Error loading attackinfo json

This error can occur when you will try to attack an AP that’s on a different frequency than the deauther’s AP’s frequency. (for ex. Your deauther is set to be on channel 1. You want to deauth an AP that is on channel 11. You start the attack and then instantly the deauther will switch channels and your phone is now unable to communicate to the ESP, and that’s when the error «error loading attackinfo.json» comes. Now you need to disconnect from the deauther’s AP and reconnect to it, after that reload the page and the error should be gone.)

Now some more details attackinfo.json
attackinfo.json shows in the browser which attack is running and it’s packetrate. I think that it refreshes every second when in the Attacks tab. If the browser is unable to refresh this file, it displays that error. Why is it unable to refresh this file?
First, the ESP may have switched channels when you started an attack.
Solution: Before trying to deauth an AP, check what channel is it at, and change the ESP’s channel to that before starting an attack.

Second, the deauther firmware itself might have encountered an error and crashed.
Solution: Reset ESP and try again. If it still doesn’t work, connect the ESP to your PC, get it’s serial output from serial monitor and open a new issue here, or you can try to read the serial output and try to fix it yourself.

Third, the ESP is damaged or the deauther firmware has been corrupted or flashed incorrectly.
Solution: (-> to be continued…)

Somebody asked me what version Im running (Im currently running v1.6)

My board is (Esp8266 NodeMCU Amica)

I have the same problem too! I also have the same board and same version running. This also happend on the nodemcu lolin too!! Everytime this happens I must unplug my esp8266 ans replug it.

I have this problem too and I want to know how to fix it. I also have to unplug and replug. Thats my only problem too!

@pow674 only problem i have

@Dev90564 Good to know im not the only one. I thought my board was ruined 😂😁.

I think you must change your band. But i dont know how to do that?? Please help😡

My deauther is not working correctly too😕

@flowbot123 please email me. My email is in my profile description

@flowbot123 i have changed my channel and it still says error loading attackinfo.json. i did this to 3 other boards too!

Ok… I dont know what else to do. I have tried everything and i still get this error.

Did u change ur band @dev90564

@dev90564 how did u do that???

Same problem too.. just reflash the old versions.. if they show the same problem then idk what else u can do.

Did not work 😕 @moonpie000

Didn’t work for me too!! @MoonPie000

Oh yeah @dev90564 channel is not the same as band!!

@pow674 did not work for me either

Flash back to 1.0 then 1.1, 1.2, 1.3, 1.4, 1.5, 1.6 and see if it works

@moonpie000 ok ill try that

Do not try what @moonpie000 suggested. It ruined my esp8266. I dont really care because i have a crap ton of these thing.

I was about to try it! Thankfully I was lazy enough not to do it….. I also think i found another way to remove the error. RESET the esp8266 and reflash 1.6

@pow674 i have tried this already

@pow674 ur method does not work unfortunately.

This error can occur when you will try to attack an AP that’s on a different frequency than the deauther’s AP’s frequency. (for ex. Your deauther is set to be on channel 1. You want to deauth an AP that is on channel 11. You start the attack and then instantly the deauther will switch channels and your phone is now unable to communicate to the ESP, and that’s when the error «error loading attackinfo.json» comes. Now you need to disconnect from the deauther’s AP and reconnect to it, after that reload the page and the error should be gone.)

Now some more details attackinfo.json
attackinfo.json shows in the browser which attack is running and it’s packetrate. I think that it refreshes every second when in the Attacks tab. If the browser is unable to refresh this file, it displays that error. Why is it unable to refresh this file?
First, the ESP may have switched channels when you started an attack.
Solution: Before trying to deauth an AP, check what channel is it at, and change the ESP’s channel to that before starting an attack.

Second, the deauther firmware itself might have encountered an error and crashed.
Solution: Reset ESP and try again. If it still doesn’t work, connect the ESP to your PC, get it’s serial output from serial monitor and open a new issue here, or you can try to read the serial output and try to fix it yourself.

Third, the ESP is damaged or the deauther firmware has been corrupted or flashed incorrectly.
Solution: (-> to be continued…)

@marek26340 thank you very much. Your methods have helped alot and have been successful! 😁

— Thu Jun 08, 2017 8:23 am
#66912

Hey guys..

short introduction since i’m new to the forum; i’m a engineering / digital communication student working around course given assignments looking into deeper sides of technology and communication. recently pentesting has come to my attention and ive had a little desire to get more into this.

whilst looking for some experiments to have a go at this, i came across the esp8622 scripts and setups.

since i barely have any experience with java or wifi programming yet, i was hoping to get some help troubleshooting a certain issue with the chip.

the setup appears to work, the chip( amica nodemcu, 8622mod chipset. flashed with both the mcuflasher and the arduino compiler in different tries with different settings.

i have installed the driver provided with the documentation of the chip.

i tried different settings in the settingsmenu of the page provided in the program.

the ap and station scans work, the probe request and the spammer work too.

the only thing that doesnt give is the deauther, as soon as i start it, the mcu freezes and the page tells me that attackinfo.json cant be found aswell as other errors.

for de arduino compiler i double checked if the version was 2.0.0 as provided in nearly any tutorial.

i hope to have informed you enough,
if more information is needed, Help a noob out and educate me with your questions!

thanks in forward

Attackinfo.json #713

Comments

Everytime I test the deauth option I get an error that says «error loading attackinfo.json». If anyone knows how to fix this comment the steps please. Thanks! 😊

The text was updated successfully, but these errors were encountered:

Somebody asked me what version Im running (Im currently running v1.6)

My board is (Esp8266 NodeMCU Amica)

I have the same problem too! I also have the same board and same version running. This also happend on the nodemcu lolin too!! Everytime this happens I must unplug my esp8266 ans replug it.

