VIDEO
HIGHLIGHT
Log InSign up
THE Definitive Guide to JustCallMeKoKo's ESP32 Marauder!! From The Stand-Alone to the Flipper Zero!!
SummaryTranscriptChat

THE Definitive Guide to JustCallMeKoKo's ESP32 Marauder!! From The Stand-Alone to the Flipper Zero!!

Introduction and Background

The video is for educational purposes only, focusing on using Marauder. The creator discusses their previous projects and experiences with animations and building hardware with ESP32s running the Marauder custom firmware.

Getting Started with Marauder

  • The creator introduces Marauder as a tool for Wi-Fi hacking.
  • They mention that there is no definitive guide available on how to use Marauder effectively.
  • The goal of the video is to provide a comprehensive guide on using Marauder and its various features.

Overview of Marauder Features

In this section, the creator explains that they will demonstrate all the features of Marauder and take viewers through each sniffer and attack option available.

Introduction to Esp32 Marauder Mini

  • The Esp32 Marauder Mini is introduced as a smaller version of the full-size Esp32 Marauder board.
  • It has all the same functionality but in a more compact form factor.
  • The device can be powered by a battery, making it portable.

Available Devices and Accessories

  • Viewers are informed that all devices, including the new Wi-Fi hat with an SD card reader, can be purchased from Coco Tindy's website.
  • The Flipper device is also mentioned as having similar functionality to Esp32 Marauder.

Exploring Sniffers in Marauder

This section focuses on the different sniffers available in Marauder and their functionalities.

Probe Request Sniff

  • Probe Request Sniff allows users to check for probe requests sent by nearby Wi-Fi devices.
  • It displays MAC addresses of devices searching for access points or server-side identifiers (SSIDs).

Beacon Sniff

  • Beacon Sniff is used to detect nearby Wi-Fi access points.
  • It displays the MAC address and ESSID (extended server-side identifier) of the detected access points.

Scan APS

  • Scan APS saves the detected access points to a list for further actions and attacks.
  • This feature allows users to perform various attacks on the saved access points.

D Auth Sniff

  • D Auth Sniff searches for authentication packets sent by Wi-Fi devices.
  • These packets can be used to perform de-authentication attacks, capture handshakes, and potentially crack Wi-Fi passwords.

EA Paul and PMKID Scan

  • EA Paul (Extensive Authentication Protocol over LAN) and PMKID (Pairwise Master Key Identifier) scans search for specific packets sent over Wi-Fi.
  • These packets are part of the four-way handshake process used for device authentication with an access point.
  • They can be captured and used to crack Wi-Fi passwords using tools like Hashcat.

Conclusion

The creator concludes the video by summarizing the different sniffer options available in Marauder.

Recap of Sniffer Options

  • The creator demonstrates how to run a de-auth attack using Marauder, showing multiple devices being affected.
  • The EA Paul and PMKID scan options are briefly mentioned as additional ways to capture handshake packets for password cracking purposes.

Wi-Fi Password Scanner

This section introduces a Wi-Fi password scanner that detects and saves plain text passwords transmitted over the network.

Wi-Fi Password Scanner Features

  • The scanner detects specific packets containing Wi-Fi passwords and saves them to an SD card.
  • It displays a graph showing when packets are being captured.
  • The feature is useful for capturing Wi-Fi passwords, but it requires finding networks with vulnerable transmissions.

Detect Pony Gotchi Feature

This section discusses the "Detect Pony Gotchi" feature, which is used to locate a specific device called "Ponygashi."

Issues with Detecting Pony Gotchi

  • The speaker mentions difficulties in getting this feature to work properly.
  • They have a device called "Ponygashi" and attempt to use the sensor tape to locate it.
  • However, they encounter some challenges and cannot see the device clearly.

Raw Capture Feature

This section explains the raw capture feature, which displays all detected devices' MAC addresses and signal strengths.

Raw Capture Functionality

  • The raw capture feature shows all devices around the user, including their MAC addresses and received signal strength indicator (RSSI).
  • While it provides interesting information, it may not have practical everyday use.

Station Sniff Feature

This section explores the station sniff feature, which scans for devices connected to a specific network.

Using Station Sniff

  • To utilize station sniff, the user needs to select their access points from the list.
  • Once selected, station sniff will identify any devices connected to those access points.
  • This information can be used for targeted de-authentication attacks on specific devices within that network.

