Jump to content
Hak5 Forums
DataHead

[Release] pixiewps 1.1 & reaver 1.5.2

Recommended Posts

--Some notes on pixiewps.

The cross compiles on this post of pixiewps are no longer needed, as its now in the official pineapple repositories WOOHOO! and can be obtained via:

opkg update && opkg install pixiewps

or sd card install:

opkg update && opkg -d sd install pixiewps

this version of pixiewps requires to be run from bash if you are going to be supplying full CLI arguments to it, the default ssh shell in the pineapple (ash) does not like the long CLI arguments that need to be supplied to pixiewps for it to work properly. so do so after being in a bash shell :)

so before usage, ssh into the pineapple and simply type:

bash

then you can proceed normally to pixiewps's arguments.

and that's all, if you have issues not being able to input the entire hashes, then its because you skipped this part.. and probably on purpose. tsk tsk tsk.

----------------------------------------------------------------------------------------

to install reaver 1.5.x on our pineapples and other big endian openwrt ar71xx routers, simply transfer it to the pineapple, either using sftp or scp.

I personally use FileZilla, its free and available on linux and windows, and has a nice gui for sftp etc.

or on android i use es file explorer and add the pineapples sftp network location, however you want to get it on there, just get it there :)

After you have the ipk on the pineapple ready for install, either on SD or internal memory ( if internal, i'd suggest /tmp )

cd to the directory where you put them, and then opkg install reaver_Big_endian-2_ar71xx.ipk

It's also important that you do not have a packages.zip from an "opkg update", it will fail to install reaver because it wants to check it against the md5 it has for the r113 version of reaver that is available in the repos. if you reboot the pineapple, it should clear out the packages.zip. and do not run opkg update before installing this reaver.

so example if i put it on my sdcard:

--Internal memory install:

cd /sd

opkg install reaver_Big_endian-2_ar71xx.ipk

--SDcard install:

cd /sd

opkg -d sd install reaver_Big_endian-2_ar71xx.ipk

but if you choose to install reaver to the sdcard, just like the previous versions for the pineapple / openwrt you will probably also want to issue the following AFTER installing reaver:

mkdir /etc/reaver

ln -s /sd/etc/reaver/reaver.db /etc/reaver/

ln -s /sd/usr/bin/reaver /usr/bin/

ln -s /sd/usr/bin/wash /usr/bin/

this is due to things not being properly set up during install, so wash and reaver will not work properly if you do not issue the commands above. and that is only for SD installations, internal installations in my experience work perfectly fine.

----------------------------------------------------

I cant put enough emphasis on this, these are not official packages provided from the hak5 team, and there for are NOT supported by them. Until if and or when they add them into their official repos, and you download it from their official repos, this is all installed at YOUR OWN RISK. so using these provided ipk's, do not go to the hak5 team for support for which are not officially provided by them.

i also hold no responsibility for any damage or for your usage that may occur, i can provide the sources and installable ipk's, and can give you my word that their is no malicious code added to these ipk's, they are clean and no infection.

it is your choice and responsibility if you want to use them or not.

You've been warned, now here are the goods :)

------------------------------------------------------------

the main github has been updated to reflect successful compilation in a openwrt environment, if you would like to compile it yourself.

Old build: reaver_r152_ar71xx.ipk 159 KBhttps://mega.co.nz/#!HxBXjBAY!bF44N0IWrtEapVowmRhqGuAUdrZRq5j6B8YLJf6iqZs

Old build: reaver_r152_ar71xx.ipk 159 KBhttps://mega.co.nz/#!65YGTT4I!AIDbIz5qS1__xHS-8GY7bMYZ16zQnTH_oDJXrHX7NHk

