Inspiration
We were inspired by the stories that show how astonishingly simple it is for people to get their sensitive information stolen through public Wi-Fi like Starbucks, McDonalds, and even at airports. Anyone with the right tools can mimic a Wi-Fi connection like GuestNJIT Wi-Fi and have the user enter a "smoke screen" page where their entered information will be recorded by the data thieves.
What it does
Our project mimics this attack, but instead of stealing information we bring awareness to the issue because not many people are aware that their information can be stolen this easily. When trying to connect to wifi, the victim will spot a wifi name they believe to be owned by the location they are at, where usually there is a login page that pops up afterwards, little do they know it is a "smoke screen", or a fake of the original and they enter right into our page where we can see any information they enter through our tools.
How we built it
Used Flipper Zero and ESP32 module as a vehicle to spoof 2.4 ghz Wi-Fi networks. We mimicked the Wi-Fi captive login pages that are prompte to users that are trying to connect to free wifi. Programmed using HTML & CSS.
What we learned
One thing we learned is not to rely on alarm clocks to wake us up. On the real note though, we learned that public wifi, especially in busy places like airports should never be trusted with our sensitive information. We only scratched the surface of what is possible, with more advanced tools people do worse things like track every little thing you type.
What's next for SmokeScreen
SmokeScreen isn't a useful tool in a sense, but it is something that can humble many advocates of free wifi. The next steps we could take with this project is use it to spread awareness about public wifi dangers at schools, other colleges and even jobs.
Log in or sign up for Devpost to join the conversation.