Fluxion vs Wifiphisher
GitHub Stats
About Fluxion
Fluxion is a network security auditing and penetration testing tool specifically targeting WPA/WPA2 security. It uses social engineering tactics to perform evil twin attacks, tricking users into connecting to a fake access point to capture their WPA handshakes without cracking. The tool automates the process of creating a rogue access point and uses DNS spoofing to present a fake authentication page. Fluxion's effectiveness lies in its ability to bypass encryption without the need for brute force attacks.
About Wifiphisher
Wifiphisher is an automated WiFi phishing framework that creates rogue access points to conduct man-in-the-middle attacks and credential harvesting against wireless clients. It supports evil twin attacks, KARMA-style attacks against probing clients, and Known Beacons attacks that broadcast common network names to lure victims into connecting. Wireless penetration testers and red team operators use Wifiphisher to assess the susceptibility of an organization's workforce to WiFi-based social engineering by deploying convincing captive portals that mimic legitimate login pages. The framework includes customizable phishing scenarios for firmware upgrades, OAuth logins, and network authentication pages, and handles all the complexity of access point creation, DHCP, and traffic redirection automatically.
Platform Support
Tags
Shared
Fluxion only
Wifiphisher only