• AmbiguousProps
      link
      fedilink
      English
      arrow-up
      2
      ·
      3 days ago

      Pwnagotchi mainly just does gamified deauth, by default it doesn’t do the cracking of the collected pcaps.

      Aircrackng can be installed as a plugin, but since it typically runs on rpi zeros it isn’t very performant. You’d typically want to move your pcaps to a different machine to do the cracking portion (either using aircrack or hashcat), or use aircrack’s entire suite on a more powerful laptop or something like that.

      • 𝕸𝖔𝖘𝖘@infosec.pub
        link
        fedilink
        English
        arrow-up
        2
        ·
        3 days ago

        Ah ok cool. So pwnagotchi is intended more as a teaching tool or a POC pentest, as opposed to an actual pentest. Am I understanding correctly?

        • AmbiguousProps
          link
          fedilink
          English
          arrow-up
          1
          ·
          3 days ago

          Yeah, pretty much. Although I’m sure plenty of people use it for malicious purposes, since it’s more convenient than carrying around a laptop, or for building out/competing on the opwngrid.

          It’s definitely not meant for commercial use, if that’s what you’re asking.

          • 𝕸𝖔𝖘𝖘@infosec.pub
            link
            fedilink
            English
            arrow-up
            3
            ·
            3 days ago

            Less for commercial use, and more for a true pentest of your own network. Well, I guess also for commercial use, for those professional pentesters out there, but I wasn’t thinking of them when I asked :/

            This whole gamified thing sounds pretty awesome, to be honest, and I’m intrigued.