The Largest WiFi Pineapple Pager Payload Collection
106 payloads across 14 categories โ more than any other third-party suite
Quick Start โข Payload Catalog โข Categories โข Installation โข Contributing
NullSec Pineapple Suite is the most comprehensive third-party payload collection for the Hak5 WiFi Pineapple Pager. With 106 professional payloads spanning 14 categories, it covers every aspect of WiFi security testing โ from reconnaissance and interception to exfiltration and stealth operations.
| Feature | NullSec Suite | Hak5 Official | Others |
|---|---|---|---|
| Total Payloads | 106 | 155 | 5-20 |
| Categories | 14 | ~10 | 2-4 |
| Attack Payloads | 16 | ~8 | 1-3 |
| Recon Payloads | 18 | ~9 | 1-5 |
| Stealth Suite | 9 | 0 | 0 |
| Games | 3 | 8 | 0 |
| One-Click Install | โ | โ | โ |
| Active Development | โ | โ | โ |
# Clone & install (one command)
git clone https://github.com/bad-antics/nullsec-pineapple-suite && cd nullsec-pineapple-suite && ./install.sh
# Or via SSH directly to Pineapple
ssh root@172.16.52.1 "cd /tmp && git clone https://github.com/bad-antics/nullsec-pineapple-suite && cd nullsec-pineapple-suite && ./install.sh"After install: Dashboard โ Payloads โ User โ nullsec โ Pick any payload and run!
Real-time monitoring and alerting for security events.
| Payload | Description |
|---|---|
| DeauthAlert | Monitors for deauthentication frames and alerts on attacks |
| HandshakeAlert | Watches for WPA handshake captures in real-time |
| ClientAlert | Alerts when new clients connect to your AP |
| RogueAPAlert | Detects evil twin and rogue access points |
| IntrusionAlert | Lightweight IDS โ port scans, ARP spoofing, SYN floods |
| BandwidthAlert | Monitors bandwidth usage with configurable thresholds |
| GeoFenceAlert | GPS-based geofence monitoring for device tracking |
Offensive WiFi security testing tools.
| Payload | Description |
|---|---|
| AuthFlood | Authentication flood using aireplay-ng |
| Banshee | Multi-vector WiFi disruption |
| CaptivePortal | Custom captive portal for credential harvesting |
| ChannelJammer | Targeted channel jamming |
| DeauthStorm | Mass deauthentication with targeting |
| DNSHijack | DNS hijacking for traffic redirection |
| EvilTwin | Evil twin AP with automatic client migration |
| FloodGate | Combined deauth + beacon + auth flood assault |
| HotspotHijack | Hijack existing hotspot connections |
| KarmaAttack | Respond to all probe requests |
| MassDeauth | Mass deauthentication of all nearby clients |
| ProbeAttack | Exploit probe requests to lure clients |
| Siren | Audio-visual attack alerts |
| TargetedDeauth | Precision deauth of specific clients |
| WPSBruteforce | WPS PIN brute force with Pixie Dust |
| WifiJammer | Broad-spectrum WiFi jamming |
Set-and-forget automated attack chains.
| Payload | Description |
|---|---|
| AutoPwn | Fully automated: scan โ identify โ exploit chain |
| Reaper | Automated client harvesting and processing |
| TimeBomb | Schedule attacks for delayed execution |
| ZeroClick | Zero-interaction automated exploitation |
Credential and handshake capture tools.
| Payload | Description |
|---|---|
| CredSniffer | Real-time credential sniffing from traffic |
| HandshakeHunter | Automated WPA/WPA2 handshake capture |
| PMKIDCapture | PMKID-based WPA capture (clientless) |
| PacketReplay | Capture and replay network packets |
| USBCredStealer | USB-based credential extraction |
| WPACracker | On-device WPA handshake cracking |
Data extraction and loot management.
| Payload | Description |
|---|---|
| DataVacuum | Extract URLs, cookies, credentials from traffic |
| CloudExfil | Upload loot to cloud storage (Dropbox, webhooks) |
| LootSync | Sync all captured loot to USB storage |
| DNSExfil | Covert data exfiltration via DNS tunneling |
Entertainment for downtime during engagements.
| Payload | Description |
|---|---|
| PagerPong | Text-based Pong game on Pager display |
| WarGames | WOPR-style hacking simulation (4 game modes) |
| NumberCracker | Number guessing game with hacking theme |
Man-in-the-middle and traffic interception.
