Search Results
|
Post |
Author
[desc]
|
Forum |
Replies |
Views |
Posted |
|
|
Thread: Archer dual band t4u v1 monitor mode
Post: RE: Archer dual band t4u v1 monitor mode
If the access point is hardened, search for weak clients.
Here is an example, of a weak client:
https://github.com/ZerBea/hcxtools/issues/112#issuecomment-532537154 |
|
ZerBea |
Hardware
|
5 |
3,391 |
09-23-2019, 11:40 PM |
|
|
Thread: PMKID question
Post: RE: PMKID question
We can take the PMKID from this frames (PBKDF2 hashcat hashmode 16800):
EAPOL M1 from access point (in this case we need one additional frame to get the ESSID: ASSOCIATIONREQUEST, REASSOCIATIONREQUES... |
|
ZerBea |
hashcat
|
4 |
1,698 |
09-25-2019, 07:50 AM |
|
|
Thread: PMKID question
Post: RE: PMKID question
Only superficially - I'm still wrestling with Diffie-Hellman. |
|
ZerBea |
hashcat
|
4 |
1,698 |
09-26-2019, 10:55 AM |
|
|
Thread: PMKID
Post: RE: PMKID
It is mandatory to request the PMKID from an access point (EAPOL M1) or to retrieve it from a client (reassociation request). |
|
ZerBea |
General Talk
|
2 |
1,510 |
10-04-2019, 05:14 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
No, there is no easy way to retrieve the WPS pin and nearly all up to date router models are hardened against pixie dust.
You can try hydra if you have access to the network:
https://github.com/van... |
|
ZerBea |
User Contributions
|
648 |
487,167 |
10-19-2019, 08:16 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Normally we wait up to 2 minutes to get a GPX fix. If we didn't get it, we deactivate GPS.
EDIT:
I pushed another update. Now we leave the GPS fix loop if we didn't receive a GPRMC sentence within... |
|
ZerBea |
User Contributions
|
648 |
487,167 |
10-31-2019, 11:22 AM |
|
|
Thread: hccapx file with more handshakes - exhausted
Post: RE: hccapx file with more handshakes - exhausted
There is work in progress on wifite2:
https://github.com/kimocoder/wifite2/issues/1
as well as on aircrack-ng:
https://github.com/aircrack-ng/aircrack-ng/issues/2079
https://github.com/aircrack-... |
|
ZerBea |
hashcat
|
3 |
1,584 |
11-05-2019, 09:08 AM |
|
|
Thread: Exporting hcxdump file by ESSID
Post: RE: Exporting hcxdump file by ESSID
Step one: convert pcapng to hccapx
$ hcxpcaptool -o test.hccapx capture.pcpng
Step two: get desired hashes
$ wlanhcx2ssid -i test.hccapx -E ME
should do that, as well as
$ hcxessidtool --hccap... |
|
ZerBea |
hashcat
|
2 |
1,280 |
11-09-2019, 02:14 PM |
|
|
Thread: Handshake timestamps do not match packets no.
Post: RE: Handshake timestamps do not match packets no.
You're missing nothing. Aircrack is running into several issues:
https://github.com/aircrack-ng/aircrack-ng/issues/2067
https://github.com/aircrack-ng/aircrack-ng/issues/1958
and the complete hands... |
|
ZerBea |
General Talk
|
3 |
1,481 |
12-15-2019, 06:18 PM |
|
|
Thread: Handshake timestamps do not match packets no.
Post: RE: Handshake timestamps do not match packets no.
cap2hccapx, hcxpcaptool and hcxpcapng tool calculating EAPOL time values (count time between EAPOL messages), because you can't trust the RC in case of a packet loss (therefore we have nonce-error-cor... |
|
ZerBea |
General Talk
|
3 |
1,481 |
12-17-2019, 09:24 AM |
|
|
Thread: ATTENTION! OpenCL kernel self-test failed.
Post: RE: ATTENTION! OpenCL kernel self-test failed.
@ philsmd
latest tests of 22000 - WPA-PBKDF2-PMKID+EAPOL are very impressive. 2200x offers many advantages. |
|
ZerBea |
hashcat
|
31 |
12,818 |
12-22-2019, 12:44 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Please try hcxdumptool v6.0.0 in combination with latest git head hcxpcapngtool.
hcxdumptool GPS options:
--use_gps_device= : use GPS device
... |
|
ZerBea |
User Contributions
|
648 |
487,167 |
12-27-2019, 08:13 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
I decided to add "raw" NMEA support, because I noticed that, if you use GPSD and GPSD hangs, hcxdumptool will hang too.
On the other side, NMEA sentences can be converted to every format, by GPSBabe... |
|
ZerBea |
User Contributions
|
648 |
487,167 |
12-27-2019, 11:04 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Nice to hear that.
Please try the new hasline, too (latest git head on all tools -option 22000):
hcxdumptool -> hcxpcangtool -o new.22000 -> hashcat -m 22000 new.22000 wordlist
It works like a cha... |
|
ZerBea |
User Contributions
|
648 |
487,167 |
12-28-2019, 01:14 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
It is not mandatory for hashcat and hcxtools/hcxdumptool.
Explained here:
https://wpa-sec.stanev.org/ |
|
ZerBea |
User Contributions
|
648 |
487,167 |
01-04-2020, 03:39 PM |
|
|
Thread: Speed comparison WPA/WPA2 (2500) vs WPA/WPA2 PMK (2501)
Post: RE: Speed comparison WPA/WPA2 (2500) vs WPA/WPA2 P...
You can't compare 2500 to 2501 and 16800 to 16801.
2500 and 16800 are hash modes to get a PSK, while 2501 and 16801 hash modes are used to verify a given(!) PMK.
BTW:
Both modes 250x and 1680x ar... |
|
ZerBea |
hashcat
|
9 |
4,600 |
01-06-2020, 02:34 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Old hashcat is very, very limited regarding WPA. Additional we can have several issues within the conversion process (e.g. handshake is outside default nonce-error-correction of hcxpcaptool).
You can... |
|
ZerBea |
User Contributions
|
648 |
487,167 |
01-06-2020, 10:11 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
hcxhashtool has now a build in test for PSK and/or PMK. To verify that you captured and converted the correct handshake do the following:
$ hcxpcapngtool -o test.22000 your_capfile_here.pcapng
$ hcx... |
|
ZerBea |
User Contributions
|
648 |
487,167 |
01-06-2020, 10:18 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Tested your example and it is working like a charm. The hccap file is ok!
This is the chain:
Step 1 convert hccap to hccapx (I'm not able to run ancient versions of programs, here)
$ wlanhc2hcx... |
|
ZerBea |
User Contributions
|
648 |
487,167 |
01-07-2020, 11:10 AM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
I suggest you to use latest hcxpcapngtool. It doesn't make nonce-error-corrections and provide only basic functions for conversion to old formats.
Pay attention: The cap file is synthetic and doesn... |
|
ZerBea |
User Contributions
|
648 |
487,167 |
01-07-2020, 11:40 AM |