We have released a new firmware update! Potsticker
โจ A self-evolving honeypot system for WiFi security monitoring and attack detection.
auto-generated honeypot targets
main page
detections
attack logs
free wili as an access point
web logs
auto-generated honeypot targets
๐ Inspirationโ
I'm a big fan of scambaiting, and especially Kitboga's YouTube channel. Recently, I've been really interested in the maze videos that use AI and automated systems to lead scammers to think they're getting closer and closer to scoring a big win, wasting as much of their time as possible. They think they can't give up now because a big payday seems so close by.
Recently, due to the "React2Shell" vulnerability in React Apps, my personal portfolio website and the VPS I paid for got attacked and ran as a crypto mining operation for a few days before I was able to restore it. This brought me to think of ways to make their lives a bit harder, and gave me the idea to create networks and application honeypots that evolve according to the attacker's input. For any potential attackers, the access point hosted through the Orca module and the "vulnerable" web servers would make it easier for them to get "wins", making the whole system feel an arm's reach away, yet never reachable.
๐ Challengesโ
I developed this program on an M1 Mac, which may have possibly been the worst choice possible. Any sort of serial connections or network programming just did not work with Apple's secure enclave, meaning we relied on my teammate's computer to act as an interface for the FreeWili device. Unfortunately, he owns a Windows 11 device, which is not much better in terms of network programming.
Any sort of testing with tools used in cyberattacks was a no-go, since they were exclusive to Linux. (reaver, aircrack-ng, mdk5, airodump-ng). Specifically, our wifi adaptors did not support monitormode, which prevented us from sending actual well-formed packets, forcing us to write our own packet parsing system.
๐ฅ Easter Eggโ
We wrote a WASM script that will create a show for the Basketball GOAT, LeBron James as a screensaver. Basic Rust code in the repository, it involves lights, sound, accelerometer, and a picture slowly appearing. We'll show it if we have a bit of time left during judging :)
๐งฉ Built Withโ
docker freewili gemini python scapy
