reversed pwnagotchi : Netgotchi lives to protect your network
A small arduino .ino script with some great functions to detect intruders or breach in the network, it pings periodically the network and report if any new device. It also has a rudimental "Honeypot" functionality with a rudimental exposed service, once someone reach the honeypot it will trigger an alarm. Please contribute to the repository via pull requests!
Tested with nmap, service scan / intense scan will trigger the alert.
Get an official build and support the development from Netgotchi on Bonanza or Amazon
- ESP8266 ( any )
- SSD1306 display ( ic version )
- Usb cable
- optional 3d printed parts ( from thingiverse.com)
- Community cases: Wemos d1 https://www.printables.com/model/510481-terminal-for-ssd1306-096-oled-and-wemos-d1-mini ( thanks porkcube for the link)
or get an assembled one here : Get an official build and support the development from Netgotchi on Bonanza or Amazon
- It uses a modified version of ESP8266FtpServer ( replace your local one in Arduino>Libraries with this one)
- Adafruit_SSD1306 standard ( install from Library manager)
- ESPping Standard ( install from Library manager)
- WiFiManager standard ( install from Library manager)
-
open .ino file , choose your subnet ( just change the value or add your own)Not necessary due to Autodetect subnet function after v.0.7 -
optionally you can input your Wifi credential in the .ino file or use the WifiManager library ( default is WifiManager)
-
Install libraries and flash the file in the esp8266 ( connect the display first)
-
On first status WiFiManager library will create an hostpot where you can set your wifi credentials "AutoConnectAP"
-
Netgotchi now lives in your network, it will scan periodically using pings and report potential breach of the honeypot
- open script pyserial_cyberdeck and change line 5: /dev/ttyUSB0 to your COM port ( on linux is usually /dev/ttyUSB0 )
- run script utils/cyberdeck/pyserial_cyberdeck.py
- Netgotchi now scan your network for services like quick-scan of NMAP - it will scan host for know vulnerables services including : { "Telnet", 23 }, { "FTP", 21 }, { "SSH", 22 }, { "VNC", 5900 }, { "RDP", 3389 }, { "SMB", 445 }, { "HTTP", 80 }, { "HTTPS", 443 }
- report any vulnerabilities and vulnerable hosts with a "WRNG!"
- This may trigger other Netgotchi in the same network , so there is a flag enabled by default to skip the FTP scan.
- can be disabled from the securityScanActive flag
Enjoy your Netgotchi ! Please contribute to the project,and let's save our network! Thank you to all contributors and supporters! (^///^)9
Join our reddit/r/Netgotchi
GNU General Public License v3.0 Created by MG ( MXZZ )