README
¶
bettercap is a powerful, easily extensible and portable framework written in Go which aims to offer to security researchers, red teamers and reverse engineers an easy to use, all-in-one solution with all the features they might possibly need for performing reconnaissance and attacking WiFi networks, Bluetooth Low Energy devices, wireless HID devices and Ethernet networks.
This forks focus on ICS Protocol, for now the Modbus protocol with the Functions Code 1,2,2,3,4,5,6 have been implemented (FC 15 and 16 need to be tested).
I work on adding the S7comm ptotocol , and maybe in the future somme good stuff like OPC-UA or on the fly packet modifications.
Main Features
- WiFi networks scanning, deauthentication attack, clientless PMKID association attack and automatic WPA/WPA2 client handshakes capture.
- Bluetooth Low Energy devices scanning, characteristics enumeration, reading and writing.
- 2.4Ghz wireless devices scanning and MouseJacking attacks with over-the-air HID frames injection (with DuckyScript support).
- Passive and active IP network hosts probing and recon.
- ARP, DNS, NDP and DHCPv6 spoofers for MITM attacks on IPv4 and IPv6 based networks.
- Proxies at packet level, TCP level and HTTP/HTTPS application level fully scriptable with easy to implement javascript plugins.
- A powerful network sniffer for credentials harvesting which can also be used as a network protocol fuzzer.
- A very fast port scanner.
- A powerful REST API with support for asynchronous events notification on websocket to orchestrate your attacks easily.
- A very convenient web UI.
- More!
License
bettercap is made with ♥ by the dev team and it's released under the GPL 3 license.
Stargazers over time
Documentation
¶
There is no documentation for this package.
Source Files
Directories
¶
| Path | Synopsis |
|---|---|
|
Package caplets contains functions to enumerate, load and execute caplets.
|
Package caplets contains functions to enumerate, load and execute caplets. |
|
Package core contains basic utility functions.
|
Package core contains basic utility functions. |
|
Package firewall contains the OS specific implementation of the FirewallManager interface.
|
Package firewall contains the OS specific implementation of the FirewallManager interface. |
|
Package log contains a transparent interface for logging which interacts with the system event queue.
|
Package log contains a transparent interface for logging which interacts with the system event queue. |
|
Package modules contains session modules.
|
Package modules contains session modules. |
|
Package network contains network specific code ...
|
Package network contains network specific code ... |
|
Package packets contains structure declarations for network packets and the main packets queue.
|
Package packets contains structure declarations for network packets and the main packets queue. |
|
Package session contains code to manage the interactive session, modules, environment, etc.
|
Package session contains code to manage the interactive session, modules, environment, etc. |
|
Package tls contains code for TLS certificate generation and signing.
|
Package tls contains code for TLS certificate generation and signing. |