Search Results
|
Post |
Author
[desc]
|
Forum |
Replies |
Views |
Posted |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
linux-firmware installed?
Files list for linux-firmware:
usr/lib/firmware/mediatek/
usr/lib/firmware/mediatek/mt7610e.bin
usr/lib/firmware/mediatek/mt7610u.bin
usr/lib/firmware/mediatek/mt7615_... |
|
ZerBea |
User Contributions
|
648 |
487,081 |
02-08-2020, 02:55 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
This information is only available in an original(!) and uncleaned(!) dump file (cap/pcap/pcapng format).
A single BEACON and a single M1 (with PMKID) or a single message pair (M1M2, M2M3, M3M4 not ... |
|
ZerBea |
User Contributions
|
648 |
487,081 |
02-10-2020, 04:15 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
tshark can do this really good:
$ tshark -r test.pcapng.cap -T fields -e wps.device_name -e wps.serial_number
or (inclusive transmitter address and ESSID):
$ tshark -r test.pcapng.cap -T fields -e ... |
|
ZerBea |
User Contributions
|
648 |
487,081 |
02-11-2020, 08:01 AM |
|
|
Thread: cap to hccapx problem [Zero value timestamps detected]
Post: RE: cap to hccapx problem [Zero value timestamps d...
That isn't a cap2hccapx issue.
The timestamps are zeroed in your cap file. Additional you're missing some important frames (authentication, association, undirected proberequest frames).
Code:
--
... |
|
ZerBea |
hashcat
|
3 |
1,532 |
02-11-2020, 02:15 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
We are using a bitmask:
Code:
--
--enable_status= : enable real-time display (waterfall)
some messages are shown only once at the first occur... |
|
ZerBea |
User Contributions
|
648 |
487,081 |
02-11-2020, 02:17 PM |
|
|
Thread: cap to hccapx problem [Zero value timestamps detected]
Post: RE: cap to hccapx problem [Zero value timestamps d...
The PMKID attack is described here:
https://hashcat.net/forum/thread-7717.html
hashmode 22000 is available by git head of hashcat, here:
https://github.com/hashcat/hashcat
How can i get hashes... |
|
ZerBea |
hashcat
|
3 |
1,532 |
02-11-2020, 11:13 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
I'll do my very best.
BTW:
Feedback appreciated regarding this commit:
https://github.com/ZerBea/hcxdumptool/commit/6c98258c437b205810fd496d37495e2d48e02cc5
Target: AP with activated Managem... |
|
ZerBea |
User Contributions
|
648 |
487,081 |
02-12-2020, 01:25 PM |
|
|
Thread: Cap file convert to hccapx HELP
Post: RE: Cap file convert to hccapx HELP
Ok, thanks.
Please note that the hccapx format is now DEPRECATED
-> I know: hccapx is a dinosaur (R.i.P)
https://github.com/hashcat/hashcat/issues/1816 |
|
ZerBea |
hashcat
|
4 |
1,543 |
02-12-2020, 06:20 PM |
|
|
Thread: Cap file convert to hccapx HELP
Post: RE: Cap file convert to hccapx HELP
@Uraniumhazee
Here you told us, that you're using wifislax:
https://hashcat.net/forum/thread-8959-post-47563.html#pid47563
This is the forum of wifislax:
https://foro.seguridadwireless.net/
Maybe... |
|
ZerBea |
hashcat
|
4 |
1,543 |
02-12-2020, 07:09 PM |
|
|
Thread: Performance Difference PMKID vs HCCAPX?
Post: RE: Performance Difference PMKID vs HCCAPX?
