WiFi-Pumpkin v0.8.7 released, Framework for Rogue Wi-Fi Access Point Attack

WiFi-Pumpkin – Framework for Rogue Wi-Fi Access Point Attack

The WiFi-Pumpkin is a rogue AP framework to easily create these fake networks, all while forwarding legitimate traffic to and from the unsuspecting target. It comes stuffed with features, including rogue Wi-Fi access points, deauth attacks on client APs, a probe request and credentials monitor, transparent proxy, Windows update attack, phishing manager, ARP Poisoning, DNS Spoofing, Pumpkin-Proxy, and image capture on the fly. moreover, the WiFi-Pumpkin is a very complete framework for auditing Wi-Fi security check the list of features is quite broad.


  • Rogue Wi-Fi Access Point
  • Deauth Attack Clients AP
  • Probe Request Monitor
  • DHCP Starvation Attack
  • Credentials Monitor
  • Transparent Proxy
  • Windows Update Attack
  • Phishing Manager
  • Partial Bypass HSTS protocol
  • Support beef hook
  • ARP Poison
  • DNS Spoof
  • Patch Binaries via MITM (BDF-Proxy)
  • LLMNR, NBT-NS and MDNS poisoner (Responder)
  • Pumpkin-Proxy (ProxyServer (mitmproxy API))
  • Capture images on the fly
  • TCP-Proxy (with scapy)
  • Moduled plugins and proxys
  • Wireless Mode support hostapd-mana/hostapd-karma attacks


Dns2proxyThis tools offer a different features for post-explotation once you change the DNS server to a Victim.
Sstrip2Sslstrip is a MITM tool that implements Moxie Marlinspike’s SSL stripping attacks based version fork @LeonardoNve/@xtr4nge.
Sergio_proxySergio Proxy (a Super Effective Recorder of Gathered Inputs and Outputs) is an HTTP proxy that was written in Python for the Twisted framework.
BDFProxyPatch Binaries via MITM: BackdoorFactory + mitmProxy, bdfproxy-ng is a fork and review of the original BDFProxy @secretsquirrel.
ResponderResponder an LLMNR, NBT-NS and MDNS poisoner. Author: Laurent Gaffie


git clone https://github.com/P0cL4bs/WiFi-Pumpkin.git
cd WiFi-Pumpkin
./installer.sh –install

Changelog v0.8.7


  • modularized and auto loaded proxy package
  • autoloaded plugins which is located inside core/server/http_handler/proxyhandler
  • modularized the wireless mode [mana, karma, etc]
  • the main tab (Home, Settings, Station, Activity Monitor) now segregated into its own file
  • all this pages are located under core/widgets/defaults
  • the setting tab it is now generated automatically
  • same as Setting page, the home page will also now automatically generated
  • made an easy refference for the FSettings by calling FSettings.getInstance()
  • FSettings call now located on the QApplication method instead of WifiPumpkin method.
  • added method for check if wireless mode binary exist [hostapd mana/karma]
  • added check if PumpkinProxy module dependencies is installed
  • added installer to enable Wireless Mode options Hostapd-Mana/Karma


  • fixed version beta alert and constants
  • fixed when include interface in Networking-manager
  • set ip class A by default
  • fixed [Errno 9] Bad file descriptor from dhcpserver
  • fixed #322 error when remove the client from tableWidget
  • set plugin BDFPROXY to hidden in Home
  • fixed home GUI design auto resize when maximized
  • save ssid name in config.ini
  • removed binary hostpad-mana
  • fixed Capture Image plugin
  • updated Qtimer Count hours and mins


Copyright (C) 2016 mh4x0f