Search Results
|
Post |
Author
[desc]
|
Forum |
Replies |
Views |
Posted |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
You can't use the hc2500.pot in combination with -m 16800, because the output is completely different.
hc16800.pot should look like this:
PMKID*MAC_AP*MAC_STA*ESSID (in HEX):password
2582a8281bf9... |
|
ZerBea |
User Contributions
|
648 |
487,306 |
07-27-2018, 11:35 AM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Now problem, you're welcome.
But now, I could use a little help:
hcxdumptool use raw sockets. Now I noticed, that the responds are too slow to attack an AP successfully.
1. AP responds to our... |
|
ZerBea |
User Contributions
|
648 |
487,306 |
07-28-2018, 12:10 AM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
The next big issue is related to ATHEROS driver ath9k_htc:
ath9k_htc/htc_9271-1.4.0.fw
FCS is calculated in a wrong way on transmitted ack frames.
frame 1: ath9k_htc (the last two bytes are missi... |
|
ZerBea |
User Contributions
|
648 |
487,306 |
07-28-2018, 12:20 AM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
hcxtools 4.2.0 released (https://github.com/ZerBea/hcxtools)
-added full support for hashcat hashmodes 16800/16801
-many bug fixes
-default cap format now pcapng
-moved WiFi dump stuff to hcxdum... |
|
ZerBea |
User Contributions
|
648 |
487,306 |
08-03-2018, 02:35 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Latest update hcxtools (17 hours ago): https://github.com/ZerBea/hcxtools/commit/5d14941d6b5134aea89d9cb43458e858b3c808a5
Update hcxdumptool to 4.2.0: today or tomorrow, because I received many featu... |
|
ZerBea |
User Contributions
|
648 |
487,306 |
08-04-2018, 10:24 AM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
hcxdumptool 4.2.0 released read more about some of the new features here:
https://hashcat.net/forum/thread-7717-post-41427.html#pid41427
complete refactored:
-various new options
-measurement of... |
|
ZerBea |
User Contributions
|
648 |
487,306 |
08-04-2018, 06:56 PM |
|
|
Thread: New attack on WPA/WPA2 using PMKID
Post: RE: New attack on WPA/WPA using PMKID
Thanks for reporting this issue. I fixed it with the last commit.
We tried to use filterlist entries on the first outgoing broadcast packet. Since there are no incomming packets at this moment, we ru... |
|
ZerBea |
User Contributions
|
187 |
1,293,331 |
08-05-2018, 10:53 AM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Hi espfound.
Thanks for the congratulations.
a.
Nearly every wlanhcx2ssid option will increase speed of hashcat, because we reduce the hashes we will feed hashcat with.
But most of them will incre... |
|
ZerBea |
User Contributions
|
648 |
487,306 |
08-05-2018, 11:23 AM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
hcxdumptool will capture all the required informations and
hcxdumptool is able to detect all kinds of EAP authentications. If hashcat has a correspondending hashmode to recover the password, you can ... |
|
ZerBea |
User Contributions
|
648 |
487,306 |
08-05-2018, 02:45 PM |
|
|
Thread: New attack on WPA/WPA2 using PMKID
Post: RE: New attack on WPA/WPA2 using PMKID
If you want to use hcxdumptool to caputure wlan traffic, please note that your WiFi adapter must support this. Not all drivers support this. This is a list of chipsets, known as working "out of th... |
|
ZerBea |
User Contributions
|
187 |
1,293,331 |
08-06-2018, 07:15 AM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Small update hcxdumptool:
Now we use hardware handshake of the driver. ATHEROS chipset should work, now. |
|
ZerBea |
User Contributions
|
648 |
487,306 |
08-07-2018, 01:13 AM |
|
|
Thread: hcxpcaptool - output possible WPA/WPA2 plainmasterkey list
Post: RE: hcxpcaptool - output possible WPA/WPA2 plainma...
If you have a PMK and an ESSID, you can try to retrieve the PSK using hashmode 12000.
Read more here:
https://hashcat.net/forum/thread-6661-post-35843.html#pid35843 |
|
ZerBea |
General Talk
|
1 |
4,247 |
08-07-2018, 01:20 AM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
hcxtools and hcxdumptool moved to version 4.2.1
added communication between hcxdumptool and hcxpcaptool via pcapng option field
in SHB and EHB block:
SHB block: 62108 REPLAYCOUNT uint64_t
SHB bloc... |
|
ZerBea |
User Contributions
|
648 |
487,306 |
08-07-2018, 05:24 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Hi MadMeow.
First of all, thanks. I am very pleased about that.
1.
I'm not shure, how to handle the TL-WN722N. I noticed some issues in handling the FCS. You can read more about that here:
https:/... |
|
ZerBea |
User Contributions
|
648 |
487,306 |
08-08-2018, 12:19 AM |
|
|
Thread: New attack on WPA/WPA2 using PMKID
Post: RE: New attack on WPA/WPA2 using PMKID
Some statistics:
Session..........: hashcat
Status...........: Quit
Hash.Type........: WPA-PMKID-PBKDF2
Hash.Target......: 16800.txt
Time.Started.....: Wed Aug 8 12:16:43 2018 (10 secs)
Time.... |
|
ZerBea |
User Contributions
|
187 |
1,293,331 |
08-08-2018, 12:18 PM |
|
|
Thread: New attack on WPA/WPA2 using PMKID
Post: RE: New attack on WPA/WPA2 using PMKID
Limitations:
This attack will not work on dynamic calculated PMKs.
You can identify them in your hash file:
MAC_AP, MAC_STA and ESSID are the same, PMKID changed.
In that case an EAPOL 4/4 handsha... |
|
ZerBea |
User Contributions
|
187 |
1,293,331 |
08-08-2018, 12:23 PM |
|
|
Thread: New attack on WPA/WPA2 using PMKID
Post: RE: New attack on WPA/WPA2 using PMKID
And please do not wonder about "802.11q". We added this to the write-up, to see how many people simply copy from one another. So please, forgive us..... |
|
ZerBea |
User Contributions
|
187 |
1,293,331 |
08-08-2018, 12:29 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Pushed some updates: ATHEROS should work now, too:
Product:
TP-LINK TL-WN722N
$ uname -r
4.17.11-arch1
$ lsusb
Bus 005 Device 010: ID 0cf3:9271 Qualcomm Atheros Communications AR9271 802.1... |
|
ZerBea |
User Contributions
|
648 |
487,306 |
08-08-2018, 04:15 PM |
|
|
Thread: hcxdumptool status
Post: RE: hcxdumptool status
$ hcxdumptool -h
--enable_status= : enable status messages
bitmask:
1: EAPOL
... |
|
ZerBea |
hashcat
|
2 |
4,731 |
08-09-2018, 09:30 PM |
|
|
Thread: New attack on WPA/WPA2 using PMKID
Post: RE: New attack on WPA/WPA2 using PMKID
octf Wrote: (08-11-2018, 07:21 AM)
--
My testing area has lots of Netgear and TpLink routers. By using either hcxdumptool or wpa_supplicant, I was unable to capture a single PMKID. So the vulnerabi... |
|
ZerBea |
User Contributions
|
187 |
1,293,331 |
08-12-2018, 01:34 PM |