I have this problem too and I want to know how to fix it. I also have to unplug and replug. Thats my only problem too!

@Pow674 only problem i have

@Dev90564 Good to know im not the only one. I thought my board was ruined 😂 😁 .

I think you must change your band. But i dont know how to do that?? Please help 😡

My deauther is not working correctly too 😕

@FlowBot123 just search up how to change the band 😁

@FlowBot123 please email me. My email is in my profile description

@FlowBot123 i have changed my channel and it still says error loading attackinfo.json. i did this to 3 other boards too!

Ok. I dont know what else to do. I have tried everything and i still get this error.

Ill check my channel too

Did u change ur band @Dev90564

@Dev90564 how did u do that.

Same as channel

Same problem too.. just reflash the old versions.. if they show the same problem then idk what else u can do.

Didn’t work for me too!! @MoonPie000

Any other methods

Oh yeah @Dev90564 channel is not the same as band!!

@Pow674 did not work for me either

Flash back to 1.0 then 1.1, 1.2, 1.3, 1.4, 1.5, 1.6 and see if it works

@MoonPie000 ok ill try that

Do not try what @MoonPie000 suggested. It ruined my esp8266. I dont really care because i have a crap ton of these thing.

I was about to try it! Thankfully I was lazy enough not to do it. I also think i found another way to remove the error. RESET the esp8266 and reflash 1.6

@Pow674 i have tried this already

@Pow674 ur method does not work unfortunately.

This error can occur when you will try to attack an AP that’s on a different frequency than the deauther’s AP’s frequency. (for ex. Your deauther is set to be on channel 1. You want to deauth an AP that is on channel 11. You start the attack and then instantly the deauther will switch channels and your phone is now unable to communicate to the ESP, and that’s when the error «error loading attackinfo.json» comes. Now you need to disconnect from the deauther’s AP and reconnect to it, after that reload the page and the error should be gone.)

Now some more details attackinfo.json
attackinfo.json shows in the browser which attack is running and it’s packetrate. I think that it refreshes every second when in the Attacks tab. If the browser is unable to refresh this file, it displays that error. Why is it unable to refresh this file?
First, the ESP may have switched channels when you started an attack.
Solution: Before trying to deauth an AP, check what channel is it at, and change the ESP’s channel to that before starting an attack.

Second, the deauther firmware itself might have encountered an error and crashed.
Solution: Reset ESP and try again. If it still doesn’t work, connect the ESP to your PC, get it’s serial output from serial monitor and open a new issue here, or you can try to read the serial output and try to fix it yourself.

Third, the ESP is damaged or the deauther firmware has been corrupted or flashed incorrectly.
Solution: (-> to be continued. )

Источник

UI: error loading attackStart.json?num=0 while in deauth loop #358

Comments

When I do a Deauth attack I get the error error loading attackStart.json?num=0
How to fix it?

The text was updated successfully, but these errors were encountered:

This error can mean that the esp8266 is not responding after trying to start an attack.
So we need more informations. Can you provide the output of the serial communication with your esp ?

Where can I find the the output of the serial communication?

I want to add, I’ve got the same issue. It starts by saying the JSON attack file couldn’t be loaded, and then shortly after I get the same error as OP. Like OP, I don’t know where the output is, but if the thread is updated with instructions then I’ll will send them over.

Arduino IDE : Menu Tools —> Serial monitor.
Use it when connected to the esp.
You’ll get additional debugging informations about what’s happening during the firmware execution.

Okay. Thanks for the promt reply. So, I selected the target network, went to attacks saw the correct network was in the selected APs so continued to start the Deauth attack, first it said there was an error loading the file, it continued and the status changed to starting. Next it created the attackStart.json?num=0 error. The monitor outputted this during that time: https://pastebin.com/ek8PVYRp and the button to stop the attack wouldn’t work as it was stuck on starting.

I also wanted to say, I don’t know if something is messed up with the output or if it should be like that but i put it in a pastebin anyway. Thanks for helping us.

That looks like the wrong baudrate. On the serial monitor in the bottom right corner, set it to 115200.

with 115200 the output stays empty.

The output just changed to running Deauth attack. done, but I still get the error loading attackInfo.json

But now I get this error in the arduino coding screen, java.io.IOException: jssc.SerialPortException: Port name — COM4; Method name — setEventsMask(); Exception type — Can’t set mask.

I think I got it figured out, according to the serial monitor everything is working, but I still get the error. I ignored the error and pressed stop, it stopped, then I pressed start again and it worked without any errors. I will add a pastebin link down below. It looks like it is working fine. Only problem is the wrong error I guess.

Источник

Bug in attacks.json #667

Comments

Hardware/Flashing:

Board: ?ESP8266 dev module?Tindie OLED?Wemos Mini?Other (specify)?
Using OLED: NO
Using WebServer: YES
Using Serial: NO
Installation mode: source
Code/binary version: 1.6
Flash size: ?1M
Flash method: Arduino IDE
Flash Frequency:
Upload Speed: 115200
Powered by: Battery

Description:

When i start an attack by deauth, sometime i must reboot my card because a message say on my webphone «Attack.json failed».