OLD BUILD:

reaver_Big_endian-1_ar71xx.ipk 154 KB

https://mega.co.nz/#!W8BylCLB!HvrMr-PBwRU4fda1NQssUeOKNaIt13-Ps_d-TL6W0hQ

NEW BUILD

reaver_Big_endian-2_ar71xx 154 KB

https://mega.nz/#!C9oiSDxI!aaZa7MacA1FpFlanz7mLF4RF7QDw86ldK731Iy5e9Q8

This update reflects some needed memory improvements

----------------------------------------------------------------------

new features and bug fixes.

important note, -vvv (yes that 3 v's) is now used to display "PixieHashes" you must use this now instead of -vv.

also, we've added auto hash logging with the -H switch.

so if coupled with -vvv and or -P or -K 1 etc, it will save a log of all the hashes gathered with a filename of the target bssid [macaddress].pixie in the executing directory, so make sure you cd /sd first!

this file also includes a full command ready for putting into pixiewps, or you can chmod +x the file, and just run it as a script to auto crack the hashes.

there has also been a new default pin generator added :)

----------------------------------------------------------------------

I've now pushed the updates of the source to the repositories, and created a separate branch for our big endian processors here,

if you would like to review the source code and or compile it yourself.

https://github.com/t6x/reaver-wps-fork-t6x/tree/Big_endian

------------------------------------------------------------

For more information on these tools, see:

pixiewps:

https://github.com/wiire/pixiewps

reaver 1.5.x:

https://github.com/t6x/reaver-wps-fork-t6x

https://github.com/t6x/reaver-wps-fork-t6x/tree/Big_endian

reaver 1.5.x is a modified addition in which heavily incorporates pixiewps and other tools, features & outputs for the offline bruteforce of WPS Pin numbers, also known as the "Pixie Dust" attack, on top of its standard WPS functionality.

these are provided "as is" and expect there to be bugs, as I'm sure there might be issues in some areas with its usage on openwrt.

Be smart, be safe, and don't do anything that may be illegal in your country. check with your local laws before using these tools.

Edited by DataHead
  • Upvote 3

Share this post


Link to post
Share on other sites

reaver 1.5.2 has been updated to reflect the latest master fork bugfixes and changes.

new download link:

reaver_r152_ar71xx.ipk 159 KB
https://mega.co.nz/#!65YGTT4I!AIDbIz5qS1__xHS-8GY7bMYZ16zQnTH_oDJXrHX7NHk
Edited by DataHead

Share this post


Link to post
Share on other sites

This is a nice share, i know you have worked hard on this release.

Will try these out later on when i'm home.

  • Upvote 1

Share this post


Link to post
Share on other sites

Great work Datahead its working nicely :)

Keep it up fella

  • Upvote 1

Share this post


Link to post
Share on other sites

Tested, works wonders! Haven't had any issues yet, although the brute force (-f) takes considerably longer than a laptop/PC, but that's due to the Pineapple's low specs.

Edited by crazyclown
  • Upvote 1

Share this post


Link to post
Share on other sites

Tried to download the pixie ipk and it is asking for a decryption key on Mega?

The Hyperlinks are cut in two... Try copying and pasting the links instead. This worked for me.

Share this post


Link to post
Share on other sites

PixiWPS is now also available in the normal opkg repositories.

Simply run "opkg update && opkg install pixiwps".

Reaver has not been updated yet, but it should follow shortly.

Best Regards,

Sebkinne

  • Upvote 2

Share this post


Link to post
Share on other sites

Any chance of something like autopixiewps, or aanarchyys wifite mod to work on this?

Using wash or pixie by themselves show everything as normal, but the other tools fsil to see anything with WPS.

I havent taken a lool at the code, so I dont know how they are searching for wps locations.

Was anything major changed when this was ported over?

Thanks.

Im just lazy and dont like typing everything for pixie, so consider this a very liw priority request.

Ill try and figure out what the two scripts are doing in order to scan for wps.

Share this post


Link to post
Share on other sites

There seem to be issues with wifite and such with the current build ( even on kali ) not displaying wps functionality. Me and t6x been talking about it,trying to see if we should revert some changes or implement an improvement fix for it.

