Search Results
|
Post |
Author |
Forum |
Replies |
Views |
Posted
[desc]
|
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Well, K*A*L*I isn't a distribution, which is easy to use. Why do I tell this first? Because of this error message:
"could not create dumpfile Dump/wifidump_2020_01_08.pcapng"
You simply haven't wr... |
|
ZerBea |
User Contributions
|
648 |
487,212 |
01-08-2020, 10:01 AM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
hcxhashtool: added hccap output
All filteroptions (except essid groups - old hascat doesn't support reuse PBKDF2) are working on hccap, now.
workflow:
hcxdumptool (-o x.pcapng) -> hcxpcapngtool (... |
|
ZerBea |
User Contributions
|
648 |
487,212 |
01-08-2020, 11:34 AM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
This are the available options. If there is need for more, please let me know.
Decided to add filter by MAC CLIENT, too, because hcxdumptool is able to request the original MAC of a CLIENT.
Code:... |
|
ZerBea |
User Contributions
|
648 |
487,212 |
01-08-2020, 06:26 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
No, there will be no "all in one tool". The workflow is:
hcxdumptool -> hcxpcapngtool -> hcxhashtool -> (optional hcxpsktool) -> hashcat
Detection of handshakes and PMKIDs is really complex and I ... |
|
ZerBea |
User Contributions
|
648 |
487,212 |
01-08-2020, 09:52 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
"Oh I see I have to chain them."
Yes!
The new has format (2200x) is plain HEX-ASCII. That means you will get a read able hashline (not binary hccap or hccapx).
Depending on the WiFi related filte... |
|
ZerBea |
User Contributions
|
648 |
487,212 |
01-09-2020, 11:38 AM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Most of the features you requested are already build in. The rest can be done by bash commands.
Example:
Netgear123:WPA*01*2f5c05d6ad2070743...etc or if the AP name is bad then "Hex...:WPA*01*2f5... |
|
ZerBea |
User Contributions
|
648 |
487,212 |
01-11-2020, 09:09 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
The major advantage of the new hashline is that you can use bash tools on it, because it isn't any longer binary. Playing around with this bash tools you can do nearly everything (grep, sort, cut, cat... |
|
ZerBea |
User Contributions
|
648 |
487,212 |
01-11-2020, 11:50 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
We are still running several tests, to get in shape for hashcat's new hashline. That included a complete rewrite (refactoring) from scratch. Nearly everything is new and improved. Also we are missing ... |
|
ZerBea |
User Contributions
|
648 |
487,212 |
01-12-2020, 11:45 AM |
|
|
Thread: How to view SSID of cracked PMKID (16800) PCAP?
Post: RE: How to view SSID of cracked PMKID (16800) PCAP...
Are you running an older version of hashcat?
$ hashcat -V
v5.1.0-1569-g74c1bf81+
potfile: PMK * ESSID : PSK
Code:
--
5b13d4babb3714ccc62c9f71864bc984efd6a55f237c7a87fc2151e1ca658a9d*ed4871624... |
|
ZerBea |
hashcat
|
6 |
2,255 |
01-12-2020, 12:07 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
In that case, just pipe it:
https://en.wikipedia.org/wiki/Pipeline_(Unix)
$ hashcat --stdout -r rule wordlist
passwor1
passwor2
passwor3
passwor4
wordlist:
passwor
rule
$1
$2
$3
$4
... |
|
ZerBea |
User Contributions
|
648 |
487,212 |
01-12-2020, 06:02 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
That depends on the version of the tools:
hcxdumptool >= v 6 require hcxpcapngtool --nmea to convert the NMEA sentences or hcxpcaptool --nmea. I dropped that xml conversion (and gpsd), because GPSB... |
|
ZerBea |
User Contributions
|
648 |
487,212 |
01-12-2020, 09:29 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Mem5 Wrote: (01-12-2020, 12:43 AM)
--
Wondering if message pairs are still included, and easy to find/decode, in the new format?
M2M3 or M3M4 are good evidence that the password was correct.
--
Fo... |
|
ZerBea |
User Contributions
|
648 |
487,212 |
01-12-2020, 09:33 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Depends on the options, you used:
--use_gpsd -> if gpsd freeze, hcxdumptool will freeze, too
better choice:
---use_gps_device=your_device
make sure your device is working and has a fix:
$ ca... |
|
ZerBea |
User Contributions
|
648 |
487,212 |
01-13-2020, 05:10 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Ok, now we know the cause: ath9k_htc driver
I have a TPL-LINK TL-WN722N V1 for testing purpose and it shows the same "ugly" behavior.
$ hcxdumptool -I
wlan interfaces:
f81a6718410f wlp3s0f0u2 (at... |
|
ZerBea |
User Contributions
|
648 |
487,212 |
01-13-2020, 05:43 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
That isn't a dmesg log while hcxdumptool is running. Your log is showing NetworkManager access to the device.
As you can see from my dmesg log:
Jan 13 16:48:10.888795 tux1 kernel: kernel BUG at mm... |
|
ZerBea |
User Contributions
|
648 |
487,212 |
01-13-2020, 05:59 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
hashmode is independent from hcxdumptool. You can use hcxpcangtool on that pcapng files to convert them.
I'm still hunting for that kernel bug, like other coders, too:
https://bugzilla.kernel.org/bu... |
|
ZerBea |
User Contributions
|
648 |
487,212 |
01-13-2020, 06:08 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
As of today, only mt76 and rt2800usb driver families are working without issues. |
|
ZerBea |
User Contributions
|
648 |
487,212 |
01-13-2020, 06:31 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
No, because Planar has an AR9271 chipset - as far as I know.
I have several WiFi adapters for testing purpose (different chipsets and of course, different drivers). Most of all I was impressed by m... |
|
ZerBea |
User Contributions
|
648 |
487,212 |
01-13-2020, 07:56 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Oh, I think that's a misunderstanding. I'm not talking about wardriving. I'm talking about "normal" laboratory conditions, running different WiFi adapters, router types, antennas and electronic measur... |
|
ZerBea |
User Contributions
|
648 |
487,212 |
01-13-2020, 09:20 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
taxil Wrote: (01-13-2020, 09:30 PM)
--
@ZerBea what is the fastest channel switching speed you recommend for capturing PMKID with hcxdumptool? Looking for a fast capture method with moving 20+ MPH.
-... |
|
ZerBea |
User Contributions
|
648 |
487,212 |
01-13-2020, 11:51 PM |