What you’re expecting: —
What you get instead: —

Debug Messages: Attack.json failed

The text was updated successfully, but these errors were encountered:

Have you tried another browser?

No, just chrome on android

Then try another browser. You can try Firefox, Opera etc.

More things that you can do:
Try to find the channel of the network that you are trying to attack, set the channel of your deauther to the channel of the AP that you are trying to deauth, and try to attack it again. Did you get that error again?

Another bad thing that could have happened is that you messed up something when building from source. So I recommend you to try using the .bin files. If the error is still present, then idk what should you do next.

I have been having this issue as well.

Same here, except I am also getting it on ClientScan.json

I get an error loading attackinfo.json

see if it is fixed in the next version, reopen if necessary

You can loose connection when starting an attack, as explained in the web interface.

Footer

© 2023 GitHub, Inc.

You can’t perform that action at this time.

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session.

Источник

Esp8266_deauther: Attackinfo.json

Everytime I test the deauth option I get an error that says «error loading attackinfo.json». If anyone knows how to fix this comment the steps please. Thanks!:blush:

This error can occur when you will try to attack an AP that’s on a different frequency than the deauther’s AP’s frequency. (for ex. Your deauther is set to be on channel 1. You want to deauth an AP that is on channel 11. You start the attack and then instantly the deauther will switch channels and your phone is now unable to communicate to the ESP, and that’s when the error «error loading attackinfo.json» comes. Now you need to disconnect from the deauther’s AP and reconnect to it, after that reload the page and the error should be gone.)

Now some more details attackinfo.json
attackinfo.json shows in the browser which attack is running and it’s packetrate. I think that it refreshes every second when in the Attacks tab. If the browser is unable to refresh this file, it displays that error. Why is it unable to refresh this file?
First, the ESP may have switched channels when you started an attack.
Solution: Before trying to deauth an AP, check what channel is it at, and change the ESP’s channel to that before starting an attack.

Second, the deauther firmware itself might have encountered an error and crashed.
Solution: Reset ESP and try again. If it still doesn’t work, connect the ESP to your PC, get it’s serial output from serial monitor and open a new issue here, or you can try to read the serial output and try to fix it yourself.

Third, the ESP is damaged or the deauther firmware has been corrupted or flashed incorrectly.
Solution: (-> to be continued. )

Источник

Esp8266_deauther: UI: error loading attackStart.json?num=0 while in deauth loop

When I do a Deauth attack I get the error error loading attackStart.json?num=0
How to fix it?

I think I got it figured out, according to the serial monitor everything is working, but I still get the error. I ignored the error and pressed stop, it stopped, then I pressed start again and it worked without any errors. I will add a pastebin link down below. It looks like it is working fine. Only problem is the wrong error I guess.

All 15 comments

This error can mean that the esp8266 is not responding after trying to start an attack.
So we need more informations. Can you provide the output of the serial communication with your esp ?

Where can I find the the output of the serial communication?

I want to add, I’ve got the same issue. It starts by saying the JSON attack file couldn’t be loaded, and then shortly after I get the same error as OP. Like OP, I don’t know where the output is, but if the thread is updated with instructions then I’ll will send them over.

Arduino IDE : Menu Tools —> Serial monitor.
Use it when connected to the esp.
You’ll get additional debugging informations about what’s happening during the firmware execution.

Okay. Thanks for the promt reply. So, I selected the target network, went to attacks saw the correct network was in the selected APs so continued to start the Deauth attack, first it said there was an error loading the file, it continued and the status changed to starting. Next it created the attackStart.json?num=0 error. The monitor outputted this during that time: https://pastebin.com/ek8PVYRp and the button to stop the attack wouldn’t work as it was stuck on starting.

I also wanted to say, I don’t know if something is messed up with the output or if it should be like that but i put it in a pastebin anyway. Thanks for helping us. on 12 Aug 2017

That looks like the wrong baudrate. On the serial monitor in the bottom right corner, set it to 115200.

Источник

in local when i click on button «LOGIN» i have this exception?

> W/System.err: org.json.JSONException: Value <!DOCTYPE of type java.lang.String cannot be converted to JSONObject

Here is my code;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;

DBConnect.php:

class DB_Connect {
    private $conn;

    // Connecting to database
    public function connect() {
        require_once 'include/Config.php';

        // Connecting to mysql database
        $this->conn = new mysqli(DB_HOST, DB_USER, DB_PASSWORD, DB_DATABASE);

        // return database handler
        return $this->conn;
    }
}

DBFunction.php:

class DB_Functions {

    private $conn;

    // constructor
    function __construct() {
        require_once 'DB_Connect.php';
        // connecting to database
        $db = new Db_Connect();
        $this->conn = $db->connect();
    }

    // destructor
    function __destruct() {

    }

    /**
     * Storing new user
     * returns user details
     */
    public function storeUser($name, $email, $password) {
        $uuid = uniqid('', true);
        $hash = $this->hashSSHA($password);
        $encrypted_password = $hash["encrypted"]; // encrypted password
        $salt = $hash["salt"]; // salt

        $stmt = $this->conn->prepare("INSERT INTO users(unique_id, name, email, encrypted_password, salt, created_at) VALUES(?, ?, ?, ?, ?, NOW())");
        $stmt->bind_param("sssss", $uuid, $name, $email, $encrypted_password, $salt);
        $result = $stmt->execute();
        $stmt->close();

