|
Search Results
|
| Post
[desc]
|
Author |
Forum |
Replies |
Views |
Posted |
| |
|
Thread: New attack on WPA/WPA2 using PMKID
Post: RE: New attack on WPA/WPA2 using PMKID
| I don't think it's a driver issue and I don't think it's a pineapple issue, because use received a PMKID from the access point!
1) check your environment
identify your access point (ESSID and mac)... |
|
ZerBea |
User Contributions
|
187 |
1,293,136 |
11-18-2018, 08:26 PM |
| |
|
Thread: New attack on WPA/WPA2 using PMKID
Post: RE: New attack on WPA/WPA2 using PMKID
| Due to several big endian fixes, hcxdumptool and hcxtools moved to v 5.0.1.
I received a notice that they are running on OpenWRT.
But keep in mind:
Both, PMKID attack vector and AP-LESS attack vect... |
|
ZerBea |
User Contributions
|
187 |
1,293,136 |
11-27-2018, 08:48 AM |
| |
|
Thread: No handshakes when trying to convert to hccapx
Post: RE: No handshakes when trying to convert to hccapx
| Upload the cap here:
https://wpa-sec.stanev.org/?nets |
|
ZerBea |
hashcat-utils, maskprocessor, statsprocessor, md5stress, wikistrip
|
10 |
14,089 |
05-18-2018, 05:56 PM |
| |
|
Thread: No handshakes when trying to convert to hccapx
Post: RE: No handshakes when trying to convert to hccapx
| ...or simple use hcxtools for capturing and conversion, as they provide nonce-error-corrections and more...
BTW:
hcxtools running in background of wpa-sec and they did the conversion! |
|
ZerBea |
hashcat-utils, maskprocessor, statsprocessor, md5stress, wikistrip
|
10 |
14,089 |
05-19-2018, 09:15 AM |
| |
|
Thread: No handshakes when trying to convert to hccapx
Post: RE: No handshakes when trying to convert to hccapx
| Hi kexec.
That is a typical aircrack capture. You captured 125954 packets (3.949.735 Bytes) for only one unauthorized handshake (tons of useless frames inside).
$ hcxpcaptool -o test.hccapx -E wordl... |
|
ZerBea |
hashcat-utils, maskprocessor, statsprocessor, md5stress, wikistrip
|
10 |
14,089 |
05-22-2018, 09:45 AM |
| |
|
Thread: No handshakes when trying to convert to hccapx
Post: RE: No handshakes when trying to convert to hccapx
| Hi kexec.
I see that you successfully converted it to hccapx using hcxpcaptool, so it is a bug in hashcat's cap2hccapx?
hcxpcaptool is completely different to other tools, so it will convert your... |
|
ZerBea |
hashcat-utils, maskprocessor, statsprocessor, md5stress, wikistrip
|
10 |
14,089 |
05-23-2018, 08:14 PM |
| |
|
Thread: No handshakes when trying to convert to hccapx
Post: RE: No handshakes when trying to convert to hccapx
| So the problem is that if cap contains a lot of garbage packets, cap2hccapx cant convert it? How to determine which packets are not needed and I can delete them from .cap file?
You can do a cleaning ... |
|
ZerBea |
hashcat-utils, maskprocessor, statsprocessor, md5stress, wikistrip
|
10 |
14,089 |
05-23-2018, 10:27 PM |
| |
|
Thread: no ssh in pwnagotchi
Post: RE: no ssh in pwnagotchi
| "... also ssh file without extension in root dir of sd"
is not the correct way.
recommended way:
https://pwnagotchi.ai/configuration/#about-your-ssh-connection
or the raspbian way (if we assume pw... |
|
ZerBea |
General Talk
|
3 |
1,314 |
03-26-2020, 09:55 AM |
| |
|
Thread: no ssh in pwnagotchi
Post: RE: no ssh in pwnagotchi
| Maybe that is not enough and you're missing some information.
