BetterCAP is a powerful and versatile network tool used for network penetration testing, monitoring, and manipulation.

It provides a wide range of capabilities for analyzing and interacting with network traffic.

One of its distinctive features is the concept of “caplets.”

Caplets in BetterCAP are small, reusable scripts or modules written in the Ruby programming language.

They allow you to extend and customize the functionality without modifying its core code.

Caplets are used to automate various tasks, perform specific attacks or manipulations, and enhance the tool’s overall capabilities.

They are essentially plugins or extensions that can be loaded to add specific functionalities.

A Swiss Army knife for WiFi, Bluetooth Low Energy, wireless HID hijacking, and IPv4 and IPv6 networks reconnaissance and MITM attacks.

Bettercap
Bettercap

What is BetterCAP?

BetterCAP is a powerful security tool developed to audit the security of wireless networks.

It offers the ability to sniff network packets and supports various types of attacks and scanning activities like DNS spoofing, man-in-the-middle (MiTM) attacks, ARP spoofing, and other network intrusion techniques.

Main Features

  • WiFi network scanning, de-authentication attack, clientless PMKID association attack, and automatic WPA/WPA2 client handshake capture.
  • Bluetooth Low Energy devices scanning, characteristics enumeration, reading, and writing.
  • 2.4 GHz wireless devices scanning and MouseJacking attacks with over-the-air HID frames injection (with DuckyScript support).
  • Passive and active IP network hosts probing and recon.
  • ARP, DNS, DHCPv6, and NDP spoofers for MITM attacks on IPv4 and IPv6-based networks.
  • Proxies at packet level, TCP level, and HTTP/HTTPS application level are fully scriptable with easy-to-implement javascript plugins.
  • A powerful network sniffer for credentials harvesting which can also be used as a network protocol fuzzer.
  • A very fast port scanner.
  • A powerful REST API with support for asynchronous events notification on web socket to orchestrate your attacks easily.
  • An easy-to-use web user interface.
  • More!
Bettercap

1. Preparing the Raspberry Pi

Before you can begin installing you will need to make sure your Raspberry Pi is up to date. Start by updating the OS packages by running the following command in the terminal:

sudo apt-get update && sudo apt-get -y upgrade

Activate Bluetooth on RPI4

kali@kali:~$ sudo systemctl enable --now hciuart.service
kali@kali:~$ sudo systemctl enable --now bluetooth.service

2. Install dependencies

  • build-essential
  • libpcap-dev
  • libusb-1.0-0-dev (required by the HID module)
  • libnetfilter-queue-dev (on Linux only, required by the packet.proxy module)
sudo apt update
sudo apt install golang git build-essential libpcap-dev libusb-1.0-0-dev libnetfilter-queue-dev
Bettercap

3. How to install Bettercap

First, we will install it from Git Hub, and after that all necessary dependencies.

sudo apt install bettercap
Bettercap

Compile from Source

go get github.com/bettercap/bettercap
cd $GOPATH/src/github.com/bettercap/bettercap
make build
sudo make install

4. Update Caplets

sudo apt-get install bettercap-caplets
Bettercap
sudo bettercap -eval "caplets.update; q"

5. BetterCap WebUI

sudo bettercap -eval "ui.update; q"
Bettercap
BetterCAP Installation Guide: Step-by-Step Instructions 10

Configure Login

sudo vi /usr/local/share/bettercap/caplets/https-ui.cap
Bettercap
sudo bettercap -caplet https-ui

Generate a certificate for Web-Gui

openssl req -x509 -newkey rsa:4096 -keyout key.pem -out bettercap-https.cert -sha256 -days 3650 -nodes -subj "/C=XX/ST=Oporto/L=Oporto/O=OffensiveWireless/OU=RFS/CN=kali"
Bettercap

BetterCap Website

Bluetooth low energy devices scanning characteristics enumeration reading and writing.

ipv4 and ipv6 networks reconnaissance and mitm attacks.

proxies at packet level tcp level and http https application level
wpa/wpa2 client handshakes capture
sudo bettercap --help
Usage of bettercap:
  -autostart string
        Comma separated list of modules to auto start. (default "events.stream")
  -caplet string
        Read commands from this file and execute them in the interactive session.
  -caplets-path string
        Specify an alternative base path for caplets.
  -cpu-profile file
        Write cpu profile file.
  -debug
        Print debug messages.
  -env-file string
        Load environment variables from this file if found, set to empty to disable environment persistence.
  -eval string
        Run one or more commands separated by ; in the interactive session, used to set variables via command line.
  -gateway-override string
        Use the provided IP address instead of the default gateway. If not specified or invalid, the default gateway will be used.
  -iface string
        Network interface to bind to, if empty the default interface will be auto selected.
  -mem-profile file
        Write memory profile to file.
  -no-colors
        Disable output color effects.
  -no-history
        Disable interactive session history file.
  -pcap-buf-size int
        PCAP buffer size, leave to 0 for the default value. (default -1)
  -script string
        Load a session script.
  -silent
        Suppress all logs which are not errors.
  -version
        Print the version and exit.

wireless penetration testing

Categorized in:

Wireless Hacking,

Tagged in:

, ,