        // check for successful store
        if ($result) {
            $stmt = $this->conn->prepare("SELECT * FROM users WHERE email = ?");
            $stmt->bind_param("s", $email);
            $stmt->execute();
            $user = $stmt->get_result()->fetch_assoc();
            $stmt->close();

            return $user;
        } else {
            return false;
        }
    }

    /**
     * Get user by email and password
     */
    public function getUserByEmailAndPassword($email, $password) {

        $stmt = $this->conn->prepare("SELECT * FROM users WHERE email = ?");

        $stmt->bind_param("s", $email);

        if ($stmt->execute()) {
            $user = $stmt->get_result()->fetch_assoc();
            $stmt->close();

            // verifying user password
            $salt = $user['salt'];
            $encrypted_password = $user['encrypted_password'];
            $hash = $this->checkhashSSHA($salt, $password);
            // check for password equality
            if ($encrypted_password == $hash) {
                // user authentication details are correct
                return $user;
            }
        } else {
            return NULL;
        }
    }

    /**
     * Check user is existed or not
     */
    public function isUserExisted($email) {
        $stmt = $this->conn->prepare("SELECT email from users WHERE email = ?");

        $stmt->bind_param("s", $email);

        $stmt->execute();

        $stmt->store_result();

        if ($stmt->num_rows > 0) {
            // user existed 
            $stmt->close();
            return true;
        } else {
            // user not existed
            $stmt->close();
            return false;
        }
    }

    /**
     * Encrypting password
     * @param password
     * returns salt and encrypted password
     */
    public function hashSSHA($password) {

        $salt = sha1(rand());
        $salt = substr($salt, 0, 10);
        $encrypted = base64_encode(sha1($password . $salt, true) . $salt);
        $hash = array("salt" => $salt, "encrypted" => $encrypted);
        return $hash;
    }

    /**
     * Decrypting password
     * @param salt, password
     * returns hash string
     */
    public function checkhashSSHA($salt, $password) {

        $hash = base64_encode(sha1($password . $salt, true) . $salt);

        return $hash;
    }

}

REGISTER ACTIVITY.java:

public class RegisterActivity extends Activity {
    private static final String TAG = RegisterActivity.class.getSimpleName();
    private Button btnRegister;
    private Button btnLinkToLogin;
    private EditText inputFullName;
    private EditText inputEmail;
    private EditText inputPassword;
    private ProgressDialog pDialog;
    private SessionManager session;
    private SQLiteHandler db;

    @Override
    public void onCreate(Bundle savedInstanceState) {
        super.onCreate(savedInstanceState);
        setContentView(R.layout.activity_register);

        inputFullName = (EditText) findViewById(R.id.name);
        inputEmail = (EditText) findViewById(R.id.email);
        inputPassword = (EditText) findViewById(R.id.password);
        btnRegister = (Button) findViewById(R.id.btnRegister);
        btnLinkToLogin = (Button) findViewById(R.id.btnLinkToLoginScreen);

        // Progress dialog
        pDialog = new ProgressDialog(this);
        pDialog.setCancelable(false);

        // Session manager
        session = new SessionManager(getApplicationContext());

        // SQLite database handler
        db = new SQLiteHandler(getApplicationContext());

        // Check if user is already logged in or not
        if (session.isLoggedIn()) {
            // User is already logged in. Take him to main activity
            Intent intent = new Intent(RegisterActivity.this,
                    MainActivity.class);
            startActivity(intent);
            finish();
        }

        // Register Button Click event
        btnRegister.setOnClickListener(new View.OnClickListener() {
            public void onClick(View view) {
                String name = inputFullName.getText().toString().trim();
                String email = inputEmail.getText().toString().trim();
                String password = inputPassword.getText().toString().trim();

                if (!name.isEmpty() && !email.isEmpty() && !password.isEmpty()) {
                    registerUser(name, email, password);
                } else {
                    Toast.makeText(getApplicationContext(),
                            "Please enter your details!", Toast.LENGTH_LONG)
                            .show();
                }
            }
        });

        // Link to Login Screen
        btnLinkToLogin.setOnClickListener(new View.OnClickListener() {

            public void onClick(View view) {
                Intent i = new Intent(getApplicationContext(),
                        LoginActivity.class);
                startActivity(i);
                finish();
            }
        });

    }

    /**
     * Function to store user in MySQL database will post params(tag, name,
     * email, password) to register url
     * */
    private void registerUser(final String name, final String email,
                              final String password) {
        // Tag used to cancel the request
        String tag_string_req = "req_register";

        pDialog.setMessage("Registering ...");
        showDialog();

        StringRequest strReq = new StringRequest(Method.POST,
                AppConfig.URL_REGISTER, new Response.Listener<String>() {

            @Override
            public void onResponse(String response) {
                Log.d(TAG, "Register Response: " + response.toString());
                hideDialog();

                try {
                    JSONObject jObj = new JSONObject(response);
                    boolean error = jObj.getBoolean("error");
                    if (!error) {
                        // User successfully stored in MySQL
                        // Now store the user in sqlite
                        String uid = jObj.getString("uid");

                        JSONObject user = jObj.getJSONObject("user");
                        String name = user.getString("name");
                        String email = user.getString("email");
                        String created_at = user
                                .getString("created_at");

                        // Inserting row in users table
                        db.addUser(name, email, uid, created_at);

                        Toast.makeText(getApplicationContext(), "User successfully registered. Try login now!", Toast.LENGTH_LONG).show();

