[request] reaver for n900 - wps pin brute force hack - Page 3 - maemo.org

meShell | # 21 | 2012-01-03, 18:04 | Report

Reaver v1.3 (working)

Code:

Description:  Release of full command-line commercial Reaver code.
New utility, walsh, to scan for WPS enabled APs.
Added support for small DH keys for speed improvements.
Various bug fixes.

Working on my n900:

Code:

Reaver v1.3 WiFi Protected Setup Attack Tool
Copyright (c) 2011, Tactical Network Solutions, Craig Heffner <cheffner:::tacnetsol.com>

[+] Waiting for beacon from 00:xx:xx:xx:xx:xx
[!] WARNING: Failed to associate with 00:xx:xx:xx:xx:xx (ESSID: XXX XXX XXX)
[!] WARNING: Failed to associate with 00:xx:xx:xx:xx:xx (ESSID: XXX XXX XXX)
[!] WARNING: Failed to associate with 00:xx:xx:xx:xx:xx (ESSID: XXX XXX XXX)
[+] Associated with 00:xx:xx:xx:xx:xx (ESSID: XXX XXX XXX)
[+] 0.01% complete @ 2012-01-03 19:13:27 (40 seconds/attempt)
[+] 0.01% complete @ 2012-01-03 19:14:05 (78 seconds/attempt)
[+] 0.01% complete @ 2012-01-03 19:14:42 (115 seconds/attempt)
[+] 0.01% complete @ 2012-01-03 19:15:20 (153 seconds/attempt)

Edit:

Added the new utility "WALSH".
New utility, walsh, to scan for WPS enabled APs.
... but it seems this one needs some time again until it is working, for me it does nothing, it always displays the help.

Last edited by meShell; 2012-01-04 at 07:53.

The Following 7 Users Say Thank You to meShell For This Useful Post:
bipinbn, Estel, hoggerz, reinob, StefanL, stevomanu, szopin

Estel | # 22 | 2012-01-03, 18:12 | Report

What 'a bit better' means, in case of program that isn't working (on N900) at all? More details, please?

meShell | # 23 | 2012-01-03, 18:13 | Report

Originally Posted by szopin View Post

What fixes did you apply? Revision 42 (the one using sqlite3 as yours) gives me same hanging as before.

reaver Issue 41
http://code.google.com/p/reaver-wps/issues/detail?id=41

I changed as mentioned char -> int.

Now I compiled latest 1.3 stable again and there it is already fixed in sources.

I am running v1.3 right now and it is working.

Originally Posted by szopin View Post

Your version fails to initialize interface (bit better I guess)

You need to run reaver on interface mon0, after mon0 got created by airmon-ng (see first page, I changed example, too).

Code:

reaver -i mon0 -b XX:XX:XX:XX:XX:XX -vv

The Following 3 Users Say Thank You to meShell For This Useful Post:
bipinbn, Estel, szopin

szopin | # 24 | 2012-01-03, 18:23 | Report

Alright, 1.3 (revision 48 currently in trunk at least) works, though superuser privileges required. Sudo that and got some movement

The Following 2 Users Say Thank You to szopin For This Useful Post:
Estel, meShell

meShell | # 25 | 2012-01-03, 18:26 | Report

Originally Posted by szopin View Post

Alright, 1.3 (revision 48 currently in trunk at least) works, though superuser privileges required. Sudo that and got some movement

Ah good you remember me to mention root needed!
I forgot to mention it on first page, I tried to sum up in short (the text in green).

and fixed wrong libpcap-Version in shell commands:

wrong:
wget http://repository.maemo.org/extras-t...emo4_armel.deb

correct:
wget http://repository.maemo.org/pool/mae...+0m5_armel.deb

I will try to clean up the first page threads the next days.

Last edited by meShell; 2012-01-03 at 19:11.