Signal Monitor Feature

This section briefly mentions the signal monitor feature, which measures the difference in signal strength for a connected network.

Signal Monitor Functionality

  • The signal monitor feature is not currently functional.
  • It requires connecting directly to a network and only provides information about the signal strength difference, making it less practical for everyday use.

Beacon Spam List Attack

This section introduces the beacon spam list attack, which floods specific SSIDs or access points with spam messages.

Beacon Spam List Attack

  • The beacon spam list attack allows users to spam specific SSIDs or access points.
  • By adding SSIDs to the list, users can flood those networks with spam messages.
  • This attack can be used creatively but should be used responsibly and ethically.

Beacon Spam Random Attack

This section discusses the beacon spam random attack, which generates random SSIDs to flood networks with spam messages.

Beacon Spam Random Attack

  • The beacon spam random attack creates numerous random SSIDs that are broadcasted continuously.
  • This flooding technique can cause annoyance and confusion for users trying to connect to legitimate networks.
  • Using this attack in public spaces is strongly discouraged due to its disruptive nature.

Rickroll Beacon Attack

This section explains the Rickroll beacon attack, which sends out fake access points broadcasting lyrics from Rick Astley's song "Never Gonna Give You Up."

Rickroll Beacon Attack

  • The Rickroll beacon attack broadcasts fake access points that display lyrics from "Never Gonna Give You Up."
  • This well-known prank has been popular for some time and is widely recognized by internet users.

Probe Request Flood Attack

This section describes the probe request flood attack, which overwhelms an access point by repeatedly sending probe requests at a rapid rate.

Probe Request Flood Attack

  • The probe request flood attack sends a high volume of probe requests to an access point, overwhelming its resources.
  • This attack can effectively jam the access point and prevent devices from connecting to it.
  • It is important to use this attack responsibly and avoid targeting one's own network.

Deauth Flood Attack

This section introduces the deauth flood attack, which deauthenticates vulnerable devices on a network by sending authentication packets.

Deauth Flood Attack

  • The deauth flood attack targets vulnerable devices on a network by continuously sending authentication packets.
  • During the attack, affected devices are unable to reconnect to the network as they are repeatedly booted off.
  • The effectiveness of this attack depends on the number of vulnerable devices present on the targeted network.

AP Clone Spam Attack

This section discusses the AP clone spam attack, which creates cloned SSIDs for selected access points, causing confusion for users trying to connect.

AP Clone Spam Attack

  • The AP clone spam attack generates cloned SSIDs for selected access points in order to confuse users attempting to connect.
  • This technique can create difficulty in identifying legitimate networks among multiple clones.

Targeted Deauth Attack

This section explains the targeted deauth attack, which selectively deauthenticates specific devices connected to a network.

Targeted Deauth Attack

  • The targeted deauth attack allows users to select individual devices connected to their network using MAC addresses.
  • By running this attack, selected devices will be continuously disconnected from the network.

General Options

This section covers the general options available in the Wi-Fi Marauder tool.

Joining Wi-Fi and Shutting Down Wi-Fi

  • To join a Wi-Fi network for monitoring or signal analysis, use the "Join Wi-Fi" option.
  • The "Shutdown Wi-Fi" option disconnects from the current Wi-Fi network.

Generating SSIDs and Adding SSIDs

  • The "Generate SSIDs" option creates a list of 20 random essids that can be used in beacon spam attacks.
  • The "Add SSID" option allows users to add their own SSID to the list for attacks.

Clearing SSIDs, APS, and Stations

  • The "Clearing SSIDs", "Clearing APS", and "Clearing Stations" options remove specific items from the respective lists.

Other Features

  • The tool includes features like adding IP addresses, selecting stations, and displaying device information.
  • Bluetooth capabilities are also available for sniffing devices transmitting on Bluetooth.

Bluetooth Sniffer

This section focuses on using the Bluetooth sniffer feature in the tool.

  • The Bluetooth sniffer can detect devices transmitting on Bluetooth.
  • There might be occasional crashes when running all attacks before using the Bluetooth sniffer.
  • Restarting the tool resolves any crashes related to running previous attacks.

Additional Features

This section highlights additional features of the tool.