                        // Launch login activity
                        Intent intent = new Intent(
                                RegisterActivity.this,
                                LoginActivity.class);
                        startActivity(intent);
                        finish();
                    } else {

                        // Error occurred in registration. Get the error
                        // message
                        String errorMsg = jObj.getString("error_msg");
                        Toast.makeText(getApplicationContext(),
                                errorMsg, Toast.LENGTH_LONG).show();
                    }
                } catch (JSONException e) {
                    e.printStackTrace();
                }

            }
        }, new Response.ErrorListener() {

            @Override
            public void onErrorResponse(VolleyError error) {
                Log.e(TAG, "Registration Error: " + error.getMessage());
                Toast.makeText(getApplicationContext(),
                        error.getMessage(), Toast.LENGTH_LONG).show();
                hideDialog();
            }
        }) {

            @Override
            protected Map<String, String> getParams() {
                // Posting params to register url
                Map<String, String> params = new HashMap<String, String>();
                params.put("name", name);
                params.put("email", email);
                params.put("password", password);

                return params;
            }

        };

        // Adding request to request queue
        AppController.getInstance().addToRequestQueue(strReq, tag_string_req);
    }

    private void showDialog() {
        if (!pDialog.isShowing())
            pDialog.show();
    }

    private void hideDialog() {
        if (pDialog.isShowing())
            pDialog.dismiss();
    }
}

LOGIN ACTIVITY.java:

public class LoginActivity extends Activity {
    private static final String TAG = RegisterActivity.class.getSimpleName();
    private Button btnLogin;
    private Button btnLinkToRegister;
    private EditText inputEmail;
    private EditText inputPassword;
    private ProgressDialog pDialog;
    private SessionManager session;
    private SQLiteHandler db;

    @Override
    public void onCreate(Bundle savedInstanceState) {
        super.onCreate(savedInstanceState);
        setContentView(R.layout.activity_login);

        inputEmail = (EditText) findViewById(R.id.email);
        inputPassword = (EditText) findViewById(R.id.password);
        btnLogin = (Button) findViewById(R.id.btnLogin);
        btnLinkToRegister = (Button) findViewById(R.id.btnLinkToRegisterScreen);

        // Progress dialog
        pDialog = new ProgressDialog(this);
        pDialog.setCancelable(false);

        // SQLite database handler
        db = new SQLiteHandler(getApplicationContext());

        // Session manager
        session = new SessionManager(getApplicationContext());

        // Check if user is already logged in or not
        if (session.isLoggedIn()) {
            // User is already logged in. Take him to main activity
            Intent intent = new Intent(LoginActivity.this, MainActivity.class);
            startActivity(intent);
            finish();
        }

        // Login button Click Event
        btnLogin.setOnClickListener(new View.OnClickListener() {

            public void onClick(View view) {
                String email = inputEmail.getText().toString().trim();
                String password = inputPassword.getText().toString().trim();

                // Check for empty data in the form
                if (!email.isEmpty() && !password.isEmpty()) {
                    // login user
                    checkLogin(email, password);
                } else {
                    // Prompt user to enter credentials
                    Toast.makeText(getApplicationContext(),
                            "Please enter the credentials!", Toast.LENGTH_LONG)
                            .show();
                }
            }

        });

        // Link to Register Screen
        btnLinkToRegister.setOnClickListener(new View.OnClickListener() {

            public void onClick(View view) {
                Intent i = new Intent(getApplicationContext(),
                        RegisterActivity.class);
                startActivity(i);
                finish();
            }
        });

    }

    /**
     * function to verify login details in mysql db
     * */
    private void checkLogin(final String email, final String password) {
        // Tag used to cancel the request
        String tag_string_req = "req_login";

        pDialog.setMessage("Logging in ...");
        showDialog();

        StringRequest strReq = new StringRequest(Method.POST,
                AppConfig.URL_LOGIN, new Response.Listener<String>() {

            @Override
            public void onResponse(String response) {
                Log.d(TAG, "Login Response: " + response.toString());
                hideDialog();

                try {
                    JSONObject jObj = new JSONObject(response);
                    boolean error = jObj.getBoolean("error");

                    // Check for error node in json
                    if (!error) {
                        // user successfully logged in
                        // Create login session
                        session.setLogin(true);

                        // Now store the user in SQLite
                        String uid = jObj.getString("uid");

                        JSONObject user = jObj.getJSONObject("user");
                        String name = user.getString("name");
                        String email = user.getString("email");
                        String created_at = user
                                .getString("created_at");

                        // Inserting row in users table
                        db.addUser(name, email, uid, created_at);

                        // Launch main activity
                        Intent intent = new Intent(LoginActivity.this,
                                MainActivity.class);
                        startActivity(intent);
                        finish();
                    } else {
                        // Error in login. Get the error message
                        String errorMsg = jObj.getString("error_msg");
                        Toast.makeText(getApplicationContext(),
                                errorMsg, Toast.LENGTH_LONG).show();
                    }
                } catch (JSONException e) {
                    // JSON error
                    e.printStackTrace();
                    Toast.makeText(getApplicationContext(), "Json error: " + e.getMessage(), Toast.LENGTH_LONG).show();
                }

            }
        }, new Response.ErrorListener() {

            @Override
            public void onErrorResponse(VolleyError error) {
                Log.e(TAG, "Login Error: " + error.getMessage());
                Toast.makeText(getApplicationContext(),
                        error.getMessage(), Toast.LENGTH_LONG).show();
                hideDialog();
            }
        }) {

