ESP8266 Developer Zone

Re: SDK 0.9.4: promiscuous mode capture packets

2021-09-24T10:53:21+08:00

Could these help? https://www.espressif.com/en/support/download/apps

Statistics: Posted by Her Mary — Fri Sep 24, 2021 10:53 am

Re: SDK 0.9.4: promiscuous mode capture packets

2021-09-21T18:44:05+08:00

Its all understood from the ESP2866 side, but the Android/iOS/PC side? Is someone have an example of Android/iOS/PC app (source code) to send this type of packets?

Statistics: Posted by canzop — Tue Sep 21, 2021 6:44 pm

Re: SDK 0.9.4: promiscuous mode capture packets

2015-08-19T17:07:13+08:00

It is possible to disable promiscuous mode .I want to enable and disable promiscuous mode for certain period of time but by using wifi_promiscuous_enable(0) it is not functioning.Is there any alternate solution.
Thanks in Advance.

Statistics: Posted by koltegirish97 — Wed Aug 19, 2015 5:07 pm

Re: SDK 0.9.4: promiscuous mode capture packets

2015-02-24T22:18:04+08:00

@mlebel - You don't need any special app for this
simply add "virtual" AP with SSIDPASS
that's all
for eg
if You want connect esp to ap with ssid: krzysiek
and password: jarzyna

then on android manual add Wi-Fi network where in SSID box enter: krzysiekjarzyna

Statistics: Posted by reaper7 — Tue Feb 24, 2015 10:18 pm

Re: SDK 0.9.4: promiscuous mode capture packets

2015-02-24T16:22:04+08:00

Hi All,

Its all understood from the ESP2866 side, but the Android/iOS/PC side?

Is someone have an example of Android/iOS/PC app (source code) to send this type of packets?

Tn'x in advance,

Meir Lebel

Statistics: Posted by mlebel — Tue Feb 24, 2015 4:22 pm

Re: SDK 0.9.4: promiscuous mode capture packets

2015-01-27T16:16:06+08:00

@jackon - Yes, yes, I know and I wrote about this in this post viewtopic.php?f=7&t=155#p554

for me this problem is solved, tnx!

Statistics: Posted by reaper7 — Tue Jan 27, 2015 4:16 pm

Re: SDK 0.9.4: promiscuous mode capture packets

2015-01-27T16:10:14+08:00

reaper7 wrote:
unfortunately half solved

if length of (SSID + TOKEN + PASS) <=22 everything is OK
but for length >22 chars, result PASSWORD contain chars from outside struct item sniffer_buf->buf (network_80211.h)
because buf item from this struct can accommodate only 48 elements

look at 2 examples (printable elements are shown as chars, rest as hex):

1. VIRTUAL SSID: abcdefghijklmnop
Code:
promiscuous_rx: WIFI SMARTLINK RX LEN[64] 00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F ----------------------------------------------- @ 00 00 00 ff ff ff ff ff ff 0 a8 db a4 19 91 ff ff ff ff ff ff 05 00 18 a b c d e f g h < ! - S L - ! > i j k l m n 01 00 ~ 00 f0 bf ff ? P 00 00 00 00 a3 d b6 ----------------------------------------------- -user/wifi.c-wifi_smartlink_promiscuous_rx WIFI SMARTLINK RECEIVED SSID:[abcdefgh] PASSWORD:[ijklmn ]

2. VIRTUAL SSID: abcdefghijklmn
Code:
promiscuous_rx: WIFI SMARTLINK RX LEN[64] 00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F ----------------------------------------------- @ 00 00 00 ff ff ff ff ff ff 0 a8 db a4 19 91 ff ff ff ff ff ff P & 00 16 a b c d e f g h < ! - S L - ! > i j k l m n 01 00 | 00 f0 bf ff ? P 00 00 00 00 a3 d b6 ----------------------------------------------- -user/wifi.c-wifi_smartlink_promiscuous_rx WIFI SMARTLINK RECEIVED SSID:[abcdefgh] PASSWORD:[ijklmn]

in 1 example (WRONG RESULT) final PASSWORD: ijklmn after char "n" contains hex 0x01 but I can't show it on forum

it seems that some buffer is too small because in theory(IEEE) SSID may contains 32 chars

hi, reaper7
we expand buf from 48 to 112 in v0.9.5, so the method you used is workable.
pls have a try.

Statistics: Posted by jackon — Tue Jan 27, 2015 4:10 pm

Re: SDK 0.9.4: promiscuous mode capture packets

2014-12-26T17:24:12+08:00

Yes, our buffer is limited here ... We will think it over.. Sorry for the inconvenience..
Thanks for your interest in ESP8266!

