EN
ENNA

hostapd-mana

๐Ÿ“ก Wireless ยท C

hostapd-mana is a featureful rogue access point tool based on a modified version of hostapd, the standard Linux access point daemon. Developed by SensePost, it extends hostapd with capabilities specifically useful for wireless penetration testing: it can impersonate any SSID that clients are probing for (karma attack), capture WPA/WPA2 handshakes from connecting clients, downgrade encryption to capture credentials, and integrate with EAP credential harvesting for WPA-Enterprise networks. hostapd-mana acts as a convincing evil twin that automatically responds to client probe requests, tricking devices into connecting and exposing their credentials or traffic. It's commonly used in wireless assessments to test organizational resilience against rogue access point attacks and to capture domain credentials from enterprise wireless clients.

606stars
131forks
21issues
Updated 1y ago
View on GitHubOfficial Website

Installation

from source

$ git clone https://github.com/sensepost/hostapd-mana && cd hostapd-mana/hostapd && make

Use Cases

  • Deploying evil twin access points to test client association behavior
  • Capturing WPA-Enterprise credentials through EAP harvesting
  • Performing karma attacks to intercept clients probing for known networks
  • Testing organizational defenses against rogue access point attacks
  • Conducting wireless MitM assessments with credential downgrade attacks

Tags

evil-twinrogue-apkarmacredential-capturewpa-enterprisemitm

Details

Category
๐Ÿ“ก Wireless
Language
C
Platforms
๐Ÿงlinux

Links

GitHub Repository

github.com/sensepost/hostapd-mana

Official Website

w1f1.net

Releases

github.com/sensepost/hostapd-mana/releases

Issues

github.com/sensepost/hostapd-mana/issues

Sponsored

Your ad here

Reach security professionals and developers - ads@en-na.com

Alternatives & Comparisons

Aircrack-ng

C

Complete suite for WiFi network security assessment. Monitoring, attacking, testing, and cracking.

Compare hostapd-mana vs Aircrack-ng

Bettercap

Go

Swiss army knife for WiFi, Bluetooth, and ethernet network recon and MITM. Scriptable with JS.

Compare hostapd-mana vs Bettercap

Wifite2

Python

Automated wireless attack tool. Wraps aircrack-ng, reaver, and hashcat for streamlined WiFi auditing.

Compare hostapd-mana vs Wifite2

Reaver

C

WPS brute force attack tool. Exploits Wi-Fi Protected Setup to recover WPA/WPA2 passphrases from WPS-enabled routers.

Compare hostapd-mana vs Reaver

Pixiewps

C

WPS offline brute force. Exploits weak random number generation in WPS implementations to recover PINs in seconds.

Compare hostapd-mana vs Pixiewps

mdk4

C

802.11 protocol exploitation toolkit. Authentication floods, beacon floods, deauth attacks, and SSID fuzzing for wireless testing.

Compare hostapd-mana vs mdk4

WiFi-Pumpkin3

Python

Rogue access point framework. GUI-driven evil twin with captive portal, credential harvesting, and transparent proxy support.

Compare hostapd-mana vs WiFi-Pumpkin3

More in Wireless

Aircrack-ng

C

Complete suite for WiFi network security assessment. Monitoring, attacking, testing, and cracking.

wifiwpapacket-capture

Bettercap

Go

Swiss army knife for WiFi, Bluetooth, and ethernet network recon and MITM. Scriptable with JS.

mitmwifibluetooth

Wifite2

Python

Automated wireless attack tool. Wraps aircrack-ng, reaver, and hashcat for streamlined WiFi auditing.

wifiautomatedwpa

Kismet

C++

Wireless network detector, sniffer, wardriving tool, and IDS. WiFi, Bluetooth, Zigbee, and more.

wardrivingidsbluetooth

Flipper Zero Firmware

C

Custom firmware for Flipper Zero. Sub-GHz, RFID, NFC, infrared, and GPIO hacking multi-tool.

flipperrfidnfc

Fluxion

Shell

WPA security auditing tool that uses social engineering for handshake capture via evil twin attacks.

wpaevil-twinsocial-engineering