Search Results
|
Post |
Author
[desc]
|
Forum |
Replies |
Views |
Posted |
|
|
Thread: PMKID Generates Wrong ESSID And Password From Hash
Post: RE: PMKID Generates Wrong ESSID And Password From ...
This is very difficult to answer, because your question is very imprecise.
A PMKID is transmitted by the access point (ap) or by a client.
There might be something wrong in your work flow. To g... |
|
ZerBea |
hashcat
|
10 |
3,630 |
06-09-2019, 10:49 AM |
|
|
Thread: PMKID Generates Wrong ESSID And Password From Hash
Post: RE: PMKID Generates Wrong ESSID And Password From ...
Yes you are quite right there, by default, hcxdumptool attacks everything in range.
You can either set a target (by filter option), or remove not wanted hashes by hand (PMKID hash file) or by wlanhcx... |
|
ZerBea |
hashcat
|
10 |
3,630 |
06-09-2019, 06:51 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
ASUS AC51:
ID 0b05:17d1 ASUSTek Computer, Inc. AC51 802.11a/b/g/n/ac Wireless Adapter [Mediatek MT7610U]
$ hcxdumptool -I
wlan interfaces:
0c9d92b486ca wlp0s20f0u1 (mt76x0u)
$ hcxdumptool -i ... |
|
ZerBea |
User Contributions
|
648 |
487,306 |
06-09-2019, 07:45 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Edimax EW-7811UAC
ID 7392:a812 Edimax Technology Co., Ltd
$ hcxdumptool -I
wlan interfaces:
74da380645e7 wlp0s20f0u1 (rtl88xxau)
$ hcxdumptool -i wlp0s20f0u1 -C
initialization...
available ... |
|
ZerBea |
User Contributions
|
648 |
487,306 |
06-09-2019, 07:49 PM |
|
|
Thread: PMKID Generates Wrong ESSID And Password From Hash
Post: RE: PMKID Generates Wrong ESSID And Password From ...
1. create a filterlist.txt and add the target MAC: 112233445566
2. use options --filterlist=filterlist.txt --filtermode=2
--filterlist= : mac filter list
... |
|
ZerBea |
hashcat
|
10 |
3,630 |
06-09-2019, 08:08 PM |
|
|
Thread: PMKID Generates Wrong ESSID And Password From Hash
Post: RE: PMKID Generates Wrong ESSID And Password From ...
Yes, that is the MAC of the access point. |
|
ZerBea |
hashcat
|
10 |
3,630 |
06-09-2019, 09:34 PM |
|
|
Thread: PMKID Generates Wrong ESSID And Password From Hash
Post: RE: PMKID Generates Wrong ESSID And Password From ...
No problem, you're welcome. |
|
ZerBea |
hashcat
|
10 |
3,630 |
06-09-2019, 10:29 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
No, hcxdumptool running own monitor mode.
Just stop all tasks which take access to the device and than run hcxdumptool. If you forgot one task, hcxdumptool will tell you that.
airmon-ng running iw. ... |
|
ZerBea |
User Contributions
|
648 |
487,306 |
06-09-2019, 10:36 PM |
|
|
Thread: PMKID Generates Wrong ESSID And Password From Hash
Post: RE: PMKID Generates Wrong ESSID And Password From ...
I think, I got a solution for your "problem". By latest hcxtools commit
https://github.com/ZerBea/hcxtools/commit/358264200bb60b1f5196b4a58429e18da0a8fd0a
I added a new option to hcxpcaptool to filt... |
|
ZerBea |
hashcat
|
10 |
3,630 |
06-10-2019, 03:46 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Is the interface detected by hcxdumptool?
$ hcxdumptool -I
What is the output of:
$ hcxdumptool -i -C
and
$ iw dev
To set monitor mode manually:
$ ip link set down
$ iw dev set type mon... |
|
ZerBea |
User Contributions
|
648 |
487,306 |
06-10-2019, 09:47 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Ok, does this work?
hcxdumptool -i wlan0 -o test.pcapng --enable_status=15 --ignore_warning
Something within your installation is misconfigured or it blocks the device.
Normally it looks like t... |
|
ZerBea |
User Contributions
|
648 |
487,306 |
06-12-2019, 01:15 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Ok, Raspbian is a good choice! Easy to install and easy to use. Fine that it works, at least.
Now we know what prevent full access to the interface:
wpa_supplicant is running... |
|
ZerBea |
User Contributions
|
648 |
487,306 |
06-12-2019, 05:44 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
That can be done by systemctl:
systemctl start
systemctl stop
systemctl status
systemctl enable
systemctl disable
Some examples:
Get information about all running services:
$ systemctl | ... |
|
ZerBea |
User Contributions
|
648 |
487,306 |
06-12-2019, 07:22 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Great. You did it! Next step is to create a database (collect data from -E -I and hashes) and I'm sure, your hit rate will increase:
The environment is not magic. It is a simple loop. Start at step... |
|
ZerBea |
User Contributions
|
648 |
487,306 |
06-12-2019, 09:43 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
To answer your question - that will help you:
https://raspberrypi.stackexchange.com/questions/85599/how-to-start-stop-wpa-supplicant-on-default-raspbian
BTW:
"Newbie distros" came pre-configured... |
|
ZerBea |
User Contributions
|
648 |
487,306 |
06-15-2019, 09:39 AM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
For a rspberry pi capturing system:
$ pacman -Syu
$ pacman -S make gcc watchdog openssl rsync fake-hwclock zlib crda
$ pacman -Rs netctl wpa_supplicant
Thats all.
first cmd will update packa... |
|
ZerBea |
User Contributions
|
648 |
487,306 |
06-15-2019, 12:16 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
From git:
make install
or from Arch default package list
$ pacman -S hcxtools hcxdumptool
search for hcxtools and/or hcxdumptool here:
https://archlinuxarm.org/packages |
|
ZerBea |
User Contributions
|
648 |
487,306 |
06-15-2019, 12:21 PM |
|
|
Thread: 4-Way Handshake vs PMKID
Post: RE: 4-Way Handshake vs PMKID
@kryplasemv
every client will receive its own (calculated) PMKID from the access point because the MAC addresses are part of the calculation
PMKID = HMAC-SHA1-128(PMK, "PMK Name" | MAC_AP | MAC_STA)... |
|
ZerBea |
hashcat
|
14 |
9,433 |
06-17-2019, 07:36 AM |
|
|
Thread: 4-Way Handshake vs PMKID
Post: RE: 4-Way Handshake vs PMKID
@Mem5
The construction (PBKDF2 calculation) of the plainmasterkey (PMK) is for both hash modes (2500 and 16800) the same and take long period of CPU/GPU time. This first part is a really slow part.
... |
|
ZerBea |
hashcat
|
14 |
9,433 |
06-17-2019, 07:56 AM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Thanks.
You're right, the wordlists are in the dicts section:
https://wpa-sec.stanev.org/?dicts
Another good (real and not so big) wordlist is here:
https://3wifi.stascorp.com/3wifi-dic-2019-0... |
|
ZerBea |
User Contributions
|
648 |
487,306 |
06-21-2019, 11:43 AM |