Hcxdumptool – Small Tool To Capture Packets From Wlan Devices

0
286
Hcxdumptool – Small Tool To Capture Packets From Wlan Devices

Small device to seize packets from wlan units. After capturing, add the “uncleaned” cap right here (https://wpa-sec.stanev.org/?submit) to see in case your ap or the consumer is vulnerable by utilizing frequent wordlists. Convert the cap to hccapx and/or to WPA-PMKID-PBKDF2 hashline (16800) with hcxpcaptool (hcxtools) and test if wlan-key or plainmasterkey was transmitted unencrypted.

Brief description

Stand-alone binary – designed to run on Raspberry Pi’s with put in Arch Linux. It ought to work on different Linux techniques (notebooks, desktops) and distributions, too.

Detailed description

Tool Description
hcxdumptool Tool to run a number of assessments to find out if entry factors or shoppers are weak
pioff Turns Raspberry Pi off through GPIO change

Compile
Simply run:

make
make set up (as tremendous consumer)

or (with GPIO help – {hardware} mods required)

make GPIOSUPPORT=on
make GPIOSUPPORT=on set up (as tremendous consumer)

Requirements

  • Operatingsystem: Arch Linux (strict), Kernel >= 4.14 (strict). It ought to work on different Linux techniques (notebooks, desktops) and distributions, too (no help for different distributions). Don’t use Kernel 4.4 (rt2x00 driver regression)
  • libpthread and pthread-dev put in
  • Raspberry Pi: moreover libwiringpi and wiringpi dev put in (Raspberry Pi GPIO help)
  • Chipset should be capable of run in monitor mode (strict by: ip and iw). Recommended: RALINK chipset (good receiver sensitivity), rt2x00 driver (steady and quick)
  • Raspberry Pi A, B, A+, B+ (Recommended: A+ = very low energy consumption or B+), however notebooks and desktops might work, too.
  • GPIO {hardware} mod really helpful

Supported adapters (strict)

  • USB ID 148f:7601 Ralink Technology, Corp. MT7601U Wireless Adapter
  • USB ID 148f:3070 Ralink Technology, Corp. RT2870/RT3070 Wireless Adapter
  • USB ID 148f:5370 Ralink Technology, Corp. RT5370 Wireless Adapter
  • USB ID 0bda:8187 Realtek Semiconductor Corp. RTL8187 Wireless Adapter
  • USB ID 0bda:8189 Realtek Semiconductor Corp. RTL8187B Wireless 802.11g 54Mbps Network Adapter

Useful scripts

Script Description
bash_profile Autostart for Raspberry Pi (copy to /root/.bash_profile)
pireadcard Back up a Pi SD card
piwritecard Restore a Pi SD card
makemonnb Example script to activate monitor mode
killmonnb Example script to deactivate monitor mode

Hardware mod – see docs gpiowait.odg (hcxdumptool)
LED flashes 5 instances if hcxdumptool efficiently began
LED flashes each 5 seconds if all the things is ok
Press push button not less than > 5 seconds till LED activates (LED activates if hcxdumptool terminates)
Green ACT LED flashes 10 instances
Raspberry Pi turned off and may be disconnected from energy provide
Do not use hcxdumptool and hcxpioff collectively!

Hardware mod – see docs gpiowait.odg (hcxpioff)
LED flashes each 10 seconds 2 instances if hcxpioff efficiently began
Press push button not less than > 10 seconds till LED activates (hcxpioff will shut down Raspberry Pi safely)
Green ACT LED flashes 10 instances
Raspberry Pi turned off and may be disconnected from energy provide
Do not use hcxdumptool or hcxpioff collectively!

Warning
You should use hcxdumptool solely on networks you will have permission to do that, as a result of

  • hcxdumptool is ready to forestall full wlan visitors
  • hcxdumptool is ready to seize PMKIDs from entry factors (just one single PMKID from an entry level required)
  • hcxdumptool is ready to seize handshakes from not related shoppers (just one single M2 from the consumer is required)
  • hcxdumptool is ready to seize handshakes from 5GHz shoppers on 2.4GHz (just one single M2 from the consumer is required)
  • hcxdumptool is ready to seize prolonged EAPOL (RADIUS, GSM-SIM, WPS)
  • hcxdumptool is ready to seize passwords from the wlan visitors
  • hcxdumptool is ready to seize plainmasterkeys from the wlan visitors
  • hcxdumptool is ready to seize usernames and identities from the wlan visitors

MoreTip.com

LEAVE A REPLY

Please enter your comment!
Please enter your name here

This site uses Akismet to reduce spam. Learn how your comment data is processed.