3WiFi: open database of Wi-Fi Access Points passwords
Router Scan program scans the networks and collects information about the routers, including the passwords for Wi-Fi networks.
To find out the password from the neighboring Wi-Fi, you need to scan the entire IP range of your neighbor's Internet provider. If you do not know what is neighbor’s Internet service provider, you need to scan the IP range of your region (state). This needs much time, but the result is not guaranteed, because the neighbor router can be protected well and even if you scan it, you will not be able to find out the password; It can also be behind NAT (a technology that allows one IP to be used by several users at once) in this case we can not even scan its router.
Members of the Router Scan community share the results of scanning with the 3WiFi service, which places them on a convenient map. Therefore, online you can find information about:
- wireless access points (Wi-Fi) in your area
- network names (ESSID)
- MAC address of the networks (BSSID)
- Wi-Fi network password
Usage of 3WiFi is free of any charge. In order to see passwords of Access Points you must log on to the site. For this, you do not need to register.
Limited guest account (only for members of the Router Scan community):
- Login: antichat
- Password: antichat
Map of Wi-Fi networks
On the map, you can find passwords of Wi-Fi networks near you or anywhere in the world. You need to enter the address, alternatively, the name of the object. You will see available information about wireless access points. The data goes in the following order:
- date of adding to the database
- MAC Address
- network name
- network password
Search the Wi-Fi password database
This page is interface for Free Wireless Database, you can search for access points by:
- BSSID / MAC
- ESSID / Name
- Wi-Fi Key
- WPS PIN
In addition, you can use wildcard characters.
For example, searching by BSSID 14:D6:4D:37:49:22
Search by BSSID using wildcard character 14:D6:4D:37:49:*
The asterisk (*) replaces any character and can stand anywhere in the search string.
Advantages of searching by BSSID (MAC address) is that usually devices have a unique BSSID, therefore and you will find exactly the access point that you are interested in.
Not everyone knows how to recognize BSSID from neighboring Wi-Fi (although it can be done directly in Windows with WirelessNetView and in Linux with numerous programs, for example, Airodump-ng), so you can search for it by the network name (ESSID).
An example of searching for networks named ‘pattaya’:
As you can see, the case of letters is not important.
Wildcard characters are supported: □ is any character, ◯ is any character set (any string). Example:
You can also search for access points using the Wi-Fi password (the network key) and the WPS PIN code; this can be useful for research purposes.
Additional 3WiFi tools
Search IP Ranges by geographical location
This tool allows you to search IP ranges by the physical (geographical) location. The comparison is based on the collected data from the geolocation providers.
Therefore, you enter the geographical coordinates, the radius of the search, and get:
- IP Ranges
- Network name
This is a very useful tool for network researchers who want to scan IP over certain geographical coordinates.
The exact model of the device by MAC address
This tool allows you to determine router manufacturer and model by its BSSID / MAC address. The comparison is based on the data collected by Router Scan.
Note that unlike many similar services (like this), not just information about the manufacturer is displayed, detailed information about the model is displayed, and there is probabilistic information about the firmware of devices.
WPS PIN Generator
A very useful tool if you want to connect to Wi-Fi when you do not know the password from this network, but the access point supports WPS. This service will help you guess the WPS pin based on the MAC address of the AP.
There are two varieties of the WPS PIN generator:
- Offline WPS PIN Companion from Router Scan (Uses known algorithms, does not use database).
- Online 3WiFi WPS PIN generator (Takes advantage of collected data in the database, detects linear sequences, static PIN codes, and other algorithms).
How to get 3WiFi to your computer
You cannot download the 3WiFi database. Attempts to pump out the database will lead to the ban of your account and the ban of all invited by you and further along the chain. No merit will not remove the ban.
However, you can organize your own 3WiFi on your computer or on your server, since the Source code for 3WiFi is hosted on GitHub: https://github.com/binarymaster/3WiFi
Therefore, you need a web server, and you also have to scan the ranges you need to have your search information in your 3WiFi database.
Steps for installing 3WiFi:
- Copy all required files to your /www directory
- Create database (execute 3wifi.sql to create tables)
- Copy config.php-distr to config.php
- Edit config.php (DB_SERV, DB_NAME, DB_USER, DB_PASS etc)
- (optional) Turn on memory tables (in the config.php define TRY_USE_MEMORY_TABLES as true)
- (optional) Use import.free.php once to import old format database
- Start all background daemons:
# Upload routine loads data into database
php -f 3wifid.php uploads
# Finalize routine prepares tasks for finalization
php -f 3wifid.php finalize
# Geolocate routine locates new added BSSIDs on map
php -f 3wifid.php geolocate
# Stats routine caches statistics (use only when stats caching enabled)
php -f 3wifid.php stats
# Memory table manager (use only with memory tables enabled)
php -f 3wifid.php memory
# Recheck not found BSSIDs in the database
php -f 3wifid.php recheck
Before running the daemons, make sure that php-cli interpreter is accessible from your directory.
3WiFi is a free database of access points (open source under the Apache 2.0 license) developed by the Router Scan community with the participation of Stas'M Corp.
It stores the access point data that was received as a result scans performed by Router Scan. All data is downloaded to the database voluntarily – either through the website, or directly from Router Scan.
The 3WiFi database is used by the Router Scan community to search for access points, to investigate new vulnerabilities in wireless routers, to detect previously unknown WPS pin-code generation algorithms, to detect routers' mass destruction hotspots (such as substituting SSID name, DNS servers, etc.) , and for many other purposes.
Also 3WiFi base is used by Stas'M Corp. for monitoring, detecting and correcting errors and inaccuracies in real-time scanning results.
The 3WiFi website provides unique services that can be useful to community members:
- View access points on the map
- Search for access points by BSSID or name
- Search for IP ranges by location
- Determine the device model by MAC address
- Statistics on various parameters of wireless networks
The address of the official 3WiFi database: http://3wifi.stascorp.com/
- Automatic search the database of hacked access points (83.4%)
- How to hack Wi-Fi in Windows (79.1%)
- How to find out the exact model of a router (wireless access point) (61.4%)
- How to detect all Wi-Fi devices in the area? (54.2%)
- How to hack routers in Windows (Router Scan by Stas’M manual) (53.5%)
- How to find out if a site is behind CloudFlare or not (RANDOM - 39.7%)