Similar to Fluxion, Kali has a built-in applicationfor performing Wi-Fi phishing in a GUI fashion. Ghost Phisher is built to identify wireless and for Ethernet security auditing. It is written entirely in Python and Python QT for the GUI library.
In order to harvest user credentials, attackers can utilize the Ghost Phisher application to launch a fake AP as shown in the following screenshot:
Ghost Phisher currently provides the following features for penetration testers or attackers:
- Creating an HTTP server
- DNS server
- DHCP server
- Credential logging page (for phishing the username and password)
- AP emulator
- Advanced session hijacking module
- The option to perform ARP cache poisoning to perform MitM and DoS attacks, similar to Ettercap/BetterCap.
- Allows attackers to embed Metasploit binding techniques
- A SQLite database as credentials storage
