hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
#26
basic tutorial for usie of hash-modes 4800 and 5500 (WPA-ENTERPRISE)

preparation:
We need some example caps. Download
http://www.willhackforsushi.com/code/asl...ap-2.2.tgz
and
http://www.willhackforsushi.com/code/eap...ss-1.4.tgz

unpack both  the tgz files.

create a folder: test
create a subfolder inside test: caps
copy this files from asleap-2.2 folder to caps folder:
joshlea.dump
copy this files from asleap-2.2/data folder to caps folder:
leap.dump
leap2.dump
pptp.dump
copy this files from eapmd5pass folder to caps folder:
brad.eaptest2.cap
brad.eaptest.cap
EAPMD5-Challenge-01.cap
eapmd5-sample.dump

now open a terminal in our test folder
check if the caps are inside the caps folder
$ ls caps/*
aps/brad.eaptest2.cap  caps/EAPMD5-Challenge-01.cap  caps/joshlea.dump  caps/leap.dump
caps/brad.eaptest.cap   caps/eapmd5-sample.dump       caps/leap2.dump    caps/pptp.dump

create a wordlist (wordlist) and copy the following passwords inside:
beaVIs
bradtest
turquoise
leap.dump
qaleap
leap.apc
blamo

Finished. We're now ready to start

1.
Let's do some checks on the capfiles:
$ wlancapinfo -i caps/brad.eaptest2.cap
input file.......: caps/brad.eaptest2.cap
magic file number: 0xa1b2c3d4 (cap/pcap)
major version....: 2
minor version....: 4
data link type...: 105 (DLT_IEEE802_11) [http://www.tcpdump.org/linktypes.html]
packets inside...: 5
last pcap error..: flawless

$ wlancapinfo -i caps/eapmd5-sample.dump
input file.......: caps/eapmd5-sample.dump
magic file number: 0xa1b2c3d4 (cap/pcap)
major version....: 2
minor version....: 4
data link type...: 105 (DLT_IEEE802_11) [http://www.tcpdump.org/linktypes.html]
packets inside...: 77
last pcap error..: flawless

everything seems to be ok.
we can use the caps.
Reply


Messages In This Thread
RE: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats - by ZerBea - 07-21-2017, 05:39 PM
wlandump-ng vs hcxdumptool - by hulley - 02-10-2018, 10:26 PM