notBrad/flipper-zero-tutorials
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
80e445b094
flipper-zero-tutorials/marauder/scan.ps1

130 lines
3.8 KiB
PowerShell
Raw Normal View History

Add scan.ps1 script
2023-04-19 16:40:33 +00:00
# https://www.github.com/jamisonderek/flipper-zero-tutorials
#
# Pass short secret messages using SSIDs.
# This script will scan for SSIDs that match the pattern of the encoded message.
# The message is encoded using a simple cypher that uses the SSID as the key.
#
# Who you gonna call? "5552368" is: AL6fvOPr, BOI5O5Ag, CRU3Cjn7 or DUgPtAbN
# This is the list of allowed characters in the message.
$dict = "0123456789ABCDEF-"
# This is the list of allowed characters in the SSID.
$cypherLetters = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789".ToCharArray()
# This is the list of SSIDs that were found, so we only display them once.
$ssids = [System.Collections.Generic.List[string]]::new()
Function Get-Encoded-SSID {
Param(
[Parameter(Mandatory=$true)]
[String]$Message,
[Parameter(Mandatory=$false)]
[String]$Prefix="0"
)
$letters = ($Prefix + $Message).ToCharArray()
$index = 0
$i = 1
$result = ""
foreach($letter in $letters) {
$ch = $dict.IndexOf($letter)
if ($ch -eq -1) {
Write-Host "Invalid character: $letter"
return
}
$index = $index + $ch
if ($index -ge $cypherLetters.Count) {
$index = $index - $cypherLetters.Count
}
$result = $result + $cypherLetters[$index]
$i = $i + 1
$index = $index + (([int][char]$cypherLetters[$index]) * $i)
$index = $index % $cypherLetters.Count
}
return $result
}
Function Get-Decoded-SSID {
Param(
[Parameter(Mandatory=$true)]
[String]$SSID
)
$letters = $SSID.ToCharArray()
$index = 0
$i = 1
$result = ""
foreach($letter in $letters) {
$ch = $cypherLetters.IndexOf($letter)
if ($ch -lt $index) {
$ch = $ch + $cypherLetters.Count
}
if (($ch - $index) -gt $dict.Length) {
# echo "Invalid character: $letter"
return
}
$result = $result + $dict[$ch - $index]
$i = $i + 1
$index = $ch
Fix bug + add commented test code.
2023-04-19 19:31:49 +00:00
if ($index -ge $cypherLetters.Count) {
$index = $index - $cypherLetters.Count
}
Add scan.ps1 script
2023-04-19 16:40:33 +00:00
$index = $index + (([int][char]$cypherLetters[$index]) * $i)
$index = $index % $cypherLetters.Count
}
return $result.Substring(1)
}
Function Show-Available-Networks-UI {
explorer.exe ms-availablenetworks:
Start-Sleep 3
}
Function Get-SSIDS {
$networks = (netsh wlan show networks)
foreach($network in $networks) {
if($network -match "SSID") {
$ssid = $network.split(":")[1].trim()
if ($ssid.Length -gt 0) {
if ($ssids.Contains($ssid)) {
continue
}
$decoded = (Get-Decoded-SSID $ssid)
if ($decoded.Length -gt 0) {
Write-Host ($ssid + ": " + $decoded) -ForegroundColor Green
} else {
Write-Host ($ssid + "- NO MATCH") -ForegroundColor Red
}
$ssids.Add($ssid)
}
}
}
}
Fix bug + add commented test code.
2023-04-19 19:31:49 +00:00
## Test that Get-Decoded-SSID can get back original string that was passed to Get-Encoded-SSID
# For($i = 0; $i -lt 100000; ++$i) {
# $r = (""+(Get-Random -Maximum 1000000 -Minimum 0)+(Get-Random -Maximum 1000000 -Minimum 0))
# $r = $r.Substring((Get-Random) % $r.Length)
# $p = (""+(Get-Random 9))
# $d = Get-Decoded-SSID (Get-Encoded-SSID -Message $r -Prefix $p)
# if ($r -ne $d) {
# Write-Host ("Fail. r:"+$r+" p:"+$p+" d:"+$d)
# } else {
# # Write-Host ("Pass. r:"+$r+" p:"+$p+" d:"+$d)
# }
# }
Add scan.ps1 script
2023-04-19 16:40:33 +00:00
while ($true) {
Show-Available-Networks-UI
For( $i = 0; $i -le 6; ++$i ) {
Get-SSIDS
Write-Host "Sleeping..." -ForegroundColor Yellow -NoNewline
Start-Sleep 4
Write-Host "`b`b`b`b`b`b`b`b`b`b`b" -NoNewline
Write-Host " " -NoNewline
Write-Host "`b`b`b`b`b`b`b`b`b`b`b" -NoNewline
Write-Host "Scanning..." -ForegroundColor Yellow -NoNewline
Start-Sleep 1
Write-Host "`b`b`b`b`b`b`b`b`b`b`b" -NoNewline
}
}
Reference in New Issue Copy Permalink