Search:

Type: Posts; User: wiire

Page 1 of 3 1 2 3

Search: Search took 0.14 seconds.

  1. OK, thank you! Meanwhile I think @binarymaster...

    OK, thank you! Meanwhile I think @binarymaster was adding some features to RS, to make it easier for testing / gathering data.
  2. Replies
    1
    Views
    320

    Not true. Since version 1.0.0 you can format...

    Not true. Since version 1.0.0 you can format with: -, :, space, or without (it's written in the README too). Of course, you need double quotes if you use space. See image below.
    ...
  3. @ForumKali2016 Thank you very much! The router...

    @ForumKali2016 Thank you very much!

    The router seems to be bugged, but not broken since the protocol goes through correctly (to M7).


    0000497b 000030cf 00003b58 000042cb
    00001003 000015ae...
  4. Yes, thank you. Enrollee nonce, the 2 secret...

    Yes, thank you. Enrollee nonce, the 2 secret nonces and details like brand, model etc. are the most important data :)

    Sorry I haven't replied sooner, I had problems logging in on the forum.
    ...
  5. Replies
    581
    Views
    563,775

    We started a new thread for collecting data:...

    We started a new thread for collecting data: https://forums.kali.org/showthread.php?38127-Data-gathering-for-pixiewps-(pixie-dust-attack)&p=75368&viewfull=1#post75368
  6. Replies
    243
    Views
    272,350

    We started a new thread for collecting data:...

    We started a new thread for collecting data: https://forums.kali.org/showthread.php?38127-Data-gathering-for-pixiewps-(pixie-dust-attack)&p=75368&viewfull=1#post75368
  7. Data gathering for pixiewps (pixie dust attack)

    Hi everyone,
    we have decided to start collecting data again for the WPS pixie dust attack (pixiewps), however we will be thorough this time:

    The data must be collected with Reaver 1.6.3 and with...
  8. Replies
    581
    Views
    563,775

    The fake AP attack to get the first half of the...

    The fake AP attack to get the first half of the pin is nothing new. The procedure is described in the specification (2.02) as well in Bogard's slides. The problem with it is that usually one is never...
  9. Replies
    581
    Views
    563,775

    Just to clarify, the PBC method is -...

    Just to clarify, the PBC method is - protocol-wise - identical to the PIN method. The only difference is the method of activation (a button) and that the PIN is already known, being '00000000'.

    I...
  10. Replies
    581
    Views
    563,775

    That's what I suspected. It's Realtek without a...

    That's what I suspected. It's Realtek without a doubt.

    What do you mean pixiewps didn't launched the full bruteforce? I'm pretty confident it found the seed but couldn't recover the pin if it...
  11. Replies
    581
    Views
    563,775

    The new pixiewps when modes are not specified...

    The new pixiewps when modes are not specified uses the Pke to try to determine the target. This means it's trying only for Realtek. You should trying manually specifying all the modes --mode...
  12. Replies
    243
    Views
    272,350

    From December 2015 to August 2012 would be (it's...

    From December 2015 to August 2012 would be (it's not correct, please continue reading): --start 12/2015 --end 08/2012

    In CLI programs square parenthesis usually denote some optional...
  13. Replies
    243
    Views
    272,350

    I released version 1.2.2...

    I released version 1.2.2 of pixiewps.

    Most of the work was done to clean up the code, support more platforms, remove OpenSSL dependency (finally!) and add more options. This version has been...
  14. Replies
    243
    Views
    272,350

    @mmusket Thank you offering your help. I...

    @mmusket

    Thank you offering your help. I already got the data I needed and forgot to check back on the forum. Hopefully won't be too long for the final release.

    About RTL867x I (and others)...
  15. Replies
    243
    Views
    272,350

    Hi, I'm currently testing some features I've...

    Hi,
    I'm currently testing some features I've introduced in pixiewps however I still have some troubles with some.

    I wanted to ask if some of you has a Ralink device and can get me some data....
  16. Replies
    243
    Views
    272,350

    We are still looking into RTL816x chipset. We...

    We are still looking into RTL816x chipset. We have have some information about how the nonce might be 'built'. However it's still not enough to implement a feasible bruteforce.
  17. Replies
    581
    Views
    563,775

    The WPS protocol uses the Diffie-Hellman key...

    The WPS protocol uses the Diffie-Hellman key exchange which is a method of securely exchanging cryptographic keys over a public channel. The AP wants to talk to the Client but they don't want anyone...
  18. Replies
    243
    Views
    272,350

    Just a quick update on the state of the...

    Just a quick update on the state of the 'project'.

    I'm really busy at the moment. I'll update/fix pixiewps when I'll be back (2-3 weeks), with (hopefully) some news.
  19. Replies
    243
    Views
    272,350

    The first example is the most general and what...

    The first example is the most general and what you would normally run.

    The second example only shows that you can avoid to specify the Pkr if you have selected small keys in Reaver.

    The last...
  20. Replies
    243
    Views
    272,350

    I've updated pixiewps. Changelog: - Mostly...

    I've updated pixiewps.

    Changelog:
    - Mostly fixes, there were also some leaks of memory (the cracking part was ok though, so don't worry)
    - Removed "modes" from the usage screen and from the...
  21. Replies
    122
    Views
    86,112

    It might be the same problem we had on Reaver due...

    It might be the same problem we had on Reaver due to me adding some extra 3 more spaces on the pixiewps pin print line.

    I think on line 3111 you have to change:


    to:
  22. Replies
    243
    Views
    272,350

    There's something utterly strange in that nonce....

    There's something utterly strange in that nonce. Try to capture a session with Wireshark and see if it matches the nonce reaver prints you.
  23. Replies
    243
    Views
    272,350

    Yes now that pixiewps 1.1 is out we can collect...

    Yes now that pixiewps 1.1 is out we can collect data and decide how to optimize it best in a future release. As I said I run it on my desktop PC which takes only 20 minutes to exaust the keyspace...
  24. Replies
    243
    Views
    272,350

    3 hours...? I can give it a go if you want. It...

    3 hours...?

    I can give it a go if you want. It takes at most 20 minutes on my PC. Send me your data via email or post it here. Of course I assume the router you're testing is yours.
  25. Replies
    243
    Views
    272,350

    I think soxrok is going to upload a new tutorial....

    I think soxrok is going to upload a new tutorial. There are some examples at the bottom of the usage screen. But basically what you want to do normally is launching pixiewps without --force. Then if...
Results 1 to 25 of 54
Page 1 of 3 1 2 3