Cracking WPA2 with Hashcat

Thursday

Aug082013

Thursday, August 8, 2013 at 3:24PM

So for all those who got to see the show at Defcon's wireless village, that talk focused more on the drinking of the Rolling Rock than the cracking of the hashes.

I said in my ramblings that it was really really really easy.

Here is a how to... with some example files for you to follow along with.

First you want to capture some traffic. I leave the logistics of how up to you.

For this demo, we will be using a file which I grabbed online from the wireshark wiki.

http://wiki.wireshark.org/SampleCaptures?action=AttachFile&do=get&target=wpa-Induction.pcap

Now that you have some traffic in the form of a PCAP, fire up wireshark.

First thing I do is enter "eapol" in the search window. This confirms we have a handshake. You can skip this step if you really really want to but remember the whole trust but verify.

Since WPA/2 salts with the SSID, it can help to know what that is. Using the find menu in wireshark, search for the string SSID.

So the SSID is named "Coherer" which is good because at least it isn't Linksys.

Now here is the hardest part. You need to convert your pcap file to a hccap file. Hashcat has a cloud version of the tool which works awesome. You can run some command line tools as well but the point of the talk was to not use aircrack.

https://hashcat.net/cap2hccap/

In real life, we all use aircrack so you can use 2 different commands.

I have used this...

aircrack-ng <cap> -J <hccap>

This could work as well...

wpaclean <out> <in>

wpaclean can damage your file so backup if you want to give it a try.

Now you have your hccap file.

Download the latest version of oclHashcat from here.

Run this below:

cudaHashcat-plus64.exe --hash-type 2500 wpa.hccap dict.txt

For the demo I used a dictionary with 1 word for demo speed but that word is in the rockyou list (entry 922007).

I use cudaHashcat-plus64.exe because I have a nVidia card as well as a 64 bit system. The base application may change but the flags are the same and the passwords are still weak.

Happy cracking!

References (31)

References allow you to track sources for this article, as well as articles that were written in response to this article.

Response: Cheap Jets Jerseys

at Cheap Jets Jerseys on October 17, 2013

NFL is really one particular of the biggest sports in America. It has a big following.
Response: Cheap UGG Sundance II Boots

at Cheap UGG Sundance II Boots on October 18, 2013

Football is actually a single of the largest sports in America. It has a key following.
Response: antivirus online

at antivirus online on December 1, 2013

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: game cheats

at game cheats on December 18, 2013

[...]Cracking WPA2 with Hashcat - Blog - n00bz Network[...]
Response: click the following post

at click the following post on March 22, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: can diabetes be reversed

at can diabetes be reversed on March 23, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: hair loss cure for women

at hair loss cure for women on April 1, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: how to reverse type 1 diabetes

at how to reverse type 1 diabetes on April 2, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: pre diabetes treatment

at pre diabetes treatment on April 2, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: medication for type 1 diabetes

at medication for type 1 diabetes on April 9, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: Clean-outs in Sussex County NJ

at Clean-outs in Sussex County NJ on May 7, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: chevy cruze tail lights

at chevy cruze tail lights on May 14, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: selling on amazon

at selling on amazon on May 14, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: does Slim Spray work

at does Slim Spray work on May 14, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: local business

at local business on May 30, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: http://hotelstogoto.weebly.com

at http://hotelstogoto.weebly.com on June 2, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: stock markets

at stock markets on June 2, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: hotelopia coupon

at hotelopia coupon on June 4, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: Long island SEO

at Long island SEO on June 8, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: mehr Xovilichter anzeigen

at mehr Xovilichter anzeigen on June 16, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: why not try here

at why not try here on July 8, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: fake oakley sunglasses

at fake oakley sunglasses on July 14, 2014

Nowadays we shall speak for you about the stylish range of Oakley sunglasses that you want to put on
Response: www.jok.md

at www.jok.md on July 16, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: voucher code for jessops

at voucher code for jessops on July 26, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: argos

at argos on July 26, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: Church Staffing

at Church Staffing on July 28, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: http://www.tubesniperpro.net/profile/NevaQDYJ

at http://www.tubesniperpro.net/profile/NevaQDYJ on July 30, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: http://www.lusca.org/

at http://www.lusca.org/ on July 30, 2014

Cracking WPA2 with Hashcat - Blog - n00bz Network
Response: 828琉璃瓦机

at 130T锅炉布袋除尘器 on March 29, 2018

http://www.jlhbsbc.com/product/guoluchuche http://www.jlhbsbc.com/product/guoluchuchenqi/2017/0807/8647.html nqi/2017/0807/8647.html PRODUCT CLASS 网站首页网站首页关于我们产品中心公司新闻技术文档研发与服务 ...
Response: 675角驰机

at 4吨锅炉布袋除尘器 on March 29, 2018

http://www.jlhbsbc.com/product/guoluchuchenqi/2017/0809/8673.html http://www.jlhbsbc.com/product/guoluch 油烟净化器设备系列 uchenqi/2017/0809/8673.html PRODUCT CLASS 油烟净化器设备系列 ...
Response: Delta Force Black Hawk Down here

by sam ali at delta force 2018 on April 17, 2018

Reader Comments

There are no comments for this journal entry. To create a new comment, use the form below.

Post a New Comment

Enter your information below to add a new comment.

My response is on my own website »

Author:

Author Email (optional):

Author URL (optional):

Post:

↓ | ↑

Some HTML allowed: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <code> <em> <i> <strike> <strong>

n00bz Network

NewServers:

Bare Metal Cloud