{"id":20632033,"url":"https://github.com/rhaidiz/dribble","last_synced_at":"2025-08-12T23:07:42.559Z","repository":{"id":51488088,"uuid":"154737398","full_name":"rhaidiz/dribble","owner":"rhaidiz","description":"Stealing Wi-Fi passwords via browser's cache poisoning.","archived":false,"fork":false,"pushed_at":"2022-02-19T16:47:58.000Z","size":45,"stargazers_count":146,"open_issues_count":0,"forks_count":25,"subscribers_count":15,"default_branch":"master","last_synced_at":"2025-04-15T18:58:38.059Z","etag":null,"topics":["bettercap","bettercap-ng","hacking","poisoning","raspberry","raspberry-pi","security","wardriving","wireless"],"latest_commit_sha":null,"homepage":"https://rhaidiz.net/2018/10/25/dribble-stealing-wifi-password-via-browsers-cache-poisoning/","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/rhaidiz.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2018-10-25T21:04:20.000Z","updated_at":"2025-02-17T04:18:58.000Z","dependencies_parsed_at":"2022-08-22T00:40:51.060Z","dependency_job_id":null,"html_url":"https://github.com/rhaidiz/dribble","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/rhaidiz/dribble","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rhaidiz%2Fdribble","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rhaidiz%2Fdribble/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rhaidiz%2Fdribble/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rhaidiz%2Fdribble/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/rhaidiz","download_url":"https://codeload.github.com/rhaidiz/dribble/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rhaidiz%2Fdribble/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":270149345,"owners_count":24535728,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-08-12T02:00:09.011Z","response_time":80,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bettercap","bettercap-ng","hacking","poisoning","raspberry","raspberry-pi","security","wardriving","wireless"],"created_at":"2024-11-16T14:14:43.979Z","updated_at":"2025-08-12T23:07:42.518Z","avatar_url":"https://github.com/rhaidiz.png","language":"Shell","readme":"# Dribble\n\nDribble is a project I developed to play with my Raspberry Pi. The purpose of dribble is to stealing Wi-Fi passwords by exploiting web browser's cache. Dribble creates a fake Wi-Fi access point and waits for clients to connect to it. When clients connects, dribble intercepts every HTTP requests performed to JavaScript pages and injects a malicious JavaScipt code. The malicious JavaScript code is cached so that it persists when clients disconnect. When clients disconnect and reconnect back to their home router, the malicious JavaScript code activates, steals the Wi-Fi password from the router and send it back to the attacker.\n\nFor a more in-depth walkthrough see here: https://rhaidiz.net/2018/10/25/dribble-stealing-wifi-password-via-browsers-cache-poisoning/\n\n**DISCLAIMER:** this is till a work in progress and a lot of small improvements should be implemented so keep that in mind.\n\n## Installation\n\n### Requirements\n\nDribble relays on the following software to work, so make sure you have them installed and available in your PATH:\n\n* [hostapd](https://github.com/wertarbyte/hostap/tree/master/hostapd)\n* [dnsmasq](http://www.thekelleys.org.uk/dnsmasq/doc.html)\n* [node.js](https://nodejs.org/en/download/package-manager/)\n* [bettercap](https://github.com/bettercap/bettercap)\n\n### Download and run\n\nTo run dribble, just download the repo and run it as root.\n\n    git clone https://github.com/rhaidiz/dribble\n    cd dribble\n    sudo ./dribble\n\n## Configuration\n\nAll the configuration you need is located in the config file:\n\n    # the internet interface\n    internet=eth0\n    \n    # the wifi interface\n    phy=wlan0\n    \n    # The ESSID\n    essid=\"TEST\"\n    \n    # collector\n    collector=\"http://rhaidiz.net/something\"\n    \n    # the routers' IPs\n    routerips=(\"192.168.0.1/24\" \"10.0.0.1/24\")\n    \n    # usernames dictionary\n    usernames=\"['admin', 'admin1', 'test']\"\n    \n    # passwords dictionaris\n    passwords=\"['admin', 'admin1', 'password']\"\n","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Frhaidiz%2Fdribble","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Frhaidiz%2Fdribble","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Frhaidiz%2Fdribble/lists"}