# wifiphisher/wifiphisher

**Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/wifiphisher-wifiphisher).**

14,631 stars · 2,736 forks · Python · GPL-3.0

## Links

- GitHub: https://github.com/wifiphisher/wifiphisher
- Homepage: https://wifiphisher.org
- awesome-repositories: https://awesome-repositories.com/repository/wifiphisher-wifiphisher.md

## Topics

`access-point` `attack` `malware` `phishing` `python` `redteaming` `rogue` `security` `wifi` `wifiphisher`

## Description

Wifiphisher is a modular security framework designed for wireless penetration testing and social engineering auditing. It functions as a platform for security professionals to assess the resilience of Wi-Fi networks by simulating unauthorized access, performing man-in-the-middle interceptions, and executing credential-harvesting scenarios.

The tool distinguishes itself through its ability to combine rogue access point deployment with dynamic phishing interfaces. By forcing wireless clients to associate with deceptive infrastructure, the framework can capture network metadata and inject it into personalized web templates in real time. This process is supported by low-level wireless control, including packet injection and deauthentication-based client steering, which allows the system to maintain a position between the target and the network.

The framework provides extensive capabilities for traffic management and operational automation. It includes mechanisms for bridging client traffic to maintain internet connectivity during interception, as well as a modular extension system that allows users to execute custom Python scripts. These scripts can be used to automate complex attack workflows, enhance phishing scenarios, or integrate external tools during active security assessments.

## Tags

### Networking & Communication

- [Rogue Access Points](https://awesome-repositories.com/f/networking-communication/wireless-access-point-management/rogue-access-points.md) — Deploys rogue wireless access points to intercept client traffic and facilitate man-in-the-middle security assessments. ([source](http://wifiphisher.readthedocs.io/en/latest/opmodes.html))
- [Wireless Deauthentication Tools](https://awesome-repositories.com/f/networking-communication/network-infrastructure-routing/wireless-network-utilities/wireless-deauthentication-tools.md) — Forces wireless devices to disconnect from legitimate access points by broadcasting spoofed management frames to trigger automatic reconnection attempts.
- [Wireless Channel Hoppers](https://awesome-repositories.com/f/networking-communication/messaging-channel-management/asynchronous-event-multiplexers/wireless-channel-hoppers.md) — Wifiphisher synchronizes multiple wireless interfaces to monitor or transmit on specific channels required by active extensions during network operations. ([source](http://wifiphisher.readthedocs.io/en/latest/extensions.html))
- [Wireless Packet Injectors](https://awesome-repositories.com/f/networking-communication/packet-engines/packet-processing-frameworks/wireless-packet-injectors.md) — Captures and injects raw network frames via monitor-mode interfaces to facilitate custom network interactions. ([source](http://wifiphisher.readthedocs.io/en/latest/extensions.html))
- [Packet Injection Engines](https://awesome-repositories.com/f/networking-communication/packet-injection-engines.md) — Uses low-level wireless interface control to capture and transmit raw network frames for intercepting and manipulating local traffic.
- [Traffic Interception Tools](https://awesome-repositories.com/f/networking-communication/traffic-interception-tools.md) — Captures and analyzes network frames to identify vulnerabilities in wireless communication protocols and test the resilience of local network traffic.
- [Wireless Bridges](https://awesome-repositories.com/f/networking-communication/virtual-network-bridging/wireless-bridges.md) — Creates a virtual wireless network that routes client traffic through a secondary interface to maintain internet connectivity during interception.
- [Internet Connectivity Bridges](https://awesome-repositories.com/f/networking-communication/wireless-connectivity-tools/internet-connectivity-bridges.md) — Routes traffic from the target wireless network to an external connection to maintain connectivity while performing man-in-the-middle operations. ([source](https://wifiphisher.readthedocs.io/en/latest/faq.html))

### Security & Cryptography

- [Wireless Attack Tools](https://awesome-repositories.com/f/security-cryptography/vulnerability-assessment-testing/security-testing-auditing/security-testing-tools/wireless-attack-tools.md) — Creates rogue wireless access points to test how network clients respond to deceptive infrastructure and man-in-the-middle interception attempts. ([source](http://wifiphisher.readthedocs.io/en/latest/))
- [Wireless Security Auditing](https://awesome-repositories.com/f/security-cryptography/vulnerability-assessment-testing/security-testing-auditing/security-testing/wireless-security-auditing.md) — Assesses the security of wireless access points and client devices by simulating unauthorized access and interception techniques in controlled environments.
- [Wireless Security Frameworks](https://awesome-repositories.com/f/security-cryptography/wireless-security-frameworks.md) — Provides a modular application for executing custom wireless attack scripts and managing network traffic interception during penetration testing.
- [Man-in-the-Middle Frameworks](https://awesome-repositories.com/f/security-cryptography/man-in-the-middle-frameworks.md) — Implements man-in-the-middle frameworks to intercept and manipulate network traffic between wireless clients and legitimate access points. ([source](https://cdn.jsdelivr.net/gh/wifiphisher/wifiphisher@master/README.md))
- [Security Testing and Auditing](https://awesome-repositories.com/f/security-cryptography/vulnerability-assessment-testing/security-testing-auditing.md) — Evaluates user awareness and organizational security by deploying custom phishing scenarios that capture credentials through deceptive web interfaces.
- [Phishing Attack Tools](https://awesome-repositories.com/f/security-cryptography/security/utilities/security-tools/offensive-red-team/phishing-attack-tools.md) — Deploys web-based interfaces to capture credentials or deliver payloads by tailoring content to the target environment and victim user. ([source](https://cdn.jsdelivr.net/gh/wifiphisher/wifiphisher@master/README.md))
- [Network Reconnaissance Tools](https://awesome-repositories.com/f/security-cryptography/vulnerability-assessment-testing/network-reconnaissance-tools.md) — Performs network reconnaissance by sniffing traffic and scanning for vulnerabilities once a man-in-the-middle position is established. ([source](https://cdn.jsdelivr.net/gh/wifiphisher/wifiphisher@master/README.md))
- [Phishing Logic Extensions](https://awesome-repositories.com/f/security-cryptography/security/utilities/security-tools/offensive-red-team/phishing-attack-tools/phishing-logic-extensions.md) — Implements custom backend functions and interface methods to process user input, validate credentials, or dynamically render content within phishing scenarios. ([source](http://wifiphisher.readthedocs.io/en/latest/custom_phishing_scenario.html))

### Development Tools & Productivity

- [Data Injection](https://awesome-repositories.com/f/development-tools-productivity/data-injection.md) — Populates phishing templates with real-time information captured from target wireless access points, such as network identifiers and hardware vendors. ([source](http://wifiphisher.readthedocs.io/en/latest/custom_phishing_scenario.html))
- [Python Scripting Environments](https://awesome-repositories.com/f/development-tools-productivity/python-development-tools/script-execution-engines/python-scripting-environments.md) — Runs user-defined scripts in parallel to perform wireless attacks, enhance phishing scenarios, or integrate with external tools during penetration testing. ([source](http://wifiphisher.readthedocs.io/en/latest/extensions.html))

### Web Development

- [Dynamic Template Rendering](https://awesome-repositories.com/f/web-development/dynamic-template-rendering.md) — Generates personalized phishing interfaces by injecting real-time network metadata into pre-configured HTML templates.

### Software Engineering & Architecture

- [Modular Extension Architectures](https://awesome-repositories.com/f/software-engineering-architecture/modular-extension-architectures.md) — Executes user-defined scripts within a centralized runtime to dynamically extend attack logic and automate complex social engineering workflows.