| Payload | Description |
|---|---|
| MITMProxy | Transparent HTTP/HTTPS proxy with logging |
| ARPSpoof | ARP cache poisoning for MITM attacks |
| SSLStrip | HTTPS downgrade attacks |
| DNSSiphon | DNS query interception and browsing pattern analysis |
| PacketSniffer | Protocol-aware packet capture (HTTP/FTP/SMTP/DNS) |
Fun and harmless WiFi pranks.
| Payload | Description |
|---|---|
| BeaconSpam | Flood area with fake SSIDs |
| NetParasite | Inject content into HTTP traffic |
| RickRoll | Redirect all HTTP to Rick Astley |
| SSIDPranks | Creative SSID message broadcasting |
| WiFiConfuser | Generate confusing network environments |
The largest recon suite available for Pineapple Pager.
| Payload | Description |
|---|---|
| BluetoothScanner | Classic BT + BLE device discovery |
| ClientTracker | Track client devices across networks |
| DeviceFingerprint | OS and device fingerprinting via WiFi |
| DroneHunter | Detect and track nearby drones |
| HiddenNetFinder | Discover hidden/cloaked SSIDs |
| IoTScanner | Identify IoT devices on networks |
| NetworkMapper | Complete network topology mapping |
| PasspointScanner | Hotspot 2.0 / Passpoint network discovery |
| ProbeHunter | Capture and analyze probe requests |
| QuickScan | Fast area WiFi assessment |
| SignalTracker | Track signal strength over time |
| SocialMapper | Map social connections via device relationships |
| SpectrumAnalyzer | Channel utilization and interference analysis |
| StealthRecon | Low-profile reconnaissance |
| VendorHunt | Identify devices by OUI/vendor lookup |
| WPSScanner | WPS-enabled network discovery |
| WiFiAudit | Comprehensive WiFi security audit |
| WiFiTimeline | Temporal activity mapper โ tracks AP/client appear/disappear events over time |
Remote control and persistent access.
| Payload | Description |
|---|---|
| TunnelRat | Reverse SSH tunnel with auto-reconnect |
| C2Beacon | HTTP-based command & control beacon |
| PagerLink | Remote Pager UI access via SSH tunnel |
| VPNConnect | WireGuard/OpenVPN connectivity |
Social engineering and phishing tools.
| Payload | Description |
|---|---|
| CoffeeShopAttack | Coffee shop credential harvesting scenario |
| FakeUpdate | Fake software update portal |
| NullSecDeface | Custom web page injection |
| NullSecPortal | NullSec-branded captive portal |
| PortalMaster | Advanced portal template management |
The most comprehensive stealth suite for any Pineapple payload collection.
| Payload | Description |
|---|---|
| GhostNetwork | Invisible C2 channel using null SSID |
| Honeypot | Decoy AP with attacker logging |
| LogWiper | Secure log wiping (3-pass overwrite) |
| Mimic | Clone and impersonate legitimate APs |
| Phantom | Appear/disappear on command |
| Poltergeist | Intermittent interference causing confusion |
| Specter | Long-duration low-profile surveillance |
| TrafficMask | Disguise Pineapple as normal device (7 profiles) |
| Wraith | Channel-hopping stealth operations |
System management and configuration tools.
| Payload | Description |
|---|---|
| BootOptimizer | Optimize Pineapple boot performance |
| FirewallManager | Manage iptables rules from Pager UI |
| MACChanger | Change MAC addresses (random/specific/vendor) |
| NullSecConfig | NullSec Suite configuration management |
| PackageManager | Manage opkg packages from Pager |
| RangeExtender | Extend WiFi range with repeater mode |
| ScheduleTask | Cron-based payload scheduling |
| SpeedTest | Internet connection speed testing |
| SystemInfo | Comprehensive system information display |
| WaveRider | Channel-hopping target pursuit |
| WordlistManager | Wordlist management for cracking |
| ChannelCongestion | Analyzes WiFi channel congestion, scores each channel, recommends optimal operating channel |
| HeartbeatMonitor | Continuous health monitoring for long engagements โ alerts on CPU, memory, temp, interface degradation |
Defensive WiFi security monitoring and audit tools.
