FTLinuxCourse - Tin tổng hợp mới nhất không thể bỏ lỡ
  • Home
  • Lập Trình Linux
  • Công Nghệ
  • Máy Tính
No Result
View All Result
  • Home
  • Lập Trình Linux
  • Công Nghệ
  • Máy Tính
No Result
View All Result
FTLinuxCourse - Tin tổng hợp mới nhất không thể bỏ lỡ
No Result
View All Result

New attack on WPA/WPA2 using PMKID

admin by admin
April 7, 2020
in Lập Trình Linux
47
New attack on WPA/WPA2 using PMKID



In this writeup, I’ll describe a new technique to crack WPA PSK (Pre-Shared Key) passwords.

In order to make use of this new attack you need the following tools:
hcxdumptool v4.2.0 or higher
hcxtools v4.2.0 or higher
hashcat v4.2.0 or higher

This attack was discovered accidentally while looking for new ways to attack the new WPA3 security standard. WPA3 will be much harder to attack because of its modern key establishment protocol called “Simultaneous Authentication of Equals” (SAE).

The main difference from existing attacks is that in this attack, capture of a full EAPOL 4-way handshake is not required. The new attack is performed on the RSN IE (Robust Security Network Information Element) of a single EAPOL frame.

At this time, we do not know for which vendors or for how many routers this technique will work, but we think it will work against all 802.11i/p/q/r networks with roaming functions enabled (most modern routers).

The main advantages of this attack are as follow:
No more regular users required – because the attacker directly communicates with the AP (aka “client-less” attack)
No more waiting for a complete 4-way handshake between the regular user and the AP
No more eventual retransmissions of EAPOL frames (which can lead to uncrackable results)
No more eventual invalid passwords sent by the regular user
No more lost EAPOL frames when the regular user or the AP is too far away from the attacker
No more fixing of nonce and replaycounter values required (resulting in slightly higher speeds)
No more special output format (pcap, hccapx, etc.) – final data will appear as regular hex encoded string

Nguồn: https://ftlinuxcourse.com

Xem thêm bài viết khác: https://ftlinuxcourse.com/khoa-hoc

Xem thêm Bài Viết:

  • Trải nghiệm mới hay ho với hướng dẫn cài Mac Os trên vmware
  • Bật mí cách cài đặt ssl miễn phí lên Let’s Encrypt
  • Tuyệt chiêu tạo usb boot kali linux đơn giản dành cho bạn
  • Hướng dẫn chi tiết từ A – Z các bước cài đặt Python trên Windows 10
  • Bật mí quy trình cài đặt Kali Linux trên Vmware đúng chuẩn và chi tiết
Tags: Youtube
Previous Post

Smart TV và Internet TV: Nên chọn cái nào? - Nguyễn Kim

Next Post

SKR 1.3 - VS Code with PlatformIO install

Next Post
SKR 1.3 – VS Code with PlatformIO install

SKR 1.3 - VS Code with PlatformIO install

Comments 47

  1. C C P says:
    3 years ago

    Not working:
    supposed to insert "–filterlist_cliant=filter.txt"

    After inserting "./hcxdumptool -o hash -i wlan0mon –filterlist=filter.txt –filtermode=2 enable_status=1"

    Receiving error:

    ./hcxdumptool: option '–filterlist=filter.txt' is ambiguous; possibilities: '–filterlist_ap' '–filterlist_client'

    hcxdumptool 6.0.0 (C) 2019 by ZeroBeat

    usage: hcxdumptool -h for help.

    And even after this fix I get a message:

    initialization…

    warning: wlan0mon is probably a monitor interface

    interface is already in monitor mode.

    Reply
  2. Larcio Junior says:
    3 years ago

    Good job, man!!
    Bro, is it Word list required?

    Reply
  3. Sofian Houari says:
    3 years ago

    Does t work for me i need cuda toolkit driver i use Android phone

    Reply
  4. Bruno Jose says:
    3 years ago

    The specified parameter cannot use '-w' as a value – must be a number. Como resolver?

    Reply
  5. Edgar Macza-shelstad says:
    3 years ago

    195 H/s? you'll die before you even crack a 4 digit password lmao

    Reply
  6. Ricardo says:
    3 years ago

    Hola sh4dy ruLL3zZ dame tu correo y te contacto, gracias

    Reply
  7. Xavier Hidden says:
    3 years ago

    You do not explain anything. Your videos are useless.