            @Override
            protected Map<String, String> getParams() {
                // Posting parameters to login url
                Map<String, String> params = new HashMap<String, String>();
                params.put("email", email);
                params.put("password", password);

                return params;
            }

        };

        // Adding request to request queue
        AppController.getInstance().addToRequestQueue(strReq, tag_string_req);
    }

    private void showDialog() {
        if (!pDialog.isShowing())
            pDialog.show();
    }

    private void hideDialog() {
        if (pDialog.isShowing())
            pDialog.dismiss();
    }
}

And here is AppConfig.java

public class AppConfig {
    // Server user login url
//  public static String URL_LOGIN = "http://192.168.0.102/android_login_api/login.php";
    //public static String URL_LOGIN = "http://10.0.2.2:8888/android_login_api/login.php";
    public static String URL_LOGIN = "http://10.0.2.2:8888/phpmyadmin/import.php#PMAURL-0:tbl_structure.php?db=android_api&table=users&server=1&target=&token=809562ca509cc18a182d0f6b0bef5485/login.php";



    // Server user register url
    //public static String URL_REGISTER = "http://10.0.2.2:8888/android_login_api/register.php";
    public static String URL_REGISTER = "http://10.0.2.2:8888/phpmyadmin/import.php#PMAURL-0:tbl_structure.php?db=android_api&table=users&server=1&target=&token=809562ca509cc18a182d0f6b0bef5485/register.php";

}

register.php:

require_once 'include/DB_Functions.php';
$db = new DB_Functions();

// json response array
$response = array("error" => FALSE);

if (isset($_POST['name']) && isset($_POST['email']) && isset($_POST['password'])) {

    // receiving the post params
    $name = $_POST['name'];
    $email = $_POST['email'];
    $password = $_POST['password'];

    // check if user is already existed with the same email
    if ($db->isUserExisted($email)) {
        // user already existed
        $response["error"] = TRUE;
        $response["error_msg"] = "User already existed with " . $email;
        echo json_encode($response);
    } else {
        // create a new user
        $user = $db->storeUser($name, $email, $password);
        if ($user) {
            // user stored successfully
            $response["error"] = FALSE;
            $response["uid"] = $user["unique_id"];
            $response["user"]["name"] = $user["name"];
            $response["user"]["email"] = $user["email"];
            $response["user"]["created_at"] = $user["created_at"];
            $response["user"]["updated_at"] = $user["updated_at"];
            echo json_encode($response);
        } else {
            // user failed to store
            $response["error"] = TRUE;
            $response["error_msg"] = "Unknown error occurred in registration!";
            echo json_encode($response);
        }
    }
} else {
    $response["error"] = TRUE;
    $response["error_msg"] = "Required parameters (name, email or password) is missing!";
    echo json_encode($response);
}

LOGIN.php:

require_once 'include/DB_Functions.php';
$db = new DB_Functions();

// json response array
$response = array("error" => FALSE);

if (isset($_POST['email']) && isset($_POST['password'])) {

    // receiving the post params
    $email = $_POST['email'];
    $password = $_POST['password'];

    // get the user by email and password
    $user = $db->getUserByEmailAndPassword($email, $password);

    if ($user != false) {
        // use is found
        $response["error"] = FALSE;
        $response["uid"] = $user["unique_id"];
        $response["user"]["name"] = $user["name"];
        $response["user"]["email"] = $user["email"];
        $response["user"]["created_at"] = $user["created_at"];
        $response["user"]["updated_at"] = $user["updated_at"];
        echo json_encode($response);
    } else {
        // user is not found with the credentials
        $response["error"] = TRUE;
        $response["error_msg"] = "Login credentials are wrong. Please try again!";
        echo json_encode($response);
    }
} else {
    // required post params is missing
    $response["error"] = TRUE;
    $response["error_msg"] = "Required parameters email or password is missing!";
    echo json_encode($response);
}

LOGCAT:

07-13 19:55:24.137 11917-11917/ W/System.err: org.json.JSONException: Value <!DOCTYPE of type java.lang.String cannot be converted to JSONObject
07-13 19:55:24.137 11917-11917/ W/System.err:     at org.json.JSON.typeMismatch(JSON.java:111)
07-13 19:55:24.137 11917-11917/ W/System.err:     at org.json.JSONObject.<init>(JSONObject.java:158)
07-13 19:55:24.137 11917-11917/ W/System.err:     at org.json.JSONObject.<init>(JSONObject.java:171)
07-13 19:55:24.137 11917-11917/ W/System.err:     at info.androidhive.loginandregistration.activity.RegisterActivity$3.onResponse(RegisterActivity.java:127)
07-13 19:55:24.137 11917-11917/ W/System.err:     at info.androidhive.loginandregistration.activity.RegisterActivity$3.onResponse(RegisterActivity.java:119)
07-13 19:55:24.137 11917-11917/ W/System.err:     at com.android.volley.toolbox.StringRequest.deliverResponse(StringRequest.java:60)
07-13 19:55:24.137 11917-11917/ W/System.err:     at com.android.volley.toolbox.StringRequest.deliverResponse(StringRequest.java:30)
07-13 19:55:24.137 11917-11917/ W/System.err:     at com.android.volley.ExecutorDelivery$ResponseDeliveryRunnable.run(ExecutorDelivery.java:99)
07-13 19:55:24.137 11917-11917/ W/System.err:     at android.os.Handler.handleCallback(Handler.java:605)
07-13 19:55:24.137 11917-11917/ W/System.err:     at android.os.Handler.dispatchMessage(Handler.java:92)
07-13 19:55:24.137 11917-11917/ W/System.err:     at android.os.Looper.loop(Looper.java:137)
07-13 19:55:24.137 11917-11917/ W/System.err:     at android.app.ActivityThread.main(ActivityThread.java:4424)
07-13 19:55:24.137 11917-11917/W/System.err:     at java.lang.reflect.Method.invokeNative(Native Method)
07-13 19:55:24.137 11917-11917/ W/System.err:     at java.lang.reflect.Method.invoke(Method.java:511)
07-13 19:55:24.137 11917-11917/ W/System.err:     at com.android.internal.os.ZygoteInit$MethodAndArgsCaller.run(ZygoteInit.java:784)
07-13 19:55:24.137 11917-11917/ W/System.err:     at com.android.internal.os.ZygoteInit.main(ZygoteInit.java:551)
07-13 19:55:24.137 11917-11917/ W/System.err:     at dalvik.system.NativeStart.main(Native Method)

