Incomplete four-way handshake

Postby wham » Thu Jan 19, 2006 10:04 am

theprez98 wrote:Until then I know I would do whatever I could to help, I just need a little help in getting started.


From the hallowed halls of the Church of Wifi..

" wrote:
The new 'genpmk' program will allow you to hash a password list (UNIX format text file) and save it to an output file. This is still a time-consuming process, however the new coWPAtty version supports input from genpmk hash tables and allows for subsiquent lookups on the same SSID to be nearly instantanious.

A demo at Shmoocon showed that computing the keys to test on-site led to ~12 keys/sec being tested. Applying a hash file, precomputed on a much more powerful machine led to the testing of 18,000 keys/sec. 3 orders of magnitude increase!

Since each Pairwise Master Key is seeded with the SSID of the network it's on, it's imposssible to make up one table for all combinations, you'd have to do up such a table for every possible SSID. The space requirements are enormous. However you can now at least pre-hash default lists and common words for your known SSID's

The CoWF in a seperate project has pre-hashed a password list of 170,000 words against the top 1000 SSID's in the Wigle.net database to give people a place to start.

If you hash out a large table, please drop either myself or Joshua a line and a copy so we can see about in

This is not an official download site, but at the moment, it's the only one.
wham
Mini Stumbler
 
Posts: 304
Joined: Mon Feb 21, 2005 6:21 pm
Location: /dev/urandom

Postby changlinn » Wed Dec 19, 2007 3:26 pm

found this through google, sorry to resurrect an old thread.
But surely having the ssid be part of the hash would make the hash easier to decrypt, you have part of it un-encrypted if the ap has ssid broadcast enabled?
Or maybe you could then hash the ssid find that part in the hash of the packet and then decrypt the rest using a standard rainbow table?
changlinn
Mini Stumbler
 
Posts: 4
Joined: Sun Nov 06, 2005 10:33 pm

Postby renderman » Wed Dec 19, 2007 4:06 pm

Educate yourself: The Renderlab: Church of Wifi WPA-PSK Rainbow Tables

The SSID is used to salt the passphrase before it is hashed, thus a network with the passphrase 'password' and an SSID of 'linksys' will end up different than a network with the ssid of 'tsunami'
User avatar
renderman
 
Posts: 1867
Joined: Thu Jun 06, 2002 5:29 pm
Location: Anywhere but Utah

Postby Barry » Wed Dec 19, 2007 4:38 pm

renderman wrote:Educate yourself: The Renderlab: Church of Wifi WPA-PSK Rainbow Tables

The SSID is used to salt the passphrase before it is hashed, thus a network with the passphrase 'password' and an SSID of 'linksys' will end up different than a network with the ssid of 'tsunami'


Good old cisco. ;)
Never do anything you don't want to explain to the paramedics.
User avatar
Barry
 
Posts: 5713
Joined: Sat Dec 28, 2002 11:10 pm
Location: Ohio

Postby changlinn » Fri Dec 21, 2007 4:12 am

Thanks very much for the link Renderman, I wasn't aware WPA worked like that.
Btw respect for all your work.
changlinn
Mini Stumbler
 
Posts: 4
Joined: Sun Nov 06, 2005 10:33 pm

Previous

Return to Unix/Linux

Who is online

Users browsing this forum: No registered users and 4 guests

cron