  • Upvote 1

Share this post


Link to post
Share on other sites

I think that wifite-ng also require autopixie.py to be running properly.

I have no issues with wifite-ng on kali with autopixie.py

whenever I move to the pineapple, autopixie doesnt find any wps APs, therefore neither does wifite-ng.

Share this post


Link to post
Share on other sites

Autopixie does redirect some files to be written to the root execution folder, if you look for like wash redirect outputs on the pineapple while its running, open them and please report back if they are properly populated. I cant think of the naming of the outputs that autopixiewps does at the moment, but i do know they Should be there

Edited by DataHead

Share this post


Link to post
Share on other sites

Ok I just tryed with firmware 2.3.0 and I get the next message

opkg update && opkg install pixiewps
Downloading http://cloud.wifipineapple.com/mk5/packages/Packages.gz.
Updated list of available packages in /var/opkg-lists/pineapple_packages.
Installing pixiewps (1.1) to root...
Downloading http://cloud.wifipineapple.com/mk5/packages/pixiewps_1.1_ar71xx.ipk.
wget: server returned error: HTTP/1.1 404 Not Found
Collected errors:
 * opkg_download: Failed to download http://cloud.wifipineapple.com/mk5/packages/pixiewps_1.1_ar71xx.ipk, wget returned 1.
 * opkg_install_pkg: Failed to download pixiewps. Perhaps you need to run 'opkg update'?
 * opkg_install_cmd: Cannot install package pixiewps.

it´s the pixiewps_1.1_ar71xx.ipk available? or i need ti install it as DataHead explains? (DataHead thank´s for your work man!!!)

Share this post


Link to post
Share on other sites

Ok I just tryed with firmware 2.3.0 and I get the next message

opkg update && opkg install pixiewps
Downloading http://cloud.wifipineapple.com/mk5/packages/Packages.gz.
Updated list of available packages in /var/opkg-lists/pineapple_packages.
Installing pixiewps (1.1) to root...
Downloading http://cloud.wifipineapple.com/mk5/packages/pixiewps_1.1_ar71xx.ipk.
wget: server returned error: HTTP/1.1 404 Not Found
Collected errors:
 * opkg_download: Failed to download http://cloud.wifipineapple.com/mk5/packages/pixiewps_1.1_ar71xx.ipk, wget returned 1.
 * opkg_install_pkg: Failed to download pixiewps. Perhaps you need to run 'opkg update'?
 * opkg_install_cmd: Cannot install package pixiewps.

it´s the pixiewps_1.1_ar71xx.ipk available? or i need ti install it as DataHead explains? (DataHead thank´s for your work man!!!)

Sorry, there was a typo in the filename. It should work now.

Best Regards,

Sebkinne

  • Upvote 2

Share this post


Link to post
Share on other sites

Sorry, there was a typo in the filename. It should work now.

Best Regards,

Sebkinne

Ok, now works perfectly.... thanks ;)

Share this post


Link to post
Share on other sites

the issues with the 3rd party scripts, such as wifite, need to have the "-C" switch removed from the wash command line, aanarchyys wifite-ng reflects this change, and should be good to go. I havent been able to test if it works on a pineapple but it should.

Share this post


Link to post
Share on other sites

Also, im working on some slight memory improvements for the openwrt builds of reaver 1.5.2. So i might be throwing memory improvement test builds up here in the near future.

  • Upvote 1

Share this post


Link to post
Share on other sites

Also, im working on some slight memory improvements for the openwrt builds of reaver 1.5.2. So i might be throwing memory improvement test builds up here in the near future.

Thanks for the update, i have just reflashed my pineapple it had few issue's going to give this pixiewps a try with the pineapple.

Share this post


Link to post
Share on other sites

Released a video on how to do this for anyone curious...

Edited by ZaraByte
  • Upvote 1

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now


  • Recently Browsing   0 members

    No registered users viewing this page.

×