PDA

View Full Version : WPA-PSK Cracking Without Wireless Clients



rastamouse
2014-04-19, 20:45
I keep seeing time and time again, people asking on various forums whether or not cracking WPA without a wireless client was possible. It pained me to see the majority of responses indicated that it was not possible; so I decided to write a PoC that would demonstrate that it was possible (although not exactly practical). My motivation was based around the fact the information getting posted, wasn't exactly accurate. Possible? Yes. But not easy.

I'm not posting it here to get on a high horse or anything, just for those who may be interested.

The current script is a simple bash wrapper around the wpa_supplicant and wpa_cli tools, which I smashed together in an evening. I'm sure a much more efficient tool could be created, perhaps based on pylorcon2. But that's for another day :)

http://wi-fu.co.uk/wi-fi/wpa-attacks/109-attacking-wpa-psk-without-wireless-clients

zimmaro
2014-04-20, 07:50
hi :)
thanks for share!!!!and the site is really interesting and well done!!!
i'm testing on MY WPA2-TKIP ..&&&..PASSED!!!
http://www.imagestime.com/show.php/941950_Cattura.PNG.html
thanks-again +1 :cool:

itmanvn
2014-04-22, 13:00
Thanks for share.

BlackRose
2014-04-23, 20:08
This do handshake? Or this crack epa password no handshake?

rastamouse
2014-04-24, 09:53
This script does not collect or crack a handshake. It tries to associate directly with an access point.

psysc0rpi0n
2014-04-30, 19:19
This is with a Dic file... Isn't it possible with brute-force given a pass mask or so?

rastamouse
2014-05-01, 08:44
What do you mean by pass mask?

h4x0r_crew
2015-11-17, 02:27
Link down re-post please!

nexusnexus
2015-11-17, 10:13
Link down re-post please!

I think this is the script used :-)
https://github.com/rasta-mouse/Mjolnir/blob/master/mjolnir.sh