Answered here:
https://hashcat.net/forum/thread-8285-post-44996.html#pid44996
On a single hash, you will not see a big difference between:
$ time hashcat -m 2500 --quiet test.hccapx wordlist
$ t... |
|
ZerBea |
hashcat
|
1 |
1,007 |
02-12-2020, 10:52 PM |
|
|
Thread: hcxpcaptool does not detect beacon packet
Post: RE: hcxpcaptool does not detect beacon packet
The timestamps are completely useless:
$ tshark -r hs_plus_beacon.pcapng -T fields -e frame.number -e frame.time
1 Feb 14, 2020 11:43:57.000000000 CET
2 Feb 14, 2020 11:43:57.000000000 CET
3 Feb 1... |
|
ZerBea |
hashcat-utils, maskprocessor, statsprocessor, md5stress, wikistrip
|
7 |
2,671 |
02-14-2020, 06:44 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
There are no(!) errors:
INFO ERROR:0 INCOMING:5831 OUTGOING:3445 PMKID:21 MP:1 GPS:0 RINGBUFFER:17
INFO ERROR:0 that means no device ERROR
INCOMING:5831 received packets
OUTGOING:3445 transmitte... |
|
ZerBea |
User Contributions
|
648 |
487,081 |
02-15-2020, 09:25 AM |
|
|
Thread: hcxpcaptool does not detect beacon packet
Post: RE: hcxpcaptool does not detect beacon packet
It is not a good idea to remove origin timestamps!
It is not a good idea to use tools that remove timestamps!
It is not a good idea to use tools that replace the original timestamp by their own time... |
|
ZerBea |
hashcat-utils, maskprocessor, statsprocessor, md5stress, wikistrip
|
7 |
2,671 |
02-15-2020, 09:39 AM |
|
|
Thread: hcxpcaptool does not detect beacon packet
Post: RE: hcxpcaptool does not detect beacon packet
hcxpcaptool is deprecated. Please use hcxpcapngtool from latest git head hcxtools.
hcxpcangtool doesn't require a timestamp. But, if we have no timestamp, a zeroed timestamp or not the origin times... |
|
ZerBea |
hashcat-utils, maskprocessor, statsprocessor, md5stress, wikistrip
|
7 |
2,671 |
02-17-2020, 07:03 PM |
|
|
Thread: hcxpcaptool does not detect beacon packet
Post: RE: hcxpcaptool does not detect beacon packet
Please post your hashcat command line.
You must use the matching hash mode on hcxpcapngtool and hashcat .
This command lines are valid:
WPA-PBKDF2-PMKID+EAPOL:
$ hcxpcapngtool -o test.22000 *.... |
|
ZerBea |
hashcat-utils, maskprocessor, statsprocessor, md5stress, wikistrip
|
7 |
2,671 |
02-18-2020, 01:03 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Hi ciccio17. Thanks, I'm fine. You too?
This is my test environment:
Arch Linux x86 (archlinux-2020.02.01-x86_64) hcxdumptool, hcxtools, hashcat, JtR
$ uname -r
5.5.5-arch1-1
Arch Linux Arm (... |
|
ZerBea |
User Contributions
|
648 |
487,081 |
02-23-2020, 11:06 AM |
|
|
Thread: no ssh in pwnagotchi
Post: RE: no ssh in pwnagotchi
"... also ssh file without extension in root dir of sd"
is not the correct way.
recommended way:
https://pwnagotchi.ai/configuration/#about-your-ssh-connection
or the raspbian way (if we assume pw... |
|
ZerBea |
General Talk
|
3 |
1,314 |
03-26-2020, 09:55 AM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
The format of a 22000 hashline is:
Code:
--
SIGNATURE*TYPE*PMKID/MIC*MACAP*MACSTA*ESSID*ANONCE*EAPOL*MESSAGEPAIR
SIGNATURE = "WPA"
TYPE = 01 for PMKID, 02 for EAPOL, others to foll... |
|
ZerBea |
User Contributions
|
648 |
487,081 |
03-15-2020, 11:51 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Yes, you are right.
The BPF is a nice and fast kernel feature to filter out unwanted packets. You can combine everything (MAC_AP, MAC_CLIENT, rx branch, tx branch). The best way to use BPFC is to p... |
|
ZerBea |
User Contributions
|
648 |
487,081 |
03-17-2020, 11:13 AM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
That depend on the environment variables of your system.
$ getconf ARG_MAX
2097152
I haven't tested it exactly , because I have not so much entries.
BTW:
It is allowed to use BPFC and filterm... |
|
ZerBea |
User Contributions
|
648 |
487,081 |
03-18-2020, 11:09 AM |