|
Search Results
|
| Post |
Author |
Forum |
Replies |
Views
[asc]
|
Posted |
| |
|
Thread: Hashcat router admin
Post: RE: Hashcat router admin
| Look for Hydra (https://sectools.org/tool/hydra/, https://www.thc.org/thc-hydra/)! |
|
ZerBea |
hashcat
|
4 |
3,093 |
05-21-2018, 12:35 AM |
| |
|
Thread: skipping file: (null) (invalid eapol size)
Post: RE: skipping file: (null) (invalid eapol size)
| hcxdumptool and hcxtools are working fine on UBUNTU 18.04 (as used here):
https://www.nomotion.net/blog/cracking-wifi-without-clients-pmkid-method/
and they will be official part in next UBUNTU vers... |
|
ZerBea |
hashcat
|
9 |
3,035 |
08-27-2019, 07:31 PM |
| |
|
Thread: skipping file: (null) (invalid eapol size)
Post: RE: skipping file: (null) (invalid eapol size)
| That are good news. Thanks for the feedback.
Now start to capture (over a long time) and collect hcxpcaptool -E -I -U lists and -o -k hashfiles. At regular intervals run your hashes against this lis... |
|
ZerBea |
hashcat
|
9 |
3,035 |
08-31-2019, 11:14 PM |
| |
|
Thread: skipping file: (null) (invalid eapol size)
Post: RE: skipping file: (null) (invalid eapol size)
| On the first run, you need some steps to identify a suitable interface, to check driver and to check that packet injection is working. Also you must identify processes that interferes with hcxdumptool... |
|
ZerBea |
hashcat
|
9 |
3,035 |
08-31-2019, 07:48 AM |
| |
|
Thread: Linux + AMD + hashcat
Post: RE: Linux + AMD + hashcat
| The enormous misunderstanding of AMD is that they really think LINUX is UBUNTU, or CentOS or RHEL:
The ROCm 2.0.x platform supports the following operating systems:
Ubuntu 16.04.x and 18.04.x (V... |
|
ZerBea |
hashcat
|
3 |
2,980 |
09-05-2019, 04:08 PM |
| |
|
Thread: Perfomance drops / not a heat problem
Post: RE: Perfomance drops / not a heat problem
| That depends on 2 factors:
1. value of nonce-error-corrections
2. number of networks using the same ESSID
and is a normal behavior!
examples:
using nonce-error-corrections 0 on a hccapx fil... |
|
ZerBea |
hashcat
|
2 |
2,804 |
10-01-2017, 02:18 PM |
| |
|
Thread: hcxpcaptool does not detect beacon packet
Post: RE: hcxpcaptool does not detect beacon packet
| Please post your hashcat command line.
You must use the matching hash mode on hcxpcapngtool and hashcat .
This command lines are valid:
WPA-PBKDF2-PMKID+EAPOL:
$ hcxpcapngtool -o test.22000 *.... |
|
ZerBea |
hashcat-utils, maskprocessor, statsprocessor, md5stress, wikistrip
|
7 |
2,671 |
02-18-2020, 01:03 PM |
| |
|
Thread: hcxpcaptool does not detect beacon packet
Post: RE: hcxpcaptool does not detect beacon packet
| The timestamps are completely useless:
$ tshark -r hs_plus_beacon.pcapng -T fields -e frame.number -e frame.time
1 Feb 14, 2020 11:43:57.000000000 CET
2 Feb 14, 2020 11:43:57.000000000 CET
3 Feb 1... |
|
ZerBea |
hashcat-utils, maskprocessor, statsprocessor, md5stress, wikistrip
|
7 |
2,671 |
02-14-2020, 06:44 PM |
| |
|
Thread: hcxpcaptool does not detect beacon packet
Post: RE: hcxpcaptool does not detect beacon packet
| It is not a good idea to remove origin timestamps!
It is not a good idea to use tools that remove timestamps!
It is not a good idea to use tools that replace the original timestamp by their own time... |
|
ZerBea |
hashcat-utils, maskprocessor, statsprocessor, md5stress, wikistrip
|
7 |
2,671 |
02-15-2020, 09:39 AM |
| |
|
Thread: hcxpcaptool does not detect beacon packet
Post: RE: hcxpcaptool does not detect beacon packet
| hcxpcaptool is deprecated. Please use hcxpcapngtool from latest git head hcxtools.
hcxpcangtool doesn't require a timestamp. But, if we have no timestamp, a zeroed timestamp or not the origin times... |
|
ZerBea |
hashcat-utils, maskprocessor, statsprocessor, md5stress, wikistrip
|
7 |
2,671 |
02-17-2020, 07:03 PM |
| |
|
Thread: Understanding EAPOL 4-Way Handshake and PMKID cracking
Post: RE: Understanding EAPOL 4-Way Handshake and PMKID ...
| 1.
faster
you don't need a CLIENT
works if MFP is activated
not susceptible for packet loss
2.