Please read more here:
https://www.raspberrypi.org/forums/viewtopic.php?t=203716
Code:
--
country=xx
ctrl_interface=DIR=/var/run/... |
|
ZerBea |
General Talk
|
3 |
1,314 |
03-27-2020, 09:19 PM |
| |
|
Thread: PBKDF2 and SHA-1 question
Post: RE: PBKDF2 and SHA-1 question
| if you include openssl:
#include
#include
#include
PMK is calculated by:
PKCS5_PBKDF2_HMAC((const char*)psk, psklen, (unsigned char*)essid, essidlen, 4096, EVP_sha1(), 32, pmk)
successf... |
|
ZerBea |
hashcat
|
4 |
2,379 |
04-07-2019, 11:18 AM |
| |
|
Thread: PBKDF2 and SHA-1 question
Post: RE: PBKDF2 and SHA-1 question
| You are right, hashcat is using OpnCl for both functions. The c code example should show that the functions are easy to implement in different coding languages like c, by adding cryptolibs.
There are... |
|
ZerBea |
hashcat
|
4 |
2,379 |
04-09-2019, 08:40 AM |
| |
|
Thread: Perfomance drops / not a heat problem
Post: RE: Perfomance drops / not a heat problem
| That depends on 2 factors:
1. value of nonce-error-corrections
2. number of networks using the same ESSID
and is a normal behavior!
examples:
using nonce-error-corrections 0 on a hccapx fil... |
|
ZerBea |
hashcat
|
2 |
2,804 |
10-01-2017, 02:18 PM |
| |
|
Thread: Performance Difference PMKID vs HCCAPX?
Post: RE: Performance Difference PMKID vs HCCAPX?
| Answered here:
https://hashcat.net/forum/thread-8285-post-44996.html#pid44996
On a single hash, you will not see a big difference between:
$ time hashcat -m 2500 --quiet test.hccapx wordlist
$ t... |
|
ZerBea |
hashcat
|
1 |
1,007 |
02-12-2020, 10:52 PM |
| |
|
Thread: please help me i am a newbie
Post: RE: please help me i am a newbie
| According to the help menu, you have to use either
--filtermode=2 in combination with --filterlist_ap=yourtargetmaclist
or create a Berkeley Packet Filter (attack MAC)
Code:
--
--filterlist_ap=... |
|
ZerBea |
hashcat
|
4 |
875 |
07-20-2020, 09:17 AM |
| |
|
Thread: please help me i am a newbie
Post: RE: please help me i am a newbie
| One of the major advantages of the new hash format (-m 22000) is, that it is not binary (hccapx) and every bash tool will work in it.
To get the ESSID in ASCII you can use hcxtools (whoismac):
Code... |
|
ZerBea |
hashcat
|
4 |
875 |
07-22-2020, 11:41 AM |
| |
|
Thread: PMKID
Post: RE: PMKID
| It is mandatory to request the PMKID from an access point (EAPOL M1) or to retrieve it from a client (reassociation request). |
|
ZerBea |
General Talk
|
2 |
1,508 |
10-04-2019, 05:14 PM |
| |
|
Thread: PMKID Generates Wrong ESSID And Password From Hash
Post: RE: PMKID Generates Wrong ESSID And Password From ...
| This is very difficult to answer, because your question is very imprecise.
A PMKID is transmitted by the access point (ap) or by a client.
There might be something wrong in your work flow. To g... |
|
ZerBea |
hashcat
|
10 |
3,624 |
06-09-2019, 10:49 AM |
| |
|
Thread: PMKID Generates Wrong ESSID And Password From Hash
Post: RE: PMKID Generates Wrong ESSID And Password From ...
| Yes you are quite right there, by default, hcxdumptool attacks everything in range.
You can either set a target (by filter option), or remove not wanted hashes by hand (PMKID hash file) or by wlanhcx... |
|
ZerBea |
hashcat
|
10 |
3,624 |
06-09-2019, 06:51 PM |
| |
|
Thread: PMKID Generates Wrong ESSID And Password From Hash
Post: RE: PMKID Generates Wrong ESSID And Password From ...
| 1. create a filterlist.txt and add the target MAC: 112233445566
2. use options --filterlist=filterlist.txt --filtermode=2
--filterlist= : mac filter list
... |
|
ZerBea |
hashcat
|
10 |
3,624 |
06-09-2019, 08:08 PM |
| |
|
Thread: PMKID Generates Wrong ESSID And Password From Hash
Post: RE: PMKID Generates Wrong ESSID And Password From ...
| Yes, that is the MAC of the access point. |
|
ZerBea |
hashcat
|
10 |
3,624 |
06-09-2019, 09:34 PM |
