starred/esp8266_deauther
1
0
Fork 0
mirror of https://github.com/SpacehuhnTech/esp8266_deauther.git synced 2026-04-26 00:05:55 +03:00
Code Issues 95 Projects Releases 10 Packages Wiki Activity

[GH-ISSUE #702] DEAUTH attack always uses broadcast address #255

New issue
Closed
opened 2026-02-28 00:00:42 +03:00 by kerem · 3 comments
kerem commented 2026-02-28 00:00:42 +03:00
Owner
Copy link

Originally created by @DrHardReset on GitHub (Jan 22, 2018).
Original GitHub issue: https://github.com/SpacehuhnTech/esp8266_deauther/issues/702

Hardware/Flashing:

Board: Deauther OLED V1.5 ESP8266+
Using OLED: YES
Using WebServer: NO
Using Serial: YES
Installation mode: source
Code/binary version: 1.6
Flash size: 512K
Flash method: Arduino IDE
Flash Frequency: 40Mhz
Upload Speed: 115200
Powered by: USB

Description:

I noticed, that all DEAUTH attacks I'm doing, are always done with the broadcast address "FF:FF:FF:FF:FF:FF" as client's MAC-address. It seems like clientScan.results is always empty.
clientScan.packetSniffer(buf, len) seems to be never called, as debug output is never generated from that method.

Originally created by @DrHardReset on GitHub (Jan 22, 2018). Original GitHub issue: https://github.com/SpacehuhnTech/esp8266_deauther/issues/702 ### Hardware/Flashing: Board: Deauther OLED V1.5 ESP8266+ Using OLED: YES Using WebServer: NO Using Serial: YES Installation mode: source Code/binary version: 1.6 Flash size: 512K Flash method: Arduino IDE Flash Frequency: 40Mhz Upload Speed: 115200 Powered by: USB ### Description: I noticed, that all DEAUTH attacks I'm doing, are always done with the broadcast address "FF:FF:FF:FF:FF:FF" as client's MAC-address. It seems like clientScan.results is always empty. clientScan.packetSniffer(buf, len) seems to be never called, as debug output is never generated from that method.
kerem 2026-02-28 00:00:42 +03:00
kerem commented 2026-02-28 00:00:44 +03:00
Author
Owner
Copy link

@DrHardReset commented on GitHub (Jan 23, 2018):

Well, I found the reason for only sending DEAUTH-Request to/form broadcast address: The method "void ClientScan::start(int _time)" is only called by a request from the webserver. As I'm not using the webserver, clients get never scanned. Furthermore in "Attack::run()" there is an if statement that leeds to send DEAUTHs only to clients that are selected.

Is that the expected behavior?
Why not scan and use the MAC-addresses of all the connected clients instead of using the broadcast address?
I tested the DEAUTHER against several clients. All linux clients got disconnected by the DEAUTHER, but most windows clients were resistant against the DEAUTHER.

<!-- gh-comment-id:359749675 --> @DrHardReset commented on GitHub (Jan 23, 2018): Well, I found the reason for only sending DEAUTH-Request to/form broadcast address: The method "void ClientScan::start(int _time)" is only called by a request from the webserver. As I'm not using the webserver, clients get never scanned. Furthermore in "Attack::run()" there is an if statement that leeds to send DEAUTHs only to clients that are selected. Is that the expected behavior? Why not scan and use the MAC-addresses of all the connected clients instead of using the broadcast address? I tested the DEAUTHER against several clients. All linux clients got disconnected by the DEAUTHER, but most windows clients were resistant against the DEAUTHER.
kerem commented 2026-02-28 00:00:44 +03:00
Author
Owner
Copy link

@spacehuhn commented on GitHub (Jan 23, 2018):

No worries I'm working on it 😃 I already got a good a reliable scan working for the next verison.
The reason it's so limited in the current version, is because the display interface was a quick and dirty addon. I'm rewriting the whole codebase.

<!-- gh-comment-id:359909857 --> @spacehuhn commented on GitHub (Jan 23, 2018): No worries I'm working on it 😃 I already got a good a reliable scan working for the next verison. The reason it's so *limited* in the current version, is because the display interface was a quick and dirty addon. I'm rewriting the whole codebase.
kerem commented 2026-02-28 00:00:44 +03:00
Author
Owner
Copy link

@tobozo commented on GitHub (Mar 24, 2018):

see if it is fixed in the next version, reopen if necessary

closing this

<!-- gh-comment-id:375908814 --> @tobozo commented on GitHub (Mar 24, 2018): see if it is fixed in the next version, reopen if necessary closing this
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
v2
v3
v1
2.6.1
2.6.0
2.6.0-rc3
2.6.0-rc2
2.6.0-rc1
2.5.0-rc2
2.5.0-rc1
v2.1.0
v2.0.5
v2.1.4
v2.0
v1.6-testing
v.1.6
v.1.5
v.1.4
v.1.3
v1.2
v1.1
1.0
Labels
Clear labels   
best of

   
bug

   
development

   
discussion

   
documentation

   
duplicate

   
feature request

   
help wanted

   
help wanted

   
improvement

   
pinned

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
stale

   
translation

   
v3

   
wontfix
No labels
best of
bug
development
discussion
documentation
duplicate
feature request
help wanted
help wanted
improvement
pinned
pull-request
question
stale
translation
v3
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/esp8266_deauther#255
No description provided.