crack wpa

rovy9830

Member
Feedback: 0 / 0 / 0
Joined
Sep 9, 2021
Messages
15
Reaction score
8
Credits
111
I would like to crack attached wpa handshake file.

ESSID: fambulut
BSSID: 00:31:92:25:A8:52
Known Default Mask: Unknown
Attempts already made: darkc0de,rockyou,gpuhash
 

Attachments

  • capture.zip
    227.5 KB · Views: 6

pasnger57

Active member
Contributor
Feedback: 4 / 0 / 0
Joined
Dec 30, 2019
Messages
3,531
Reaction score
1,127
Credits
7,291
┌──(pasnger57㉿kali)-[~/Desktop]
└─$ hcxpcapngtool capture.cap -o fambulut.22000
reading from capture.cap...

summary capture file
--------------------
file name................................: capture.cap
version (pcap/cap).......................: 2.4 (very basic format without any additional information)
timestamp minimum (GMT)..................: 05.08.2021 14:30:38
timestamp maximum (GMT)..................: 05.08.2021 15:46:21
used capture interfaces..................: 1
link layer header type...................: DLT_IEEE802_11 (105)
endianess (capture system)...............: little endian
packets inside...........................: 44407
BEACON (total)...........................: 8
ACTION (total)...........................: 6
PROBEREQUEST.............................: 408
PROBERESPONSE............................: 582
DEAUTHENTICATION (total).................: 40971
AUTHENTICATION (total)...................: 2
AUTHENTICATION (OPEN SYSTEM).............: 2
ASSOCIATIONREQUEST (total)...............: 1
ASSOCIATIONREQUEST (PSK).................: 1
WPA encrypted............................: 139
EAPOL messages (total)...................: 4
EAPOL RSN messages.......................: 4
ESSID (total unique).....................: 5
EAPOLTIME gap (measured maximum usec)....: 10757
EAPOL ANONCE error corrections (NC)......: not detected
EAPOL M1 messages (total)................: 1
EAPOL M2 messages (total)................: 2
EAPOL M4 messages (total)................: 1
EAPOL pairs (total)......................: 2
EAPOL pairs (best).......................: 1
EAPOL pairs written to combi hash file...: 1 (RC checked)
EAPOL M12E2 (challenge)..................: 1

Warning: out of sequence timestamps!
This dump file contains frames with out of sequence timestamps.
That is a bug of the capturing tool.

Warning: too many deauthentication/disassociation frames detected!
That can cause that an ACCESS POINT change channel, reset EAPOL TIMER,
renew ANONCE and set PMKID to zero.
This could prevent to calculate a valid EAPOL MESSAGE PAIR
or to get a valid PMKID.

Warning: missing frames!
This dump file does not contain enough EAPOL M1 frames.
It always happens if the capture file was cleaned or
it could happen if filter options are used during capturing.
That makes it impossible to calculate nonce-error-correction values.

it may be time to use the aireplay-ng -0 5 my help your issue
 

rovy9830

Member
Feedback: 0 / 0 / 0
Joined
Sep 9, 2021
Messages
15
Reaction score
8
Credits
111
┌──(pasnger57㉿kali)-[~/Desktop]
└─$ hcxpcapngtool capture.cap -o fambulut.22000
reading from capture.cap...

summary capture file
--------------------
file name................................: capture.cap
version (pcap/cap).......................: 2.4 (very basic format without any additional information)
timestamp minimum (GMT)..................: 05.08.2021 14:30:38
timestamp maximum (GMT)..................: 05.08.2021 15:46:21
used capture interfaces..................: 1
link layer header type...................: DLT_IEEE802_11 (105)
endianess (capture system)...............: little endian
packets inside...........................: 44407
BEACON (total)...........................: 8
ACTION (total)...........................: 6
PROBEREQUEST.............................: 408
PROBERESPONSE............................: 582
DEAUTHENTICATION (total).................: 40971
AUTHENTICATION (total)...................: 2
AUTHENTICATION (OPEN SYSTEM).............: 2
ASSOCIATIONREQUEST (total)...............: 1
ASSOCIATIONREQUEST (PSK).................: 1
WPA encrypted............................: 139
EAPOL messages (total)...................: 4
EAPOL RSN messages.......................: 4
ESSID (total unique).....................: 5
EAPOLTIME gap (measured maximum usec)....: 10757
EAPOL ANONCE error corrections (NC)......: not detected
EAPOL M1 messages (total)................: 1
EAPOL M2 messages (total)................: 2
EAPOL M4 messages (total)................: 1
EAPOL pairs (total)......................: 2
EAPOL pairs (best).......................: 1
EAPOL pairs written to combi hash file...: 1 (RC checked)
EAPOL M12E2 (challenge)..................: 1

Warning: out of sequence timestamps!
This dump file contains frames with out of sequence timestamps.
That is a bug of the capturing tool.

Warning: too many deauthentication/disassociation frames detected!
That can cause that an ACCESS POINT change channel, reset EAPOL TIMER,
renew ANONCE and set PMKID to zero.
This could prevent to calculate a valid EAPOL MESSAGE PAIR
or to get a valid PMKID.

Warning: missing frames!
This dump file does not contain enough EAPOL M1 frames.
It always happens if the capture file was cleaned or
it could happen if filter options are used during capturing.
That makes it impossible to calculate nonce-error-correction values.

it may be time to use the aireplay-ng -0 5 my help your issue
I tried using aireplay-ng -0 5 but not able to capture handshake.
 

pasnger57

Active member
Contributor
Feedback: 4 / 0 / 0
Joined
Dec 30, 2019
Messages
3,531
Reaction score
1,127
Credits
7,291
I tried using aireplay-ng -0 5 but not able to capture handshake.
ok do you understand the full Process to capture one ?
you have to use the tool 1 is used on its own tools 2 and 3 are used together
1. to engage the interface to monitor mode (airmon-ng)
2 using a recording tool (airodump-ng--ng,wireshark)
3. aireplay-ng (de(fake)auth)

flags for each tool can be tricky but just refer to the tools help as much as you need to till you get
 

rovy9830

Member
Feedback: 0 / 0 / 0
Joined
Sep 9, 2021
Messages
15
Reaction score
8
Credits
111
I have captured handshake. Here you go.
 

Attachments

  • handshake.zip
    328 KB · Views: 3
Top