| Payload | Description |
|---|---|
| WiFiGuard | Continuous WiFi security monitor โ detects rogue APs, evil twins, deauth attacks |
| ComplianceAuditor | Audits WiFi networks against security best practices (WPA3, WEP, open) |
| RogueDetector | Hunts for rogue APs, evil twins, and unauthorized SSIDs |
| SignalMapper | Multi-point WiFi signal strength mapper for coverage analysis |
| AuditReporter | Generates professional WiFi security audit reports with risk scoring |
| RogueUSBGuard | Monitors USB ports for unauthorized device insertions โ defends Pineapple from BadUSB/implants |
| DeauthForensics | Captures deauth frames and fingerprints attacker tools (aireplay, mdk3/4, bully, etc.) |
git clone https://github.com/bad-antics/nullsec-pineapple-suite
cd nullsec-pineapple-suite
./install.shssh root@172.16.52.1
git clone https://github.com/bad-antics/nullsec-pineapple-suite /tmp/ns
cp -r /tmp/ns/payloads/*/* /root/payloads/user/nullsec/
cp /tmp/ns/lib/* /root/payloads/library/# On your computer
git clone https://github.com/bad-antics/nullsec-pineapple-suite
# Copy to USB drive, plug into Pineapple, then:
cp -r /mnt/usb/nullsec-pineapple-suite/payloads/*/* /root/payloads/user/nullsec/- WiFi Pineapple Pager (firmware 1.0+)
- External WiFi adapter (for monitor mode payloads)
aircrack-ngsuite (pre-installed on Pager)- Optional:
nmap,hcxdumptool,reaver(install via PackageManager payload)
Dashboard โ Payloads โ User โ nullsec โ Select & Run
- Run a Recon payload first (QuickScan, WiFiAudit)
- Select a target from scan results
- Run Attack/Capture payloads โ target info auto-injected!
Handshake Capture:
QuickScan โ HandshakeHunter โ WPACracker โ CloudExfil
Full Engagement:
WiFiAudit โ EvilTwin โ CredSniffer โ DataVacuum โ LootSync
Stealth Recon:
TrafficMask โ StealthRecon โ HiddenNetFinder โ PasspointScanner
nullsec-pineapple-suite/
โโโ payloads/
โ โโโ alerts/ # ๐จ 7 monitoring & alerting payloads
โ โโโ attack/ # โ๏ธ 16 offensive payloads
โ โโโ automation/ # ๐ค 4 automated attack chains
โ โโโ capture/ # ๐ 6 credential/handshake capture
โ โโโ exfiltration/ # ๐ค 4 data extraction tools
โ โโโ games/ # ๐ฎ 3 entertainment payloads
โ โโโ interception/ # ๐ต๏ธ 5 MITM/traffic interception
โ โโโ pranks/ # ๐ช 5 harmless WiFi pranks
โ โโโ recon/ # ๐ 18 reconnaissance payloads
โ โโโ remote/ # ๐ 4 remote access tools
โ โโโ social/ # ๐ญ 5 social engineering
โ โโโ stealth/ # ๐ป 9 stealth operations
โ โโโ utility/ # ๐ง 13 system management tools
โ โโโ blue-team/ # ๐ก๏ธ 7 defensive security tools
โโโ lib/ # Core libraries & helpers
โโโ theme/ # NullSec Pager theme
โโโ install.sh # One-click installer
โโโ LICENSE
โโโ README.md
| Project | Description |
|---|---|
| nullsec-pineapple-ops | WiFi Pineapple Ops Center โ web-based C2 dashboard |
| nullsec-linux | Security-focused Linux distro with 140+ tools |
| nullsec-flipper-suite | Flipper Zero payloads, animations & tools |
| nullsec-exploit | Exploit development framework |
| marshall | NullSec Privacy Browser |
Contributions welcome! See CONTRIBUTING.md for guidelines.
- Fork the repo
- Create your payload in the appropriate category
- Follow the payload template
- Submit a Pull Request
For authorized penetration testing and educational purposes ONLY.
- โ Do NOT use without explicit written permission
- โ Unauthorized network access is ILLEGAL
- โ Get written authorization before any testing
- โ Use only in controlled lab environments or with permission
- โ You are solely responsible for your actions
The authors assume no liability for misuse of these tools.
| Metric | Value |
|---|---|
| Total Payloads | 106 |
| Categories | 14 |
| Largest Category | Recon (18) |
| Average Payload Size | ~150 lines |
| Platform | WiFi Pineapple Pager |
| Last Updated | March 2026 |
MIT License โ See LICENSE for details.
NullSec โ 106 ways to own the airwaves ๐
github.com/bad-antics