wi-pwn’s Introduction

Wi-PWN

Sponsor this project
ESP8266 firmware for performing deauthentication attacks, with ease.

• Fast & responsive Material Design UI, with optional dark mode
• Integrated Deauth Detector (with full customization)
• WiFi client mode — Access Wi-PWN on a WiFi network
• Info page with total packets sent, uptime, memory usage, check for updates…
• Easy to use translation engine — want to translate it to your own language? Simply go over here and ask!

Table of Contents

• Introduction
  • What is Wi-PWN
  • How it works
  • How to protect against it
• Installation
  • Flashing with NodeMCU-Flasher
  • Compiling with Arduino
• How to use it
• FAQ
• License
• Sources and additional links

Introduction

What is Wi-PWN

Wi-PWN is a firmware that performs deauth attacks on cheap Arduino boards. The ESP8266 is a cheap micro controller with built-in Wi-Fi. It contains a powerful 160 MHz processor and it can be programmed using Arduino.

A deauthentication attack is often confused with Wi-Fi jamming, as they both block users from accessing Wi-Fi networks.

How it works

The 802.11 Wi-Fi protocol contains a so called deauthentication frame. It is used to disconnect clients safely from a wireless
network.

Because these management packets are unencrypted, you just need the MAC address of the Wi-Fi router and of the client device which you want to disconnect from the network. You don’t need to be in the network or know the password, it’s enough to be in its range.

How to protect against it

With the 802.11w-2009 updated standards, management frames are encrypted by default.

802.11w is rarely used in the real world as both the router and the client device need to support this standard, otherwise they won’t be able to connect to the routers.

Updating to the 802.11w standard is often expensive and difficult due to the vast devices of legacy devices not supporting the new standard. Because of the maintenance nightmare, over 95% of devices use the vulnerable 802.11 standard — even though newer devices support newer standards.

Installation

Requirements:

• ESP8266 module (any board)
• Micro-USB cable
• Computer

I would recommend getting a USB breakout/developer board, mainly due to the 4Mb of flash and simplicity.

In order to upload the Wi-PWN firmware, you can use one of two methods. The first method is easier overall but using Arduino is better for debugging.
YOU ONLY NEED TO DO ONE OF THE INSTALLATION METHODS!

Install the necessary drivers

There are two variants of UART converters that ESP8266 boards use:

CP210x	CH34x
Drivers	Drivers

Method 1: Flashing with NodeMCU-Flasher

1. Download the current release of Wi-PWN

2. Upload the .bin file using the nodemcu-flasher. Alternatively you can use the official esptool from espressif.

3. Connect your ESP8266 (making sure the drivers are installed) and open up the NodeMCU Flasher

4. Go to the Advanced tab and select the correct values for your board.

5. Navigate to the config tab and click the gear icon for the first entry.

6. Browse for the .bin file you just downloaded and click open.

7. Switch back to the Operation tab and click Flash(F).

Method 2: Compiling with Arduino

1. Download the source code of this project.

2. Install Arduino and open it.

3. Go to File > Preferences

4. Add http://arduino.esp8266.com/stable/package_esp8266com_index.json to the Additional Boards Manager URLs. (refer to https://github.com/esp8266/Arduino)

5. Go to Tools > Board > Boards Manager

6. Type in esp8266

7. Select version 2.0.0 and click on Install (must be version 2.0.0!)

   

8. Go to File > Preferences

9. Open the folder path under More preferences can be edited directly in the file

   

10. Go to packages > esp8266 > hardware > esp8266 > 2.0.0 > tools > sdk > include

11. Open user_interface.h with a text editor

12. Just before the last line #endif, add the following:

typedef void (*freedom_outside_cb_t)(uint8 status);
int wifi_register_send_pkt_freedom_cb(freedom_outside_cb_t cb);
void wifi_unregister_send_pkt_freedom_cb(void);
int wifi_send_pkt_freedom(uint8 *buf, int len, bool sys_seq);

1. Go to the arduino/SDK_fix folder of this project

2. Copy ESP8266Wi-Fi.cpp and ESP8266Wi-Fi.h to
   C:Users%username%AppDataLocalArduino15packagesesp8266hardwareesp82662.0.0librariesESP8266WiFisrc

3. Open arduino/Wi-PWN/Wi-PWN.ino in Arduino

4. Select your ESP8266 board at Tools > Board and the right port at Tools > Port
   If no port shows up you need to reinstall the drivers, search online for chip part number + ‘driver Windows’

