonstrations
- Authorized pentesting
- Computer security research
From web panel: Click "Stop Hotspot"
From terminal:
# Press Ctrl + C or:
sudo killall hostapd dnsmasq tcpdump
sudo iptables -F
sudo iptables -t nat -FEDUCATIONAL AND RESEARCH USE ONLY
This tool is provided "as is" without warranties. The author is not responsible for misuse or illegal use of this software.
IMPORTANT: Always obtain explicit authorization before conducting any security testing.