Search Results
|
Post |
Author |
Forum |
Replies |
Views
[asc]
|
Posted |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
@strike1953:
Looks like we can expect another fix for that (kernel) issue (ath9k_htc), soon:
[56147.938929] ath: phy0: Short RX data len, dropping (dlen: 2)
[56260.431703] ath: phy0: Short RX data ... |
|
ZerBea |
User Contributions
|
648 |
487,318 |
01-14-2020, 11:35 AM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Ok, now we know the cause: ath9k_htc driver
I have a TPL-LINK TL-WN722N V1 for testing purpose and it shows the same "ugly" behavior.
$ hcxdumptool -I
wlan interfaces:
f81a6718410f wlp3s0f0u2 (at... |
|
ZerBea |
User Contributions
|
648 |
487,318 |
01-13-2020, 05:43 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
@WPA_Catcher nice suggestion, but not the philosophy of Arch Linux:
"Arch Linux adheres to five principles: simplicity, modernity, pragmatism, user centrality and versatility. In general, the princip... |
|
ZerBea |
User Contributions
|
648 |
487,318 |
01-14-2020, 06:36 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Before you start with Wireshark, take a look at the basics of 802.11
here:
https://en.wikipedia.org/wiki/802.11_Frame_Types
Than dive into the study guide here:
https://mrncciew.com/tag/802-11-ove... |
|
ZerBea |
User Contributions
|
648 |
487,318 |
01-14-2020, 10:02 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
This is a really good reason to hexify ESSIDs within the new hash line (22000):
https://support.sjcam.com/support/solutions/articles/9000005708--how-do-i-connect-my-camera-with-mobile-wifi-
SSID:... |
|
ZerBea |
User Contributions
|
648 |
487,318 |
01-26-2020, 01:10 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Adding the option to run a user defined MAC_AP and/or MAC_CLIENT was only a test to demonstrate that it is useless.
Shortly after the start hcxdumptool adapts to the WiFi traffic and uses more and mo... |
|
ZerBea |
User Contributions
|
648 |
487,318 |
01-28-2020, 04:33 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
You can do this running hcxpcapngtool without options to save files:
Code:
--
$ hcxpcapngtool test.cap
reading from test.cap...
summary capture file
file name................................: test... |
|
ZerBea |
User Contributions
|
648 |
487,318 |
01-28-2020, 06:31 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Latest git head is able to detect EAP-TLS (tunneled TLSv1.2)- WAP3/SAE - SAE SHA384 SUITE B frames with 24 byte MIC (WPA3 ENTERPRISE).
example pcapng in Wireshark default capture format (gzip compres... |
|
ZerBea |
User Contributions
|
648 |
487,318 |
01-28-2020, 06:43 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Good idea, and this will help old hccap users a lot.
Your hashcat version doesn't support nonce-error-corrections (NC). That exactly is the reason why some of your hashes are not recoverable. NC is a... |
|
ZerBea |
User Contributions
|
648 |
487,318 |
01-29-2020, 04:32 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
No, epical fail of me. Pushed a fix for that issue. Unfortunately we deleted all 392 byte hccap and leave the 0 size ones.
So if all .22000 format hashes are good what is it I need to check for wit... |
|
ZerBea |
User Contributions
|
648 |
487,318 |
01-29-2020, 08:15 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
I understand hcxdumptool/hcxtools are WiFi parsers for hashcat but I was assuming hcxhashtool was now able to convert PMKID to hccap but I see that is not happening. Perhaps this is not possible.
-> ... |
|
ZerBea |
User Contributions
|
648 |
487,318 |
01-29-2020, 08:36 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
An ideal use would be: hcxhashtool -i my22000hashlist –hccap-single -p mydirectoryofchoice
-> No, ideal within a bash script is
$ cd $HOME/.../mydirectoryofchoice
$ hcxhashtool -i $HOME/.../my220... |
|
ZerBea |
User Contributions
|
648 |
487,318 |
01-30-2020, 07:21 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Please keep in mind: hcxdumptool/hcxtools are designed as analysis tools. They are not designed to attack a single network!
Example:
For a penetration tester, it is important to be able to estimate ... |
|
ZerBea |
User Contributions
|
648 |
487,318 |
02-01-2020, 11:32 AM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
I'm working on this feature
https://github.com/ZerBea/hcxtools/blob/master/hcxpcapngtool.c#L1664
but it has very low priority, because tshark and/or Wireshark can do it much better:
$ tshark -r te... |
|
ZerBea |
User Contributions
|
648 |
487,318 |
02-05-2020, 09:02 AM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
If you got more information on how many VENDORs still using this fields, please keep us in the loop, here.
BTW:
tshark is a powerfull tool to perform several kinds of analysis and to receive the r... |
|
ZerBea |
User Contributions
|
648 |
487,318 |
02-05-2020, 09:10 AM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
That is another amazing feature.
$ hcxpcapngtool -o test.22000 -E wordlist test.pcap
$ hashcat -m 22000 test.22000 wordlist
hcxdumptool attack vector against weak client, converted to pcap by ts... |
|
ZerBea |
User Contributions
|
648 |
487,318 |
02-06-2020, 01:57 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
Now, I'm a little bit confused:
Hello ZerBea, how to convert potfile 16800 and hccapx to 22000 mode.
Do you want to convert your 5.1.0 potfile format to new potfile format?
$ hcxhashcattool -p ol... |
|
ZerBea |
User Contributions
|
648 |
487,318 |
02-06-2020, 03:28 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
linux-firmware installed?
Files list for linux-firmware:
usr/lib/firmware/mediatek/
usr/lib/firmware/mediatek/mt7610e.bin
usr/lib/firmware/mediatek/mt7610u.bin
usr/lib/firmware/mediatek/mt7615_... |
|
ZerBea |
User Contributions
|
648 |
487,318 |
02-08-2020, 02:55 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
This information is only available in an original(!) and uncleaned(!) dump file (cap/pcap/pcapng format).
A single BEACON and a single M1 (with PMKID) or a single message pair (M1M2, M2M3, M3M4 not ... |
|
ZerBea |
User Contributions
|
648 |
487,318 |
02-10-2020, 04:15 PM |
|
|
Thread: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Post: RE: hcxtools - solution for capturing wlan traffic...
The TP-LINK Archer T2UH is working out of the box running kernel >= 4.19 and there are no additional driver necessary.
$ lsusb
ID 148f:761a Ralink Technology, Corp. MT7610U ("Archer T2U" 2.4G+5G W... |
|
ZerBea |
User Contributions
|
648 |
487,318 |
02-08-2020, 12:56 PM |