No. hascat is working on the captured hash and the result is the PMK and the PSK.
Yes. Searching... |
|
ZerBea |
hashcat
|
11 |
2,410 |
03-31-2020, 09:00 AM |
| |
|
Thread: Understanding EAPOL 4-Way Handshake and PMKID cracking
Post: RE: Understanding EAPOL 4-Way Handshake and PMKID ...
| Correct: reuse PBKDF2
That means that a PMK is calculated only once for an ESSID-PSK combination and compared against all hashes using the same ESSID.
This line will give you information about it:... |
|
ZerBea |
hashcat
|
11 |
2,410 |
04-01-2020, 05:35 PM |
| |
|
Thread: Understanding EAPOL 4-Way Handshake and PMKID cracking
Post: RE: Understanding EAPOL 4-Way Handshake and PMKID ...
| Running this combination:
Code:
--
hcxdumptool -> hcxpcapngtool -> hashcat
--
nonce-error-corrections is in automatic mode. Mostly it is set to 0 by automatic on hcxdumptool captured traffic... |
|
ZerBea |
hashcat
|
11 |
2,410 |
04-01-2020, 06:11 PM |
| |
|
Thread: Understanding EAPOL 4-Way Handshake and PMKID cracking
Post: RE: Understanding EAPOL 4-Way Handshake and PMKID ...
| Running that combination nc=2 doesn't make sense.
Either use the automatic or run nc=0.
That depend on the quality of your captured traffic and the sensitivity of your device (PLCP errors).
You can... |
|
ZerBea |
hashcat
|
11 |
2,410 |
04-01-2020, 06:50 PM |
| |
|
Thread: Understanding EAPOL 4-Way Handshake and PMKID cracking
Post: RE: Understanding EAPOL 4-Way Handshake and PMKID ...
| nc is determined by the message_pair (last field in 22000 line):
Code:
--
bitmask for message pair field:
0: MP info (https://hashcat.net/wiki/doku.php?id=hccapx)
1: MP info (https://hashcat.net... |
|
ZerBea |
hashcat
|
11 |
2,410 |
04-01-2020, 08:09 PM |
| |
|
Thread: PBKDF2 and SHA-1 question
Post: RE: PBKDF2 and SHA-1 question
| if you include openssl:
#include
#include
#include
PMK is calculated by:
PKCS5_PBKDF2_HMAC((const char*)psk, psklen, (unsigned char*)essid, essidlen, 4096, EVP_sha1(), 32, pmk)
successf... |
|
ZerBea |
hashcat
|
4 |
2,381 |
04-07-2019, 11:18 AM |
| |
|
Thread: PBKDF2 and SHA-1 question
Post: RE: PBKDF2 and SHA-1 question
| You are right, hashcat is using OpnCl for both functions. The c code example should show that the functions are easy to implement in different coding languages like c, by adding cryptolibs.
There are... |
|
ZerBea |
hashcat
|
4 |
2,381 |
04-09-2019, 08:40 AM |
| |
|
Thread: Determine if PKMID is dynamic?
Post: RE: Determine if PKMID is dynamic?
| To determine if PKMID is dynamic (EAP Authentication Key Management [AKM] defined) just check the RSN-IE field in beacon, (re)associationrequest or EAPOL M2 or the Key Descriptor Version field in EAPO... |
|
ZerBea |
General Talk
|
5 |
2,376 |
08-15-2019, 10:08 AM |
| |
|
Thread: i cant convert a WPA / WPA2 pcap
Post: RE: i cant convert a WPA / WPA2 pcap
| and if you really need to clean up your cap file: tshark is your friend
for output format pcap (cap2hccapx understand this):
tshark -r raw.cap -R "(wlan.fc.type_subtype == 0x00 || wlan.fc.type_sub... |
|
ZerBea |
General Talk
|
3 |
2,369 |
01-20-2019, 09:09 PM |
| |
|
Thread: need help with hcx dumptool what am i doing wrong
Post: RE: need help with hcx dumptool what am i doing wr...
| In your case:
[16:26:17 - 001] 009fa9073914 -> 5c93a20b3897 [FOUND AUTHORIZED HANDSHAKE, EAPOL TIMEOUT 2516]
[16:40:15 - 001] 009fa9073914 -> ccfb65942f7e [FOUND AUTHORIZED HANDSHAKE, EAPOL TIMEOUT ... |
|
ZerBea |
hashcat
|
2 |
2,293 |
11-06-2018, 10:36 AM |