Statistics: Posted by ESP_Faye — Fri Dec 26, 2014 5:24 pm

Re: SDK 0.9.4: promiscuous mode capture packets

2014-12-24T01:07:22+08:00

unfortunately half solved

if length of (SSID + TOKEN + PASS) <=22 everything is OK
but for length >22 chars, result PASSWORD contain chars from outside struct item sniffer_buf->buf (network_80211.h)
because buf item from this struct can accommodate only 48 elements

look at 2 examples (printable elements are shown as chars, rest as hex):

1. VIRTUAL SSID: abcdefghijklmnop

Code:

promiscuous_rx:
WIFI SMARTLINK RX LEN[64]
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
-----------------------------------------------
 @ 00 00 00 ff ff ff ff ff ff  0 a8 db a4 19 91 
ff ff ff ff ff ff    05 00 18  a  b  c  d  e  f 
 g  h  <  !  -  S  L  -  !  >  i  j  k  l  m  n 
01 00  ~ 00 f0 bf ff  ?  P 00 00 00 00 a3  d b6 
-----------------------------------------------
-user/wifi.c-wifi_smartlink_promiscuous_rx WIFI SMARTLINK RECEIVED SSID:[abcdefgh] PASSWORD:[ijklmn ]

2. VIRTUAL SSID: abcdefghijklmn

Code:

promiscuous_rx:
WIFI SMARTLINK RX LEN[64]
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
-----------------------------------------------
 @ 00 00 00 ff ff ff ff ff ff  0 a8 db a4 19 91 
ff ff ff ff ff ff  P  & 00 16  a  b  c  d  e  f 
 g  h  <  !  -  S  L  -  !  >  i  j  k  l  m  n 
01 00  | 00 f0 bf ff  ?  P 00 00 00 00 a3  d b6 
-----------------------------------------------
-user/wifi.c-wifi_smartlink_promiscuous_rx WIFI SMARTLINK RECEIVED SSID:[abcdefgh] PASSWORD:[ijklmn]

in 1 example (WRONG RESULT) final PASSWORD: ijklmn after char "n" contains hex 0x01 but I can't show it on forum

it seems that some buffer is too small because in theory(IEEE) SSID may contains 32 chars

Statistics: Posted by reaper7 — Wed Dec 24, 2014 1:07 am

Re: SDK 0.9.4: promiscuous mode capture packets

2014-12-23T18:56:50+08:00

@Espressif_Faye - many tnx for fast action!

Statistics: Posted by reaper7 — Tue Dec 23, 2014 6:56 pm

Re: SDK 0.9.4: promiscuous mode capture packets

2014-12-23T18:52:53+08:00

Hi，our engineer has already solved your problem on github.
Please take a look and feel free to contact us if you have any question.

Statistics: Posted by ESP_Faye — Tue Dec 23, 2014 6:52 pm

Re: SDK 0.9.4: promiscuous mode capture packets

2014-12-22T14:56:38+08:00

Summarizing, in current 0.9.4 and future versions of SDK will not be able to receive these packets ?

P.S. - this is not "my smartlink" but for me is very useful (for non commercial usage of course),
if You change home ap password or installing modules in a new place, You can simply change ssid/pass on all esp devices in 5 seconds
without physical access to them.

Of course in this case ssid/pass are send in plain text, but each user can decide if it's worth to use.
You can also send encoded (in some basic way) text, there are several possibilities.

And Yes, every one can capture these packets and gets this info
(if they do not use software based on sniffer like in 9.4 )

Statistics: Posted by reaper7 — Mon Dec 22, 2014 2:56 pm

Re: SDK 0.9.4: promiscuous mode capture packets

2014-12-22T13:14:56+08:00

Yes, sniffer changed in sdk_v0.9.4 .
We don't offer detail data info, but length of packet and some head info..

By the way, your smartlink seems hard to be commercial use，everyone can capture packets and get your ssid/password info ？

Statistics: Posted by ESP_Faye — Mon Dec 22, 2014 1:14 pm

SDK 0.9.4: promiscuous mode capture packets

2014-12-21T17:28:54+08:00

We are using nice and very usefull project for remote setup ESP to connect to AP (who called SMARTLINK)
original project:
https://github.com/ly0/esp8266-smartlink

mod version compiled both on 9.3 and 9.4:
http://www.esp8266.com/viewtopic.php?f=6&t=536#p5085

so, on SDK 9.3 we got necessary packets received in promiscuous mode for configure AP,
but on SDK 9.4 seems that some packets are ignored, as author wrote:
https://github.com/ly0/esp8266-smartlink/issues/1

maybe this cause are associated with this change:
"Update sniffer to support capture HT20/HT40 packet；"

Statistics: Posted by reaper7 — Sun Dec 21, 2014 5:28 pm