12 November 2007 | 18,463 views

WifiZoo v1.2 – Gather Wifi Information Passively

Don't let your data go over to the Dark Side!

WifiZoo is a tool to gather wifi information passively. Similar to dsniff but for wireless work, the author wanted to do something wifi-related somewhat helpful in wifi pentesting. Something of an extension of Ferret from Errata.

It’s essentially a tool to get information from open wifi networks without joining any network, and covering all wifi channels. Most of the packet parsing is done by Scapy.

WifiZoo does the following:

  • Gathers bssid->ssid information from beacons and probe responses
  • Gathers list of unique SSIDS found on probe requests
  • Gathers the list and graphs which SSIDS are being probed from what sources
  • Gathers bssid->clients information and outputs it in a file
  • Gathers ‘useful’ information from unencrypted wifi traffic (like passwords/credentials etc)


  • Python
  • Scapy
  • Kismet (if you want to do channel hopping)
  • Logs are stored in ./logs/ (so make the directory)

You can download WifiZoo here:


Or you can read more here.


Recent in Hacking Tools:
- RWMC – Retrieve Windows Credentials With PowerShell
- MITMf – Man-In-The-Middle Attack Framework
- LaZagne – Password Recovery Tool For Windows & Linux

Related Posts:
- WifiZoo v1.3 Released – Passive Info Gathering for Wifi
- Just-Metadata – Gathers & Analyse IP Address Metadata
- Russia Heavy Handed Registration for Wifi

Most Read in Hacking Tools:
- Top 15 Security/Hacking Tools & Utilities - 1,954,872 views
- Brutus Password Cracker – Download brutus-aet2.zip AET2 - 1,334,499 views
- wwwhack 1.9 – Download wwwhack19.zip Web Hacking Tool - 666,134 views

Low-cost VPS Hosting

6 Responses to “WifiZoo v1.2 – Gather Wifi Information Passively”

  1. Pantagruel 12 November 2007 at 12:16 pm Permalink

    A very nice addition to the wireless tool set indeed.
    Works quite well in our secured environment, at home I honestly do not need to bother. A multitude of open access points simply because users where never told about the options to secure their wireless gear.

  2. Reticent 12 November 2007 at 10:12 pm Permalink

    I was about to ask what this tool had over the aircrack-ng suite of applications until I saw the passwords/credential gathering feature. You really have to feel for people still running unencrypted wireless points!

  3. normalsecrecy 13 November 2007 at 7:24 am Permalink

    this will be a nice complement to other tools. it’ll be interesting just to see how many passwords can be snooped.

  4. Goodpeople 13 November 2007 at 9:52 pm Permalink

    It would be even nicer if it could automatically crack WEP and WPA, but I understand that that’s in the works.

    I particulary like the ability to make a graph of the network. That could prove to be a very usefull feature.

    Keep up te good work!

  5. dirty 16 November 2007 at 10:58 pm Permalink

    The web interface is a nice feature.

    Darknet BTW – the download link provide is wrong you have v1.1

  6. Sir Henry 15 December 2007 at 3:38 am Permalink

    I have been looking at scapy for a little while now to assist me in developing a hacktool in Python. Scapy is brilliant in its construction and function. This tool, however, looks like it would be pretty useful while mapping APs.