    Reply
  8. Nigan Sell says:
    3 years ago

    FOUND HANDSHAKE, NO PMKID why..?

    Reply
  9. Arman says:
    3 years ago

    A lot of likes because people just thinks this works, but nobody understood a fuckin shit.

    Reply
  10. Amol Gupta says:
    3 years ago

    After hcxdumptool -o hash -i ………

    It gives :
    Warning: unable to set channel (1,6,11 etc) (remove this channel from scan list)

    Please help

    Reply
  11. Carleilton Santos says:
    3 years ago

    Initialized device kernels and memory … Illegal instruction

    Reply
  12. chnyani hack pubg says:
    3 years ago

    tnx uuuuuuuuuuuuuuuuu

    Reply
  13. Xavier Hidden says:
    3 years ago

    So how does this work? What does it do? Video is a bit vague with no explanation. I would like to follow this but it's not really a tutorial. Your not explaining things.

    Reply
  14. mehmet öz says:
    3 years ago

    Bu yöntem wordliste gerek duymadan şifre kırmayı sağlar mı yani şifrenin ne olduğunu bilmiyorsak !?…..123 yerine !?! mi yazacaz?
    2) kaç saat surer?

    Reply
  15. pronto solutions says:
    3 years ago

    still does not work if the password is not in the list

    Reply
  16. Fortnite Hacks says:
    3 years ago

    Eu dou make naquela hora e da erro

    Reply
  17. Donald Duck says:
    3 years ago

    This tool is not useful.
    Count how many years it will take to break a twenty-digit password …

    Reply
  18. Dominik Bujňák says:
    3 years ago

    I can not catch pmkid. Will anyone advise me?

    Reply
  19. Brahim ben brahim says:
    3 years ago

    Hi … Thank you for this video … Why add on? |? |? |… 123 and how do I know this since I do not know the password and thank you

    Reply
  20. Sofian Houari says:
    3 years ago

    if does work o will fuck my self ok. Does nt work

    Reply
  21. Sofian Houari says:
    3 years ago

    Why you do not use it in nethunter from Android phone . Or
    Its difficult all of you make the easy way

    Reply
  22. ROLLI LOLLO says:
    3 years ago

    Time.Started…..: Wed Nov 21 10:35:48 2018 (16 mins, 15 secs)
    Time.Estimated…: Thu Feb 14 04:05:48 2019 (84 days, 17 hours)

    Reply
  23. ben andrew777 says:
    3 years ago

    E: Unable to locate package libssl-dev solve this????

    Reply
  24. silinmiş üye says:
    3 years ago

    halen fluxion 1 numara bu video ise vakit kaybı

    Reply
  25. Russell Security Lab says:
    3 years ago

    I did not understand, in the end you gave the command "- show" to see the password, but did not appear the password '-'

    Reply
  26. ArKhuR says:
    3 years ago

    Entonces es basicamente un ataque de fuerza bruta pero acelerado con GPU. que diferencia tiene con la version windows de hashcat en conjunto con la GUI?

    Reply
  27. Aldorino Adhisasmita says:
    3 years ago

    I've create the filter.txt and run it as your command but it keeps random scan trough many APs with 30 minutes waste of time. What's the problem?

    Reply
  28. nbctcp says:
    3 years ago

    will hashcat work without GPU (only i5) in Kali vm inside VMware Workstation?

    Reply
  29. silinmiş üye says:
    3 years ago

    [00:04:17 – 001] 002592460d94 -> b0acd265a503 [EAPOL 4/4 – M4 RETRY ATTACK]
    [00:04:26 – 002] 002592460d94 -> b0acd265a503 [EAPOL 4/4 – M4 RETRY ATTACK]
    [00:04:26 – 002] 002592460d94 -> b0acd265a503 [EAPOL 4/4 – M4 RETRY ATTACK]
    [00:04:36 – 001] b0acd265a503 -> 002592460d94 [FOUND AUTHORIZED HANDSHAKE, EAPOL TIMEOUT 3941]
    [00:05:47 – 004] b0acd265a503 -> 544e90cd0901 [FOUND AUTHORIZED HANDSHAKE, EAPOL TIMEOUT 2783]

    Reply
  30. danny zapata crdona says:
    3 years ago

    Estoy seguro que no me va a aparecer la contraseña ,actualmente el ataque está en prueba y error con un diccionario que no creo que contenga la pass

    Reply
  31. Nimrod Quimbus says:
    3 years ago

    anyone found the PMKID hash type in the Windows GUI ?

