Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/seemoo-lab/openwifipass

An open source implementation of Apple's Wi-Fi Password Sharing protocol in Python.
https://github.com/seemoo-lab/openwifipass

apple opack password-sharing reverse-engineering wifi

Last synced: 8 days ago
JSON representation

An open source implementation of Apple's Wi-Fi Password Sharing protocol in Python.

Host: GitHub
URL: https://github.com/seemoo-lab/openwifipass
Owner: seemoo-lab
License: gpl-3.0
Created: 2020-05-28T10:20:59.000Z (over 4 years ago)
Default Branch: main
Last Pushed: 2021-04-13T08:27:59.000Z (over 3 years ago)
Last Synced: 2024-10-29T17:49:04.309Z (15 days ago)
Topics: apple, opack, password-sharing, reverse-engineering, wifi
Language: Python
Homepage:
Size: 31.3 KB
Stars: 806
Watchers: 27
Forks: 31
Open Issues: 3
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

# OpenWifiPass

[![LGTM code quality grade](https://img.shields.io/lgtm/grade/python/github/seemoo-lab/openwifipass?label=code%20quality&logo=lgtm)](https://lgtm.com/projects/g/seemoo-lab/openwifipass/context:python)

An open source implementation of the grantor role in Apple's Wi-Fi Password Sharing protocol.

## Disclaimer

OpenWifiPass is experimental software and is the result of reverse engineering efforts by the [Open Wireless Link](https://owlink.org) project.
The code serves solely documentary and educational purposes. It is *untested* and *incomplete*.
For example, the code **does not verify the identity of the requestor**. So, do not use this implementation with sensitive Wi-Fi credentials.
OpenWifiPass is not affiliated with or endorsed by Apple Inc.

## Requirements

**Hardware:** Bluetooth Low Energy radio, e.g., Raspberry Pi 4

**OS:** Linux (due to the `bluepy` dependency)

## Install

Clone this repository and install it:

```bash
git clone [email protected]/seemoo-lab/openwifipass.git
pip3 install ./openwifipass
```

## Run

Run `openwifipass` to share Wi-Fi credentials (`SSID` and `PSK`) with *any* requestor (we need super user privileges to use the Bluetooth subsystem):

```bash
sudo -E python3 -m openwifipass --ssid --psk
```

**Use [quoting](https://www.gnu.org/savannah-checkouts/gnu/bash/manual/bash.html#Quoting) of your shell to remove special meaning of certain characters in `SSID`/`PSK`.** In the example below, we use single quotes (`'`) to prevent shell expansion of the `$` character in the PSK.

A successful run of the protocol would look as follows:
```
pi@raspberrypi:~/openwifipass $ sudo -E python3 -m openwifipass --ssid OWL --psk '$uper$ecretPassword'
Start scanning...
SSID match in PWS advertisement from aa:bb:cc:dd:ee:ff
Connect to device aa:bb:cc:dd:ee:ff
Send PWS1
Receive PWS2
Send M1
Receive M2
Send M3
Receive M4
Send PWS3
Receive PWS4
Wi-Fi Password Sharing completed
```

## OPACK

This projects contains a reusable OPACK (de)serializer. Read [OPACK.md](OPACK.md) for more information.

## Authors

* Jannik Lorenz

## Publications

* Milan Stute, Alexander Heinrich, Jannik Lorenz, and Matthias Hollick. **Disrupting Continuity of Apple’s Wireless Ecosystem Security: New Tracking, DoS, and MitM Attacks on iOS and macOS Through Bluetooth Low Energy, AWDL, and Wi-Fi.** *30th USENIX Security Symposium (USENIX Security ’21)*, August 11–13, 2021, virtual Event. [Link](https://www.usenix.org/conference/usenixsecurity21/presentation/stute).
* Jannik Lorenz. **Wi-Fi Sharing for All: Reverse Engineering and Breaking the Apple Wi-Fi Password Sharing Protocol.** Bachelor thesis, *Technical University of Darmstadt*, March 2020.

## License

OpenWifiPass is licensed under the [**GNU General Public License v3.0**](LICENSE).