Evil-M5Project is an innovative tool developed for ethical testing and exploration of WiFi networks. It harnesses the power of the M5Core2 device to scan, monitor, and interact with WiFi networks in a controlled environment. This project is designed for educational purposes, aiding in understanding network security and vulnerabilities.
Disclaimer: The creator of Evil-M5Core2 is not responsible for any misuse of this tool. It is intended solely for ethical and educational purposes. Users are reminded to comply with all applicable laws and regulations in their jurisdiction. All files provided with Evil-M5Core2 are designed to be used in a controlled environment and must be used in compliance with all applicable laws and regulations. Misuse or illegal use of this tool is strictly prohibited and not supported by the creator.
If you find this project useful, consider supporting its development!
Buy M5Stack product
using my affiliate link to help me keep building new tools π οΈ
Buy anything on AliExpress
Just by using this link before searching, you're directly supporting the project π
Every small click and donation keeps this open-source project alive β¨ just clicking can make a difference π
Join the Evil-M5 discord for help and updates π:
https://github.com/7h30th3r0n3/Evil-M5Project/wiki
| Device | Links to buy |
|---|---|
| Better one : M5Cardputer | M5Stack / AliExpress |
| M5Stack Core2 | M5Stack / AliExpress |
| M5Stack Fire | M5Stack |
| M5Stack Core1 | M5Stack |
| M5Stack AWS | M5Stack |
| M5Stack CoreS3 | M5Stack / AliExpress |
| M5Stack CoreS3 SE | M5Stack |
| M5AtomS3 (GPS needed) | M5Stack |
| β³ GPS Module | M5Stack |
| LLM Module | M5Stack / AliExpress |
| Device | Links |
|---|---|
| CYD2USB | AliExpress |
| CYD1USB | (No link yet) |
| M5Stick v1.1 | AliExpress |
| M5Stick v2 | AliExpress |
Features may vary depending on the firmware/device you are using:
| Feature | Evil-Cardputer v1.4.1 | Evil-M5Core2 1.3.9 | Evil-M5Core3 1.1.9 | Evil-AtomS3 v1.1.7 | Evil-Face v1.0 |
|---|---|---|---|---|---|
| WiFi Network Scanning | β | β | β | β | β |
| Network Cloning | β | β | β | β | β |
| Captive Portal Management | β | β | β | β | β |
| Credential Handling | β | β | β | β | β |
| Remote Web Server | β | β | β | β | β |
| Probes Attack | β | β | β | β | β |
| Sniffing probes | β | β | β | β | β |
| Karma Attack | β | β | β | β | β |
| Automated Karma Attack | β | β | β | β | β |
| Karma Spear | β | β | β | β | β |
| Bluetooth Serial Control | β | β | β | β | β |
| Wardriving | β | β | β | β | β |
| Wardriving Master | β | β | β | β | β |
| Beacon Spam | β | β | β | β | β |
| Deauther | β | β | β | β | β |
| Auto Deauther | β | β | β | β | β |
| Evil-Twin | β | β | β | β | β |
| Handshake master | β | β | β | β | β |
| Client Sniff | β | β | β | β | β |
| Raw Sniffing | β | β | β | β | β |
| Wi-Fi Channel Visualizer | β | β | β | β | β |
| Client Sniff And Deauth | β | β | β | β | β |
| EAPOL/Deauth detection | β | β | β (No EAPOL) | β | β |
| Wall Of Flipper | β | β | β | β | β |
| Send tesla code with RFunit | β | β | β | β | β |
| Wi-Fi Channel Visualizer | β | β | β | β | β |
| Scan Network and port | β | β | β | β | β |
| Full Network and port Scan | β | β | β | β | β |
| SSH Shell | β | β | β | β | β |
| Web Crawler | β | β | β | β | β |
| PwnGrid | β | β | β | β | β |
| Skimmer Detector | β | β | β | β | β |
| Mouse Jiggler | β | β | β | β | β |
| BadUSB | β | β | β | β | β |
| WebUi BadUSB | β | β | β | β | β |
| Customing Theming | β | β | β | β | β |
| Full Network Scan | β | β | β | β | β |
| Reverse TCP Tunnel | β | β | β | β | β |
| DHCP Starvation | β | β | β | β | β |
| Rogue DHCP | β | β | β | β | β |
| Switch DNS | β | β | β | β | β |
| Network Hijacking | β | β | β | β | β |
| Detect Printer | β | β | β | β | β |
| File Print | β | β | β | β | β |
| Check printer status | β | β | β | β | β |
| HoneyPot | β (with Webhook) | β | β | β | β |
| LLM Chat Stream | β | β | β | β | β |
| EvilChatMesh | β | β | β | β | β |
| SD on USB | β | β | β | β | β |
| Responder | β | β | β | β | β |
| Settings | β | β | β | β | β |
- Connect your device to your computer.