The Following 5 Users Say Thank You to meShell For This Useful Post:
bipinbn, eight, Estel, psychologe, szopin

mr_pingu | # 26 | 2012-01-05, 23:19 | Report

Just compiled my first software ever, I think I done it all right as I got a binary and I copied it to /usr/bin and chmod +x it. Reaver starts fine but it doesn't change PINs. It keeps trying te samen PIN over and over again, everytime I start reaver with these parameters another PIN is tried. However it does not change during run ;o

Is it my compiling noobnes or is it reaver thats buggin me? Installed SDK on VM and compiled it from there with the instructions found on page 1. I even compiled mdk3 but didn't test it yet.

Now I can compile I hope I will bring reaver or mdk3 to the repos once, no promises tho. This feels already like a huge step, the N900 is my only and first linux device ;p Can we compile on the N900 itself?

The Following User Says Thank You to mr_pingu For This Useful Post:
bipinbn

szopin | # 27 | 2012-01-06, 12:19 | Report

Is the AP you are trying it on with WPS/QSS/... enabled? Sounds like it works (if you got injection/monitor mode enabled) but the router is not responding. Maybe the signal is too weak? Does the AP show up in normal connection wizard (from status menu-bar) as WiFi-Protected Setup Compliant?
If you will be packaging it remember to just place symbolic link in /usr/bin and the binary (stripped) on opt

StefanL | # 28 | 2012-01-06, 12:29 | Report

Originally Posted by mr_pingu View Post

Now I can compile I hope I will bring reaver or mdk3 to the repos once, no promises tho. This feels already like a huge step, the N900 is my only and first linux device ;p Can we compile on the N900 itself?

Yes we can

, this is what I had been doing until I recently lost my development setup when reflashing.

gcc, make, etc. are all available from the repos for compiling c programs, you may have to activate some extra repos though. I also had ftoc working on my system and managed to compile some old Fortran77 programs that I wrote back in the DOS days of computing

.

tonypower88 | # 29 | 2012-01-06, 12:58 | Report

Originally Posted by meShell View Post

Reaver v1.3 (working)

Code:

Description:  Release of full command-line commercial Reaver code.
New utility, walsh, to scan for WPS enabled APs.
Added support for small DH keys for speed improvements.
Various bug fixes.

Working on my n900:

Code:

Reaver v1.3 WiFi Protected Setup Attack Tool
Copyright (c) 2011, Tactical Network Solutions, Craig Heffner <cheffner:::tacnetsol.com>

[+] Waiting for beacon from 00:xx:xx:xx:xx:xx
[!] WARNING: Failed to associate with 00:xx:xx:xx:xx:xx (ESSID: XXX XXX XXX)
[!] WARNING: Failed to associate with 00:xx:xx:xx:xx:xx (ESSID: XXX XXX XXX)
[!] WARNING: Failed to associate with 00:xx:xx:xx:xx:xx (ESSID: XXX XXX XXX)
[+] Associated with 00:xx:xx:xx:xx:xx (ESSID: XXX XXX XXX)
[+] 0.01% complete @ 2012-01-03 19:13:27 (40 seconds/attempt)
[+] 0.01% complete @ 2012-01-03 19:14:05 (78 seconds/attempt)
[+] 0.01% complete @ 2012-01-03 19:14:42 (115 seconds/attempt)
[+] 0.01% complete @ 2012-01-03 19:15:20 (153 seconds/attempt)

Edit:

Added the new utility "WALSH".
New utility, walsh, to scan for WPS enabled APs.
... but it seems this one needs some time again until it is working, for me it does nothing, it always displays the help.

please upload the compiled binary from scratchbox

szopin | # 30 | 2012-01-06, 14:00 | Report

Originally Posted by tonypower88 View Post

please upload the compiled binary from scratchbox

1.3, stripped, built on-device

Attached Files

	walsh.tar.gz (74.0 KB, 489 views)
	reaver.tar.gz (115.6 KB, 427 views)

Last edited by szopin; 2012-01-06 at 18:02. Reason: added other binary

The Following 6 Users Say Thank You to szopin For This Useful Post:
bipinbn, casketizer, Estel, Frickelson, Minhaz, StefanL