hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
That depend on the 2.4GHz modification. if made correct, there are no negative channels. The expanded range is added as 14...33
Code:
+    CHAN2G(2312, 33), /* Channel -19 */
+    CHAN2G(2317, 32), /* Channel -18 */
+    CHAN2G(2322, 31), /* Channel -17 */
+    CHAN2G(2327, 30), /* Channel -16 */
+    CHAN2G(2332, 29), /* Channel -15 */
+    CHAN2G(2337, 28), /* Channel -14 */
+    CHAN2G(2342, 27), /* Channel -13 */
+    CHAN2G(2347, 26), /* Channel -12 */
+    CHAN2G(2352, 25), /* Channel -11 */
+    CHAN2G(2357, 24), /* Channel -10 */
+    CHAN2G(2362, 23), /* Channel -9 */
+    CHAN2G(2367, 22), /* Channel -8 */
+    CHAN2G(2372, 21), /* Channel -7 */
+    CHAN2G(2377, 20), /* Channel -6 */
+    CHAN2G(2382, 19), /* Channel -5 */
+    CHAN2G(2387, 18), /* Channel -4 */
+    CHAN2G(2392, 17), /* Channel -3 */
+    CHAN2G(2397, 16), /* Channel -2 */
+    CHAN2G(2402, 15), /* Channel -1 */
+    CHAN2G(2407, 14), /* Channel 0 */

This is only a comment:
Code:
/* Channel -3 */

If you are on 2397 it should be channel 17
Code:
CHAN2G(2392, 17)

No let's do a test to confirm expanded frequencies of the patch:
set monitor mode by hcxdumptool:
Code:
$ sudo hcxdumptool -m <interface>
Do not use iw - we don't want NETLINK stuff

open Wireshark and go to capture/options
select your interface
open the channel list
how much channels (channel . frequency) do you see?
please attach a screenshot of the opened channel list.

Please notice:
My committed changes only allow to set expanded channels, but it is possible that they don't show correct frequencies and channel numbers.
You must modify hcxdumptool, too. hcxdumptool's frequency range must match to your patched driver:
https://github.com/ZerBea/hcxdumptool/bl...ol.c#L6462
Code:
            else if((frequency >= 2407) && (frequency <= 2474)) testchannel = (frequency -2407)/5;
            else if((frequency >= 2481) && (frequency <= 2487)) testchannel = (frequency -2412)/5;
            else if((frequency >= 5150) && (frequency <= 5875)) testchannel = (frequency -5000)/5;
as mentioned here:
https://hashcat.net/forum/thread-6661-po...l#pid50509

If not modified, hcxdumptool will show you false frequencies and false channel numbers.

If the modification is working, please tell me the values (edge frequencies you used) and the output of hcxdumptool -C.

This one is is responsible to show the correct frequency for channel 14:
https://github.com/ZerBea/hcxdumptool/bl...ol.c#L6465

This one handle 2.4GHz frequencies:
https://github.com/ZerBea/hcxdumptool/bl...ol.c#L6464

This one handle 5GHz frequencies:
https://github.com/ZerBea/hcxdumptool/bl...ol.c#L6466

hcxdumptool's edge frequencies must(!) match to the edge frequencies of your driver!
Reply


Messages In This Thread
wlandump-ng vs hcxdumptool - by hulley - 02-10-2018, 10:26 PM
RE: hcxtools - solution for capturing wlan traffic and conversion to hashcat formats - by ZerBea - 10-28-2020, 09:08 AM