Difference between revisions of "WPA Attack"

Revision as of 18:39, 29 August 2009

WPA is the precursor to WEP and filled a need as a replacement for the fully disclosed and unsecure WEP encryption.

For an excellent explaination, see the Airolib-ng manual.

pyrit blog - Reference manual - Code details
- Like coWPatty and Airolib-ng
- Pre-compute PMK keys
- Internal database over precomputed ESSID and PMK combinations
- Can export to *.cow (coWPAtty) and *.db (Airolib-ng)
- GPGPU acceleration
- Strip out 4-way handshake from capture file

coWPAtty Main page - coWPAtty project page - Readme
- Like Pyrite and Airolib-ng
- WPA-PSK attack on specific ESSID and captured 4-way handshake dump
- Passthrough from Pyrite possible (GPGPU acceleration)
- Pre-computed PMK tables supported
- genpmk:
  - Generate "Pairwise Master Key" table for a specific ESSID, PMK tables
  - Table-file name should end with *.cow

Airolib-nb
- Like coWPatty and Pyrit
- Precompute TMK keys and attack WPA/WPA2 handshake captures
- Internal SQLite3 database
- Can export and import coWPAtty files

Extra:

Church of Wifi wpa-psk rainbow tables
- Pre-computed TMK key tables, 1 million words computed for the top 1000 SSID's
- 7 and 33 GB torrents
- Hak5 single tables downloads

These are compiled word lists and readily available.

@@ Line 15: / Line 15: @@
 ** Can export to *.cow (coWPAtty) and *.db (Airolib-ng)
 ** GPGPU acceleration
+** Strip out 4-way handshake from capture file
 * '''[http://www.wirelessdefence.org/Contents/coWPAttyMain.htm coWPAtty Main page]''' - [http://www.willhackforsushi.com/Cowpatty.html coWPAtty project page] - [http://www.willhackforsushi.com/code/cowpatty/4.3/README Readme]