+- hashcat Forum (https://hashcat.net/forum)
+-- Forum: Support (https://hashcat.net/forum/forum-3.html)
+--- Forum: hashcat (https://hashcat.net/forum/forum-45.html)
+--- Thread: hcxdumptool - missing frames w/ filtering (/thread-11212.html)
RE: hcxdumptool - missing frames w/ filtering - ZerBea - 02-01-2023
On all systems via config.txt as described above, or here:
https://forums.raspberrypi.com/viewtopic.php?t=257209
https://www.howtoraspberry.com/2020/04/turn-off-bluetooth-on-raspberry-pi/
https://raspberrypi.stackexchange.com/questions/100543/how-to-disable-wifi-in-raspberry-pi-4
RE: hcxdumptool - missing frames w/ filtering - pipss - 02-02-2023
Perhaps my raspidebian is kind of different one, but adding to /boot/firmware/config.txt:
Code:
[all]
dtoverlay=disable-wifi
dtoverlay=disable-bt
hdmi_blanking=1Code:
/etc/modprobe.d/raspi-blacklist.conf
blacklist brcmfmac
blacklist brcmutil
blacklist bluetoothRE: hcxdumptool - missing frames w/ filtering - ZerBea - 02-02-2023
That highly depend on the firmware:
If you are using an old 'Pi3 only' firmware, you need to prefix the overlay name with pi3-.
There is an issue regarding this problem:
https://github.com/raspberrypi/linux/pull/3052
RE: hcxdumptool - missing frames w/ filtering - pipss - 02-02-2023
I’ve tested wifi_labtools on ArchLinuxarm by running multiple times the same:
Code:
$ timeout 5m hcxlabgetmallpr --onsigterm=exit --essidlist=essid --essidmax=100 --m2attempt=10 -c 91 run: 2 HASHLINEs from printer
2 run: 4 HASHLINEs from printer
3 run: 6 HASHLINEs from printer
4 run: 8 HASHLINEs from printer
Time between runs was about few minutes, number of HASHLINEs from phones are also were growing. Every time after HASHLINEs were counted, the dump file was deleted.
I’m wondering what was the phenomenon behind this, if the scanning time was the same 5 min?
RE: hcxdumptool - missing frames w/ filtering - ZerBea - 02-02-2023
No need to run "tiemout", because hcxlabtool has a similar build in function:
Code:
--tot=<digit> : enable timeout timer in minutes (minimum = 2 minutes)hash file should be deleted, too, because hcxpcapngtool append to it.