Jump to content

Sit back, relax, and automate your WPA pen-test workload with ohc-api.sh. (Also persistent handshake loot!)


sailboatanon
 Share

Recommended Posts

This simple bash script for the Hak Wifi Pineapple Mark VII features persistent handshake storage and automatically submits your handshakes to this wonderful service (onlinehashcrack.com)!

You will receive an email confirmation and upon completion! Sit back, relax, and automate your WPA pen-test workload with ohc-api.sh.

https://github.com/sailboat-anon/wifi-pineapple-mark-vii

install and use

 wget https://raw.githubusercontent.com/sailboat-anon/wifi-pineapple-mark-vii/main/scripts/ohc-api.sh
 nano ohc-api.sh
 (change the receiving email address, 'email=')
 chmod a+x ohc-api.sh
 ./ohc-api.sh 

 

You'll likely want to run this on a schedule (default: 5min)

export VISUAL=nano; crontab -e
*/5 * * * * /pineapple/ohc-api.sh

workflow:

  • capture handshakes using mark vii
  • handshakes are moved from /tmp to /root/loot/handshakes
  • handshakes are sent to the onlinehashcrack.com api, user receives an email confirmation and upon completion
  • (be sure to set the 'email' variable below to your email address)
  • submitted handshakes in /root/loot/handshakes are renamed 'submitted-.cpab'

persistent handshake storage: /root/loot/handshakes

transaction logs: /root/loot/handshakes/logs

  • Like 1
  • Thanks 1
Link to comment
Share on other sites

  • 2 weeks later...
  • 1 month later...

Installed 1.0.2 firmware and noticed scipt has been replaced with loot-and-scoot.sh but getting following errors when running it.

 

> Checking for unsubmitted handshakes
> Unsubmitted handshakes FOUND, uploading to api.onlinehashcrack.com
cp: can't stat '*.pcap': No such file or directory
curl: (26) Error
curl: (26) Error
curl: (26) Error
curl: (26) Error
Cleaning up...
mv: can't rename '/tmp/handshakes//tmp/handshakes/0C-F9-C0-08-04-F6_partial.pcap': No such file or directory
mv: can't rename '/root/loot/handshakes//tmp/handshakes/0C-F9-C0-08-04-F6_partial.pcap': No such file or directory
mv: can't rename '/tmp/handshakes//tmp/handshakes/88-F8-72-23-4D-55_partial.pcap': No such file or directory
mv: can't rename '/root/loot/handshakes//tmp/handshakes/88-F8-72-23-4D-55_partial.pcap': No such file or directory
Output:
> Submitted /tmp/handshakes/0C-F9-C0-08-04-F6_partial.pcap to onlinehashcrack.com
> Submitted /tmp/handshakes/0C-F9-C0-08-04-F6_partial.pcap to wpa-sec.stanev.org
> Submitted /tmp/handshakes/88-F8-72-23-4D-55_partial.pcap to onlinehashcrack.com
> Submitted /tmp/handshakes/88-F8-72-23-4D-55_partial.pcap to wpa-sec.stanev.org

 

Link to comment
Share on other sites

  • 1 month later...

Looking at the errors you posted and checking the bash script, it's pretty obvious that it will throw errors. That bash script needs some adjustments to work properly. Just follow the errors and match them with the bash script and you'll see where it needs some changes.

Link to comment
Share on other sites

  • 1 month later...
  • 2 weeks later...

I still can't get this working but alternatively the pineapple-m7 already has a tool installed on it that is pretty close to the same thing--->besside-ng

Open up the webshell or ssh into the pineapple and just as an example type the following and hit enter:

besside-ng -vv wlan1mon

I'd say more but it may be off topic & I don't want to be fixated on besside-ng in this thread & I'll start a topic if there are none.

Thanks for reading

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...