NetStumbler.org Forums

Go Back   NetStumbler.org Forums > Software > Unix/Linux
Reload this Page Cowpatty problem
Register Search Today's Posts Mark Forums Read

Reply
 
LinkBack Thread Tools Display Modes
Old 02-26-2006   #1 (permalink)
t436h05t
Registered Member
 
Join Date: Feb 2006
Posts: 1
Cowpatty problem
For some reason cowpatty is not cracking the given test dump file.
Code:
cowpatty -r eap-test.dump -f dict -s somethingclever
cowpatty 3.0 - WPA-PSK dictionary attack. <jwright@hasborg.com>

Collected all necessary data to mount crack against passphrase.
Starting dictionary attack.  Please be patient.
Unable to identify the PSK from the dictionary file. Try expanding your
passphrase list, and double-check the SSID.  Sorry it didn't work out.

1 passphrases tested in 0.07 seconds:  14.90 passphrases/second
Heres with -vvv
Code:
root@slax:~/Desktop/cowpatty-3.0/cowpatty-3.0# cowpatty -r eap-test.dump -f dict -s somethingclever -vvv
cowpatty 3.0 - WPA-PSK dictionary attack. <jwright@hasborg.com>


         0002 6f01 b8fb 000c 413f 313e 888e 0103  ..o.....A?1>....
         005f fe00 8900 2000 0000 0000 0000 008a  ._.... .........
         4b70 c7b3 68ba c5b4 476a 9e60 7127 0d1d  Kp..h...Gj.`q'..
         5734 e484 cf09 ddd3 f299 66e2 0136 de00  W4........f..6..
         0000 0000 0000 0000 0000 0000 0000 0000  ................
         0000 0000 0000 0000 0000 0000 0000 0000  ................
         0000 0000 0000 0000 0000 0000 0000 0000  ................
         00                                       .

         000c 413f 313e 0002 6f01 b8fb 888e 0103  ..A?1>..o.......
         0077 fe01 0900 2000 0000 0000 0000 0028  .w.... ........(
         9f35 c243 25dd a9e7 73a1 1cd0 416a 8806  .5.C%...s...Aj..
         22c3 589a 3788 6e31 8120 a7e0 ad68 dd00  ".X.7.n1. ...h..
         0000 0000 0000 0000 0000 0000 0000 0000  ................
         0000 0000 0000 0000 0000 0000 0000 00dd  ................
         6424 95d0 0611 bdf9 332d 9c0d 9991 e100  d$......3-......
         18dd 1600 50f2 0101 0000 50f2 0201 0000  ....P.....P.....
         50f2 0201 0000 50f2 02                   P.....P..

         0002 6f01 b8fb 000c 413f 313e 888e 0103  ..o.....A?1>....
         0077 fe01 c900 2000 0000 0000 0000 018a  .w.... .........
         4b70 c7b3 68ba c5b4 476a 9e60 7127 0d1d  Kp..h...Gj.`q'..
         5734 e484 cf09 ddd3 f299 66e2 0136 de00  W4........f..6..
         0000 0000 0000 0000 0000 0000 0000 0000  ................
         0000 0000 0000 0000 0000 0000 0000 00b6  ................
         5900 1fe2 9b26 c4f7 675f 19f5 fc7b 2900  Y....&..g_...{).
         18dd 1600 50f2 0101 0000 50f2 0201 0000  ....P.....P.....
         50f2 0201 0000 50f2 02                   P.....P..

         000c 413f 313e 0002 6f01 b8fb 888e 0103  ..A?1>..o.......
         005f fe01 0900 2000 0000 0000 0000 0128  ._.... ........(
         9f35 c243 25dd a9e7 73a1 1cd0 416a 8806  .5.C%...s...Aj..
         22c3 589a 3788 6e31 8120 a7e0 ad68 dd00  ".X.7.n1. ...h..
         0000 0000 0000 0000 0000 0000 0000 0000  ................
         0000 0000 0000 0000 0000 0000 0000 00c0  ................
         1687 3ee6 bb01 499d 77bd e7c5 e7a4 be00  ..>...I.w.......
         00                                       .
Collected all necessary data to mount crack against passphrase.
AA is:
         000c 413f 313e                           ..A?1>

SPA is:
         0002 6f01 b8fb                           ..o...

snonce is:
         289f 35c2 4325 dda9 e773 a11c d041 6a88  (.5.C%...s...Aj.
         0622 c358 9a37 886e 3181 20a7 e0ad 68dd  .".X.7.n1. ...h.


anonce is:
         8a4b 70c7 b368 bac5 b447 6a9e 6071 270d  .Kp..h...Gj.`q'.
         1d57 34e4 84cf 09dd d3f2 9966 e201 36de  .W4........f..6.


keymic is:
         c016 873e e6bb 0149 9d77 bde7 c5e7 a4be  ...>...I.w......


eapolframe is:
         0103 005f fe01 0900 2000 0000 0000 0000  ..._.... .......
         0128 9f35 c243 25dd a9e7 73a1 1cd0 416a  .(.5.C%...s...Aj
         8806 22c3 589a 3788 6e31 8120 a7e0 ad68  ..".X.7.n1. ...h
         dd00 0000 0000 0000 0000 0000 0000 0000  ................
         0000 0000 0000 0000 0000 0000 0000 0000  ................
         00c0 1687 3ee6 bb01 499d 77bd e7c5 e7a4  ....>...I.w.....
         be00                                     .. 00                                       .

