hashcat Forum

Full Version: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
You're currently viewing a stripped down version of our content. View the full version with proper formatting.
Hallo ZerBea. I can not find the files cracked.txt.gz and rkg.txt.gz of my nets in wpa-sec.stanev.org in order to download them.
I woul appreciate your help, or anybodyelses. Thanks
Well, I think I found rkg.txt.gz in the Dicts section.

By the way, I would like to congat you for your great effords and dedication as well as for the didactic approach you use to use in your answers
Thanks.

You're right, the wordlists are in the dicts section:
https://wpa-sec.stanev.org/?dicts

Another good (real and not so big) wordlist is here:
https://3wifi.stascorp.com/3wifi-dic-2019-06-03.7z
updated every 3 months,collected from here:
https://3wifi.stascorp.com/stat
and announced here:
https://forum.antichat.ru/threads/281655/page-160
Thanks a lot ZerBea.

By the way. I m using The-Distribution-Which-Does-Not-Handle-OpenCL-Well (Kali) linux in a VM machine. And when I install ROCm , It doesnt recognice my AMD GPU.
I have heard thar there is a windows version of Hashcat. If so, could you post a link for downloading?
Perhaps it would be easier than trying to fix the ROCm problem.
(06-23-2019, 10:03 PM)Burguerman Wrote: [ -> ]I have heard thar there is a windows version of Hashcat. If so, could you post a link for downloading?

Have you checked www.hashcat.net ?! And then "hashcat binaries"
Hello Mem5 and thanks.
I have look but I can only see the download for the linux binaries.
Sorry. Now I see that all binaries are in the same .zip
Hello, please example for --prefix-out=<file> in hcxpcaptool
Thank you
prefix-out is designed to keep the command line small, if you decided to choose all options.
Instead of running
$ hcxpcaptool -E list1 -I list2 -U list3 -o test.hccapx -k test.16800 ..... *.pcapng

you can use one single option:
$ hcapcaptool --prefix-out=20190627 *.pcapng

you will get the converted (useful) information by one single command in this lists:
20190627.hccapx
20190627.16800
20190627.5500
20190627.4800
20190627.16100
20190627.essidlist
20190627.identitylist
20190627.userlist
20190627.imsilist
20190627.networklist
20190627.networklist
20190627.clientlist
20190627.deviceinfolist

you can also add the prefix to an existing path:
$ hcapcaptool --prefix-out=$HOME/WLAN/20190627
(06-27-2019, 09:44 AM)ZerBea Wrote: [ -> ]prefix-out is designed to keep the command line small, if you decided to choose all options.
Instead of running
$ hcxpcaptool -E list1 -I list2 -U list3 -o test.hccapx -k test.16800 .....  *.pcapng

you can use one single option:
$ hcapcaptool --prefix-out=20190627 *.pcapng

you will get the converted (useful) information by one single command in this lists:
20190627.hccapx
20190627.16800
20190627.5500
20190627.4800
20190627.16100
20190627.essidlist
20190627.identitylist
20190627.userlist
20190627.imsilist
20190627.networklist
20190627.networklist
20190627.clientlist
20190627.deviceinfolist

you can also add the prefix to an existing path:
$ hcapcaptool --prefix-out=$HOME/WLAN/20190627


GPS does not work
GPS output is not included in --prefix-out because it depend on hcxdumptool.
In other words:
You must run hcxdumptool with connected GPS receiver and option --use_gpsd
--use_gpsd : use GPSD to retrieve position
add latitude, longitude and altitude to every pcapng fram
hcxpcaptool will add a GPS position to every received packet.

tshark and wireshark is able to show you the positions (and more) directly from the pcpang file:
$ tshark -r test.pcapng -Y frame.comment -T fields -E header=y -e frame.number -e frame.time -e wlan.sa -e frame.comment
172 Mar 6, 2019 23:01:48.793212000 CET 1a:f8:7c:91:24:a3 lat:49.126337,lon:4.626268,alt:129.500000,date:06.03.2019,time:22:01:48

If you run hcxpcaptool with option -g on such a pcapng file, you will get a GPS track (inclusive WiFi information).
-g <file> : output GPS file
format = GPX (accepted for example by Viking and GPSBabel)

Viking understand and show you the track. GPSBabel is able to convert it to other formats.

BTW 1:
Do not try to run hcxpcaptool -g option on cap or pcap files. This (ancient) format doesn't allow additional comment fields.

BTW 2:
hcxdumptool use gpsd. So GPS receiver must be supported by gpsd (https://gpsd.gitlab.io/gpsd/index.html)

BTW 3:
What do you mean GPS does not work?
If you are on a kernel > 4.19, bluetooth may not work like expected, because some
external devices are affected by an xhci issue:
https://bugzilla.kernel.org/show_bug.cgi?id=202541#c32
That means, if your device is connected via USB bluetooth adapter, it may not work as expected.