Keyspace List for WPA on Default Routers - Printable Version +- hashcat Forum (https://hashcat.net/forum) +-- Forum: Misc (https://hashcat.net/forum/forum-15.html) +--- Forum: User Contributions (https://hashcat.net/forum/forum-25.html) +--- Thread: Keyspace List for WPA on Default Routers (/thread-6170.html) |
RE: Keyspace List for WPA on Default Routers - drsnooker - 06-28-2020 I've read the whole thread, much of it is over my head. I figured I'd start with the programming as that I understand, and the piece together the rest of the puzzle slowly. When Zerbea started talking SHA1, I got lost and went back to learning C++. HAHAHA Was Fancy's seed correct for NVG589? He made a lot of changes after that with all the int128 math... The NVG599 seed seems much easier (based on inverting all that bit shifting) I'd like to understand how to derive the seed, so I can take a stab at 5268. I've plotted all the keys for all the PSK and they form a pretty straight line. I figured the slope was the seed, but that didn't seem to work out. Still too granular. RE: Keyspace List for WPA on Default Routers - devilsadvocate - 06-28-2020 (06-27-2020, 08:53 PM)fart-box Wrote:Quote:A book can't possibly be 37^11 (times 13 characters), that's probably more storage than atoms in the universe! Just curious, have you tried compressing all of those wordlists, compressed into a zip or gzip file, and then loading/using them with Hashcat 6? I haven't tested this latest feature of Hashcat 6, the ability to use wordlists in a zip of gzip file, but maybe with this latest feature, the amount of required disk space can be reduced by quite a bit. Plain text files usually compress well, so this might be worth checking. RE: Keyspace List for WPA on Default Routers - wckd1 - 07-02-2020 Hi can anyone help me with the "Lower Alpha Keyspace Reducer" I tried cl command to compile after installing Windows 7 and 10 SDK and using the command prompt in the folder. But keep getting "'cl' is not recognized as an internal or external command" and i tried using g++ in linux using "g++ la.cpp -ola" but that just made a 31kb file that i cant open so unsure how to make the wordlist program work. I can run the files to make the words but want them output to .txt so i can use in hashcat. Any help appreciated i will carry on finding topics on this but cant find much of videos on how to compile .cpp to wordlist. RE: Keyspace List for WPA on Default Routers - drsnooker - 07-02-2020 (07-02-2020, 03:15 PM)wckd1 Wrote: Any help appreciated i will carry on finding topics on this but cant find much of videos on how to compile .cpp to wordlist. Hmmm, I only use Windows 10 (dos command), but in it had much luck with the TDM-gcc compiler. gcc filename.c executable <options> >> outputfile.txt RE: Keyspace List for WPA on Default Routers - wckd1 - 07-02-2020 (07-02-2020, 04:34 PM)drsnooker Wrote:(07-02-2020, 03:15 PM)wckd1 Wrote: Any help appreciated i will carry on finding topics on this but cant find much of videos on how to compile .cpp to wordlist. I tried this but got alot of errors like "undefined reference to `std::ostream::operator<<(std::ostream& (*)(std::ostream&))'" can you please make the wordlist and upload to mega. https://github.com/wpatoolkit/Lower-Alpha-Keyspace-Reducer RE: Keyspace List for WPA on Default Routers - philsmd - 07-02-2020 why don't you just simple use the .exe file within that repo (yeah, I agree it's very bad to put executable files into source code repositories, but maybe this is a proof that users really have a hard time to compile simple files and even fail to see the .exe files). The la.exe is listed there: https://github.com/wpatoolkit/Lower-Alpha-Keyspace-Reducer The direct link is: https://github.com/wpatoolkit/Lower-Alpha-Keyspace-Reducer/raw/master/la.exe I have no clue what this program does and why you would need this. I think this is getting really off-topic and you should ask questions like this for a 3rd party tool on the pages where you find these tools. This has nothing to do with hashcat. Normally you would just use "Visual Studio" and the Console Application options to compile .c or .cpp source code on windows. This is for sure not that easy if you have no clue how to create a project in visual studio and how to configure this project... but there are thousands of tutorials/guides/resources out there that explain how to compile some easy console applications on windows with visual studio or similar software. Any reason why you do not use la.exe from the repository directly ? RE: Keyspace List for WPA on Default Routers - drsnooker - 07-08-2020 Looks like ATT has been using a BGW210-700 recently with a similar ESSID as the others. Do we know anything about that default password? From ebay sales it looks like the default password look similar to those of the NVG599 and uses the same 37 characterset. RE: Keyspace List for WPA on Default Routers - drsnooker - 07-18-2020 (06-28-2020, 09:07 PM)fart-box Wrote: It is, because it only has two books in the stack, and inverting and bit shifting is a waste of time, in my opinion. Thanks Fart-Box and this is where I get stuck. How do I determine that divisor? key1/divisor=seed1 key2/divisor=seed2 etc. The response surface isn't smooth, so I cannot determine it from pure math. I can determine a divisor that works for any two keys, but then it doesn't work for the third, let alone the 60th. Another clue please! RE: Keyspace List for WPA on Default Routers - frizz - 07-29-2020 (07-08-2020, 05:17 PM)drsnooker Wrote: Looks like ATT has been using a BGW210-700 recently with a similar ESSID as the others. Do we know anything about that default password? Signed up just to share my experience. I was able to generate the correct key for BGW210-700 using the 599 and pipe it through hashcat and a GTX 1080. Worked on multiple devices, average time is ~90 mins at ~350-400 kH/s. I didn't think these were crackable until doing research, finding this thread and other resources. I have been able to crack 100% of the ATT******* networks I've found which is blowing my mind a little. RE: Keyspace List for WPA on Default Routers - drsnooker - 08-01-2020 Thanks Frizz, sadly I've struck out on 5 ATT****** caps, I've extended the pskracker algorithm to 8*INTMAX giving about 160Gb files that I can crank through overnight on a 1080ti, which as Fart sad means the divider is actually wrong so didn't get lucky. |