- Download M5burner in UIFLOW FIRMWARE BURNING TOOL section : M5Stack Download Center
- Place the necessary SD file content at the root of SD card. (This is needed to access all the files of the project).
- Type "evil-" in search bar and check for the device you have.
- Click download and flash.
- Connect your device to your computer.
- Open the Arduino IDE and load the provided code.
- Ensure the Board tutorial from M5 and
Adafruit_NeoPixel,ArduinoJson,ESPping,IniFile,M5GFX,M5Unified,TinyGPSPlus, andesp8266audiolibraries are installed. Follow these tutorials for guidance on M5 Board tutorial: - Ensure the ESP32 and M5Stack board definitions are installed. Note: Errors occur with ESP32 version
3.0.0-alpha3for no M5stack devices. Please use M5stack board with ESP32 version2.1.4and below. - Place the necessary SD file content at the root of SD card. (This is needed to access the
IMGstartup andsitesfolder). - (Optional) Edit theme.ini on the SD card to customize your device's color theme. (Only supported for cardputer, other devices to be implemented later)
- Ensure to run the script in
utilities/deauth_prerequisitesto bypass the ESP32 firmware. - Add libraries for BadUSB functionality. See
utilities/Bad_Usb_Lib/README.md - Ensure that the baud rate is set to
115200. - Ensure that
PSRAMis disabled in the tools menu. - Upload the script to your M5Core2 device.
- Restart the device if needed.
Warning : for Cardputer you need to change the Flash size to 8MB and the Partition Scheme to 8M with spiffs (3MB APP/1.5MB SPIFFS) or space error may occur. It's your first time with arduino IDE or something not working correctly? You should check out video section or ask help on the discord !
By using 14 ESP32 devices, you can monitor all 14 Wi-Fi channels on the 2.4GHz band simultaneously without channel hopping. The Cardputer uses GPS to link each received SSID to a CSV file compatible with Wigle.
This slave code is designed to run on any ESP32 and use it as a slave for wardriving in combination with the wardriving master mode on Cardputer. Each ESP32 collects SSIDs of nearby access points (APs) on a specific channel or can hop between configured channels. You can add multiple ESP32 devices to improve the accuracy and strength of the scan. Devices with external antennas can enhance performance for wardriving.
- AtomS3: Buy here
- AtomS3 Lite: Buy here
- ESP32-C3 (with external antenna): Buy here (Be carefull to select sets WITH antenna)
- WEMOS D1 Mini: Buy here
- Multi-Device Support: Add any number of ESP32 devices to increase AP detection and improve coverage.
- Channel Hopping: Configure the ESP32 to scan on a specific channel or hop between selected channels.
- Better Signal Strength: ESP32 devices with external antennas provide improved signal capture for long-range wardriving.
- Master-Slave Communication: Use in combination with the Cardputer in wardriving master mode to aggregate and monitor data from multiple ESP32 slaves.
- GPS Integration: The Cardputer witg GPS link SSID data with geographic coordinates and generate Wigle-compatible CSV files.
- Deploy one or more ESP32 devices in slave mode.
- Each device scans and captures SSID information on designated channels.
- The data is sent to the Evil, which aggregates it and reduces missed APs while improving overall scan accu 8E11 racy and signal strength.
- Evil with v1.3.0
- ESP32 devices (e.g., AtomS3, AtomS3 Lite, ESP32-C3, WEMOS D1 Mini)
- External antenna (optional, for enhanced performance)
Here an assembly with 8 esp32-c3 connected in parallel and which scans 1,3,6,9,11,13 in static mode and in hopping for 2 others on 2,4,5,7 and 8,10,12,14 :
- @SpacehuhnTech for the deauther bypass and for the fantastic work that is really inspiring.
- @evilsocket for the concept of pwnagotchi and pwngrid.
- @G4lile0 for the wifi-hash-monster.
- @K3YOMI for the Wall Of Flipper.
- @pr3y for help and Bruce code.
- @bmorcelli for the help and Bruce code too.
- @justcallmekoko for the Marauder.
- @Talking Sasquach for creating video content about the project.
- @Sam X Plogs for creating video content about the project.
- @dagnazty for the fantastic work on M5dial.
- @LaikaSpaceDawg for the work on the code.
and to all Beta-testers on the discord :
- [@KamiLocura]
- [@Skedone]
- [@toxiccpappii]
- [@OarisKiller]
- [@hosseios]
- [@BrownNoise]
- [@DAKKA]
- [@KNAX]
MIT License
Copyright (c) 2023 7h30th3r0n3
Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.