5. Depending on your board you may have to adjust the Tools > Board > Flash Frequency and the Tools > Board > Flash Size. I used the 80MHz Flash Frequency, and the 4M (1M SPIFFS) Flash Size

6. Upload! CTRL-U

Note: If you use a 512kb version of the ESP8266, you need to comment out a part of the mac vendor list in data.h

How to use

1. Connect your ESP8266 to a USB power source (you can power it with your phone using an OTG cable)

2. Scan for Wi-Fi networks on your device and connect to Wi-PWN (no password by default).

3. Once connected, open up your browser and go to http://192.168.4.1

4. Click on ACCEPT to accept the Terms & Conditions

   

5. Specify a SSID and password for Wi-PWN to use and click on CONTINUE

   

6. Reconnect to the new network using the SSID & Password you specified in the previous step.

7. Go back to your browser and the page should reload (open http://192.168.4.1 again if the page doesn’t reload)

8. Click on the Scan button to scan for Wi-Fi networks

   
   Note: You may have to reconnect to the Wi-Fi network.

9. Select the WiFi network(s) you want to perform the attack on. Once finished, click on the Attack button

10. Select the attack you wish to perform

    

FAQ

Only able to connect to Wi-Fi network on some devices

This happens due to a channel conflict. Simply navigate to 192.168.4.1/settings.html on a device that is able to connect to the Wi-Fi network and change the Channel number from 1 to any number up to 14.

espcomm_sync failed / espcomm_open when uploading

The ESP upload tool can’t communicate with the chip.

• Reconnect the chip using a different USB port and cable.
• Install the USB drivers (cp2102 or ch340).
• Make sure the right COM port is selected.

SSID’s wont load? (No clear button)

Try resetting the SSID list by visiting 192.168.4.1/clearSSID.json while connected to your ESP.
If this doesnt solve your problem, ask for help in the official discord.

Deauth attack won’t work

If you see 0 pkts/s on the website, then you’ve made a mistake. Check that you have followed the installation steps correctly and that the right SDK installed, it must be version 2.0.0!
If it can send packets but your target doesn’t lose its connection, then the Wi-Fi router either uses 802.11w and it’s protected against such attacks, or it communicates on the 5GHz band, which the ESP8266 doesn’t support because of its 2.4GHz antenna.

If you have other questions or problems with the ESP8266 you can also check out the official community forum.

wi-pwn’s People

>360 =  http://prntscr.com/h5dzc7 (OK)
=360 =  http://prntscr.com/h5e1a2 (ISSUE)
<360 =  http://prntscr.com/h5e1nl (OK)

{"aps":[],"clients":["FF:FF:FF:FF:FF:FF - BROADCAST"],"attacks":[{"name":"Deauth","status":"No network(s)","running":0},{"name":"Beacon","status":"ready","running":0},{"name":"Probe-Request","status":"ready","running":0}],"ssid":[["network.SECURE                  ",0]
,["network.SECURE                 ",0]
,["network.SECURE                ",0]
,["network.SECURE               ",0]
,["network.SECURE              ",0]
,["network.SECURE             ",0]
,["network.SECURE            ",0]
,["network.SECURE           ",0]
,["network.SECURE          ",0]
,["network.SECURE         ",0]
,["network.SECURE        ",0]
,["network.SECURE       ",0]
,["network.SECURE      ",0]
,["network.SECURE     ",0]
,["network.SECURE    ",0]
,["network.SECURE   ",0]
,["network.SECURE  ",0]
,["network.SECURE ",0]
,["​network.SECURE      ",0]
,["​network.SECURE      ",0]
,["​network.SECURE     ",0]
,["​network.SECURE     ",0]
,["​network.SECURE    ",0]
,["​network.SECURE    ",0]
,["​network.SECURE   ",0]
,["​network.SECURE   ",0]
,["​network.SECURE  ",0]
,["​network.SECURE  ",0]
,["​network.SECURE ",0]
,["​network.SECURE �",0]
,["​network.SECURE",0]
,["​network.SECURE",0]
,["​network.SECURE",0]
,["​network.SECURE",0]
,["​network.SECURE",0]
,["​network.SECURE",0]
,[".network.SECURE     ",0]
,[".network.SECURE     ",0]
,[".network.SECURE     ",0]
,[".network.SECURE    ",0]
,[".network.SECURE    ",0]
,[".network.SECURE    ",0]
,[".network.SECURE   ",0]
,[".network.SECURE   ",0]
,[".network.SECURE   ",0]
,[".network.SECURE  ",0]
,[".network.SECURE  ",0]
,[".network.SECURE  ",0]],"randomMode":0}```

getting attacks JSON (237)...done
getting sysinfo json

done
000000000000000000000000000000000000000000000000getting attacks JSON (1576)...done
000000000000000000000000000000000000000000000000getting attacks JSON (1576)...done
000000000000000000000000000000000000000000000000getting attacks JSON (1576)...done
000000000000000000000000000000000000000000000000getting attacks JSON (1576)...done
000000000000000000000000000000000000000000000000getting attacks JSON (1576)...done
000000000000000000000000000000000000000000000000getting attacks JSON (1576)...done
getting sysinfo json

done
000000000000000000000000000000000000000000000000getting attacks JSON (1576)...done
000000000000000000000000000000000000000000000000getting attacks JSON (1576)...done

done
getting sysinfo json