Detect Card Skimmer

  • The "Detect Card Skimmer" feature identifies credit card skimmers installed on ATM or credit card readers at places like supermarkets or gas stations.

General Apps and Drawing Feature

  • The tool includes a drawing feature where users can draw anything they want.
  • The "General Apps" section offers various functionalities, including drawing.

Firmware Update and Device Information

  • Users can update the firmware using the web updater or SD card update.
  • The "Device Info" option provides details about the firmware, temperature, and SD card size.

ESP32 Marauder Workflow

This section explains the workflow of using the ESP32 Marauder tool.

  • The ESP32 Marauder is available for purchase on specific dates.
  • Detailed instructions for using the tool are provided on GitHub.

QFlipper Application

This section introduces the QFlipper application and its features.

Viewing Logs

  • The "View Logs" option displays a log of activities if logging is enabled.

Scanning Options

  • Users can scan for access points or stations to populate a list for running attacks later on.

Managing SSIDs

  • Users can add random or specific SSIDs to the list or remove unwanted ones.

Conclusion

The transcript covers various features and options available in the Wi-Fi Marauder tool, including joining Wi-Fi networks, generating SSIDs, Bluetooth sniffing, detecting card skimmers, and more. It also provides insights into using QFlipper application for viewing logs, scanning options, and managing SSIDs.

Access Point Selection

In this section, the speaker explains how to select an access point using the Flipper device.

Selecting an Access Point

  • To select an access point, navigate to the main menu and choose option number 5.
  • This will allow you to either select an SSID or an access point.
  • After selecting the desired access point, save your selection and return to the main menu.

De-authentication Attack and Probe Attack

The speaker discusses the de-authentication attack and probe attack functionalities of the Flipper device.

De-authentication Attack and Probe Attack

  • The de-authentication attack targets a specific access point that was previously selected.
  • Similarly, the probe attack also targets a specific access point.
  • These attacks should not be performed on personal networks as they can cause disruptions.

Targeted D-off and Functionality of Flipper

The speaker explains how to perform targeted d-off attacks using Flipper and highlights its functionality.

Targeted D-off Attacks

  • It is possible to select stations and perform targeted d-off attacks on them.
  • This feature provides similar functionality as larger devices used for network security testing.

Beacon Spamming and Sniffing Functions

The speaker demonstrates beacon spamming and various sniffing functions available in Flipper.

Beacon Spamming and Sniffing Functions

  • Beacon spamming allows users to generate random APs or spam existing AP lists.
  • Sniffing functions include capturing beacons, de-authentication packets, expressive chipsets, PMK IDs, probes, Ponagachis, raw scans, Bluetooth scans, card skimmers scans.
  • These features provide extensive scanning capabilities in a compact application.

Signal Monitoring and Channel Settings

The speaker explains the signal monitoring feature and channel settings in Flipper.

Signal Monitoring and Channel Settings

  • The signal monitor displays the signal strength of a selected access point.
  • This feature can be used to determine proximity to an access point.
  • Channel settings allow users to get or set the channel, although their exact functionality is not clear.

Additional Features: Settings, Updates, Reboot, Help

The speaker discusses additional features available in Flipper such as settings, updates, rebooting, and accessing help.

Additional Features

  • Users can access various settings including saving P caps and other configurations.
  • An update function is available but it is recommended to connect Flipper to a computer for updating.
  • Rebooting and help options are also provided for convenience.

Saving Files to SD Card

The speaker explains how to save pcap files and logs directly to the SD card on Flipper.

Saving Files to SD Card

  • If using the official Wi-Fi board or an ESP32 S2 Rover board, pcap files can be saved directly to the SD card on Flipper.
  • Users can enable this feature by setting it to "yes" in the settings menu.
  • Logs can also be saved to the SD card for easy access and storage.

Sniffing PMK Handshakes

The speaker demonstrates sniffing PMK handshakes using passive or active sniffing modes in Flipper.

Sniffing PMK Handshakes

  • Sniffing PMK handshakes has been improved with passive or active sniffing options.
  • Active sniffing involves forcing a de-authentication packet before capturing handshakes.
  • Channels can be selected to send authentication packets and sniff handshakes.

Script Automation

The speaker introduces the script automation feature in Flipper, allowing users to automate workflows.

