Back to search

Airpwn TCP Hijack

TCP streams are 'protected' only in so much as the sequence number is not guessable. Wifi is shared media. Got your nose. Responses which do not begin with Header: Value assumed to be HTML only and will have Header:Value data prepended. Responses which do not include a Content-Length header will have one generated.

Free Metasploit Download

Get your copy of the world's leading penetration testing tool

 Download Now

Module Name



  • toast
  • dragorn
  • ddz <ddz [at]>
  • hdm <hdm [at]>


  • Airpwn



Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':

msf > use auxiliary/spoof/wifi/airpwn msf auxiliary(airpwn) > show actions ...actions... msf auxiliary(airpwn) > set ACTION <action-name> msf auxiliary(airpwn) > show options and set options... msf auxiliary(airpwn) > run