The project developed during a hackathon aimed at locating WiFi access points in real time using:
- Network sniffing,
- Distance estimation based on signal strength,
- Map visualization in a Flutter application, and finding the exact points
The original Dataset we were given was of the following format, we used the MAC address as a unique identifier of the network. Issues:
- Frequently in the dataset, the same mac address at the same longitude and latitude, emits two signals, with different percentages, resulting in different distances, sometimes resulting in a difference of 10-100m
{
"SSID": "Freebox-D4E",
"BSSID": "58:ef:68:cd:d4:ef",
"signal_dBm": -61,
"signal_percent": 57,
"latitude": 48.8566,
"longitude": 2.3522,
"timestamp": "2025-04-06T14:34:21"
}Here's, how we looked into retrieving the distance we used the FSPL (Free Space Path Loss) model : where :
- 𝑃em ≈ 23dBm
- 𝑃rec : signal mesuré (ex: -65 dBm)
- f=2400 MHz (WiFi 2.4 GHz)
$d=10^{(Pem − Prec + 27.55−20⋅log(10))/20}$
In theory this worked in python, Initially, we got huge difference in the radius/distance of the device from the hosts, that were really bizarre, resulting in the following:
The hotspot should be located in the intersection of the circles, as given by the distance, we thought about adding a meter margin to account for attenuation, but this was way to much, after tweaking the formula, and renormalizing the signal strength, as we figured the dataset, had issues, we finally ended up with the following:
Notice:
- As discussed, it has to be on the intersection of the circles, but we can at some point remove other circles, and associate it to noise in the dataset.
- As well as removing noise, there isn't a clear intersection, in this case, we give a margin to the circles distance, and find the intersection, as this could be the result of minus obstructions, or loss due to noise as we are converting from percentage to dBm to meters.
Here's what we were given for the Hackathon.
And here is the result after sniffing using a python script (you can find the scripts in previous commits if you want)
NDK with JNI/FFI
- Use the
pcapcrate inside a Rust library. - Build that Rust lib for Android using
cargo-ndkor manually withcargo build --target aarch64-linux-android. - Expose a simple C-compatible API using
#[no_mangle] extern "C"to communicate with Android Java/Kotlin or Flutter (via FFI).
with this you can integrate a rust script into your flutter project and get the following result screenshot
I will use pcap but keep in mind your android must be rooted Here's an example of pcap in action:
#[no_mangle]
pub extern "C" fn start_scan() {
std::thread::spawn(|| {
let mut cap = pcap::Capture::from_device("wlan0").unwrap().open().unwrap();
while let Ok(packet) = cap.next() {
println!("Sniffed {:?}", packet);
}
});
}Keep in mind, since we are working on android devices, that you need to pack libpcap.so into the android device in order to gain access to pcap.
after some reasearch, eBTF seems relaly adapted to this project. I will use pcap and then try and add an eBTF implementation
Install cargo-ndk (if not already):
cargo install cargo-ndkAnd clone the repo ;)
Also make sure to install the target 'aarch64-linux-android' with cargo so it runs and make sure to run on android.
Then build for Android targets:
cargo ndk -t arm64-v8a -o ../android/app/src/main/jniLibs build --releaseThis will place a .so file in: android/app/src/main/jniLibs/arm64-v8a/librust_backend.so
For testing on PC you need to install the pcap software, and for rust to be able to recognize it download the SDK from npcap Extract it into a folder and tell the compiler where to look for it