Script Automation

  • Flipper offers a powerful scripting feature for automating various workflows.
  • Users can create custom scripts for tasks such as generating Beacon lists or creating custom Rick Rolls.
  • Scripts can be edited, saved, and deleted within the Flipper application.

Creating Custom Rick Rolls

The speaker demonstrates how to create a custom Rick Roll using the script automation feature in Flipper.

Creating Custom Rick Rolls

  • To create a custom Rick Roll, users can edit the stages of the Beacon list script.
  • Access points can be added or removed from the list to personalize the Rick Roll experience.
  • Random access points can also be generated for added variety.

Timestamps are provided where available.

Overview of Edit Stages and Custom Scripts

In this section, the speaker discusses the various features and functionalities of the esp32 Marauder. They explain how to add stages, create custom scripts, run custom commands, and change delays. The speaker also mentions that there are command line instructions available for reference on Coco's GitHub.

Adding Stages and Custom Scripts

  • The esp32 Marauder allows users to add different stages and create custom scripts.
  • Users can make a long custom script and even run custom commands.
  • There is a wide range of functionality available, including automating processes and attacks.

CLI (Command Line Interface)

  • The speaker does not go into detail about the CLI in this video but mentions that most of the CLI functionality is accessible through the app or physical hardware.

Using Marauder for Various Purposes

In this section, the speaker explains how they use esp32 Marauder in different forms except for CLI. They mention that users can run their own custom Rick rolls, play tricks on friends, grab handshakes, and utilize various features like probe scans and beacon spams.

Utilizing Marauder's Abilities

  • Users can run their own custom Rick rolls using esp32 Marauder.
  • The speaker highlights that people often have questions about probe scans and beacon spams but now viewers have a better understanding of these features.
  • The speaker encourages viewers to leave any additional questions in the comments or join Discord communities for further assistance.

Conclusion

The transcript provides an overview of edit stages and custom scripts in esp32 Marauder. It also explains how to use Marauder for various purposes, such as running custom scripts and utilizing different features. The speaker emphasizes the availability of CLI functionality through the app or physical hardware. Overall, the transcript offers insights into the capabilities of esp32 Marauder and encourages further exploration and engagement with the community.

Video description

Today I made THE most comprehensive guide to every single feature on the ESP32 Marauder. I go over every feature on the main, Stand-Alone unit, and then show you how to use those features on the Flipper Zero!! Make your own custom Rick Rolls!! Everything you wanted to know and more!!! JustCallMeKoKo's Discord: https://discord.gg/willstunforfood-776211399918878760 JustCallMeKoKo's Tindie: https://www.tindie.com/products/justcallmekoko/esp32-marauder/ ESP32 Marauder Wiki : https://github.com/justcallmekoko/ESP32Marauder/wiki Lily's Skin Store : https://www.etsy.com/shop/LilyLikesPlants ----------------------------------- Official Merch Store : https://shop.talkingsasquach.com Amazon List of All the Parts I Use: https://a.co/0ujD8M9 UberGuidoZ Repo: https://github.com/UberGuidoZ/Flipper Uber's DownGit: https://uberguidoz.github.io/DownGit/... I Am Jakoby's Channel: https://www.youtube.com/c/iamjakoby ----------------------------------- Check Out The Official Squachtopia Hangout Discord Server!: https://discord.gg/squachtopia ----------------------------------- Try SquachWare Community Firmware! : https://github.com/skizzophrenic/SquachWare-CFW ----------------------------------- Support the Channel at my Patreon!! https://www.patreon.com/user?u=29290751 ----------------------------------- Follow me on Social Media! TikTok : https://www.tiktok.com/@talkingsasquach Instagram : https://www.instagram.com/talking_sasquach/ ----------------------------------- Help Support my Content At Amazon!: https://www.amazon.com/hz/wishlist/ls/E26ZELJS33R2?ref_=wl_share ----------------------------------- Thank You SO MUCH For I am Jakoby for the intro, definitely hit up his channel and be sure to subscribe!!! https://www.youtube.com/c/iamjakoby ----------------------------------- Disclaimer : This channel and its content is for educational purposes only! We only teach ETHICAL hacking and do not encourage testing any software or hardware that you don't specifically own. Doing otherwise is ILLEGAL and is absolutely not encouraged. DON'T BE A SKID!!