Starting dictionary attack.  Please be patient.
Testing passphrase: family movie night
".lculating PMK for "family movie night
PMK is
         7a60 1ce3 0f63 4428 369f c0f7 2c65 db2b  z`...cD(6...,e.+
         29df 7bc2 747a b5ba d473 87db 65f5 bfc5  ).{.tz...s..e...

Calculating PTK with collected data and PMK.
" isulated PTK for "family movie night
         ebea 19db b1b6 a5d9 0772 c749 2ffa 8535  .........r.I/..5
         390c 2193 53b5 cc5f fae5 534b 056b 0130  9.!.S.._..SK.k.0
         95d9 377b 1504 63ea ad68 4ef0 281c 796e  ..7{..c..hN.(.yn
         deff 1af6 e71c f103 0989 417d adce ba0c  ..........A}....

Calculating hmac-MD5 Key MIC for this frame.
" isulated MIC with "family movie night
         dd4e 4972 9b15 88c0 8f3b 124f 3ddf a1af  .NIr.....;.O=...

Testing passphrase:
 (1).id passphrase length:
Unable to identify the PSK from the dictionary file. Try expanding your
passphrase list, and double-check the SSID.  Sorry it didn't work out.
Any help would be appreacated
Last edited by Thorn : 02-27-2006 at 06:35 AM. Reason: Formatting
t436h05t is offline   Reply With Quote
Old 02-26-2006   #2 (permalink)
renderman
Drunken Stumbler
 
renderman's Avatar
 
Join Date: Jun 2002
Location: Anywhere but Utah
Posts: 1,803
Open the passpharase file in vi, is there a '^H' at the end of each line of the file? If so, it's in windows file format and the '^H' control character is being integrated into the passphrase.

Alternatly, re-download and compile cowpatty in a unix only environment and try again (no like it's a large file).
renderman is offline   Reply With Quote
Old 02-27-2006   #3 (permalink)
syn-ack
Kirchhoff==Woot
 
syn-ack's Avatar
 
Join Date: Oct 2004
Posts: 86
Quote:
Originally Posted by renderman
Open the passpharase file in vi, is there a '^H' at the end of each line of the file? If so, it's in windows file format and the '^H' control character is being integrated into the passphrase.

Alternatly, re-download and compile cowpatty in a unix only environment and try again (no like it's a large file).

You may also want to try the crack with Aircrack just for S&G...if both progs fail...the error maybe else where. (like render stated, check for extra characters in the files...win2unixfs.)

Just my 2pents
syn-ack is offline   Reply With Quote
Old 02-27-2006   #4 (permalink)
SignalSeeker
Badger in heat
 
SignalSeeker's Avatar
 
Join Date: Jun 2004
Location: Sacramento, CA
Posts: 414
If I remember correctly Win32Pad works in the same way.

Justin
SignalSeeker is offline   Reply With Quote
Old 02-27-2006   #5 (permalink)
wham
Registered Member
 
Join Date: Feb 2005
Location: /dev/urandom
Posts: 305
I see the problem. It is a line break issue, I think.

Code:
Starting dictionary attack.  Please be patient.
Testing passphrase: family movie night
".lculating PMK for "family movie night
PMK is
         7a60 1ce3 0f63 4428 369f c0f7 2c65 db2b  z`...cD(6...,e.+
         29df 7bc2 747a b5ba d473 87db 65f5 bfc5  ).{.tz...s..e...

Calculating PTK with collected data and PMK.
" isulated PTK for "family movie night
The quotation marks got messed up somehow. It is supposed to say
Isolated PTK for "family movie night"
Why doncha try this? It's the one I use.
Here is the openwall password list FTP. ftp://ftp.ibiblio.org/pub/linux/dist...all/wordlists/
Last edited by wham : 03-01-2006 at 11:06 PM.
wham is offline   Reply With Quote
Reply

« 2Wire Card & Kismet | airforge »

Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



Google
 
Web NetStumbler.org

All times are GMT -7. The time now is 01:08 AM.

Contact Us - NetStumbler.org - NetStumbler.com - Online Backup - Archive - Top

Powered by vBulletin® Version 3.6.8
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.0.0 ©2007, Crawlability, Inc.


All messages express the views of the author and are for entertainment purposes only. Netstumbler.org cannot be held responsible for the authenticity of the content or the actions of its members. By using this site and its services, you warrant that you will not post any messages that are discriminating, obscene, hateful, threatening, or otherwise violates any laws and you release Netstumbler.org from any future claims of any kind whatsoever including, but not limited to, addiction and loss of productivity. All forum messages, private messages and any other content are properties of Netstumbler.org. Even if publicly available, personal or copyrighted information are not to be posted without the consent of the owner. Distribution of licensed and copyrighted materials in any way not endorsed by the copyright owner is strictly prohibited. You may not use this site and its resources to spam other sites or individuals or perform any action that violates any law. Items sold or bought in the For Sale forum are sold as is and no warranty or insurance of any kind is provided. Netstumbler.org cannot be held responsible for the outcome of any transactions and no warranty of any kind is provided, either express or implied. Vulgar words are not allowed in the subject lines ; they may be used in the message body in any forum. The Administrator, Super Moderators and Moderators of Netstumbler.org have the right to remove, edit, move or close any thread for any reason and to reveal your identity and other known information in the event of a complaint or legal action arising from any message posted by you.