    Reply
  32. tichka lux says:
    3 years ago

    hello
    I have this message

    floating points exception??
    thks

    Reply
  33. angelo turco says:
    3 years ago

    Hello, why do you use 123 in '?l?l?l?l?l123' ? Thank you

    Reply
  34. K. HOFFMANN says:
    3 years ago

    rafaz o video dessa vez voce narrado contando com detalhes

    Reply
  35. Federico P. says:
    3 years ago

    Muchas, muchas, gracias. Nuevo suscriptor.

    Reply
  36. caster laster says:
    3 years ago

    how can i dl the tools and where?

    Reply
  37. AnakGranat TNI says:
    3 years ago

    wtf my wlan is off how is enable?

    Reply
  38. Patrick Waterman says:
    3 years ago

    great video bro, i have to try this on my neighbour wifi u got my sub.

    Reply
  39. جعفر النجار says:
    3 years ago

    ممكن شرح اسهل

    Reply
  40. carlos barrios says:
    3 years ago

    que tipo de antena me recomiendan para auditoria de redes qhe me permita inyeccion de paquetes ..

    Reply
  41. BrasilFPS says:
    3 years ago

    Thanks u bro. ✌
    When github link?

    Reply
  42. mohd tmeme says:
    3 years ago

    فنان ما شاء الله عليكم .. موفق

    Reply
  43. billy 9 says:
    3 years ago

    I get [FOUND AUTHORIZED HANDSHAKE, EAPOL TIMEOUT 23489] instead of [FOUND PMKID CLIENT-LESS] ?!!

    Reply
  44. J_Net Reloaded says:
    3 years ago

    need the github linki :/

    Reply
  45. the programing sniper says:
    3 years ago

    Keep working

    Reply
  46. Mohammed Arsh Khan says:
    3 years ago

    Buddy plz reply asap

    Reply
  47. Mohammed Arsh Khan says:
    3 years ago

    Bro instead of found PMKID i am getting FOUND AUTHORIZED HANDSHAKE, EAPOL TIMEOUT 2620

    Reply

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Xem Thêm

Những điều bạn có thể chưa biết về Thánh sim Hi Vietnamobile

Những điều bạn có thể chưa biết về Thánh sim Hi Vietnamobile

January 17, 2021
Xiaomi Mi 10 Pro thiết kế thời thương, màn hình cong ấn tượng

Xiaomi Mi 10 Pro thiết kế thời thương, màn hình cong ấn tượng

June 1, 2021
Địa chỉ in bao bì nhựa tại Đà Nẵng chiết khấu cao

Địa chỉ in bao bì nhựa tại Đà Nẵng chiết khấu cao

January 26, 2021
Địa chỉ bán đèn tuýp LED Philips uy tín và chất lượng trên thị trường?

Bán đèn tuýp led Philips – Skyled

July 27, 2020
Lựa chọn chủ đề in áo thun phù hợp

Lựa chọn dịch vụ in áo thun cotton cần lưu ý gì?

August 2, 2020
Cần xác định được điểm đặt pallet cao nhất để mua xe

Bí quyết chọn mua xe nâng điện đẩy tay

August 3, 2020

Về Chúng Tôi

Báo ftlinuxcourse.com 24h – Đón xem những tin tức mới nhất về tình hình chính trị, xã hội, an ninh trật tự, văn hóa – giải trí, thể thao, thông tin trong ngày.

  • Liên Hệ
  • Chính Sách Bảo Mật

© 2023 JNews - Premium WordPress news & magazine theme by Jegtheme.

No Result
View All Result
  • Home
  • Lập Trình Linux
  • Công Nghệ
  • Máy Tính

© 2023 JNews - Premium WordPress news & magazine theme by Jegtheme.