hcxtools - solution for capturing wlan traffic and conversion to hashcat formats
Hi, ZerBea!
Merry Christmas and all the best for the coming 2022.
It seems the last hcxdumptool commit is causing a segmentation fault.
Probably today's commit. Previous worked Ok.
Tested on the latest version of Arch Linux.
it's enough to run hcxdumptool -i wlan0 --check_driver
ath9k_htc in my case.
Reply
Thanks for reporting that issue.
More changes than expected were needed to detect the frequency by the decimal places. That included a nasty copy and paste error.
It should be fixed by this commit:
https://github.com/ZerBea/hcxdumptool/co...0df4471471

Code:
$ lsusb
Bus 005 Device 028: ID 0cf3:9271 Qualcomm Atheros Communications AR9271 802.11n

$ sudo hcxdumptool -I
wlan interfaces:
f81a67178a73 wlp39s0f3u1u1u1 (ath9k_htc)

$ sudo hcxdumptool -i wlp39s0f3u1u1u1 --check_driver
initialization of hcxdumptool 6.2.5-25-ga62a745...
starting driver test...
driver tests passed...
all required ioctl() system calls are supported by driver

terminating...

$ sudo hcxdumptool -i wlp39s0f3u1u1u1 -C
initialization of hcxdumptool 6.2.5-25-ga62a745...
wlp39s0f3u1u1u1 available frequencies, channels and tx power reported by driver:
2412MHz   1 (20 dBm)
2417MHz   2 (20 dBm)
2422MHz   3 (20 dBm)
2427MHz   4 (20 dBm)
2432MHz   5 (20 dBm)
2437MHz   6 (20 dBm)
2442MHz   7 (20 dBm)
2447MHz   8 (20 dBm)
2452MHz   9 (20 dBm)
2457MHz  10 (20 dBm)
2462MHz  11 (20 dBm)
2467MHz  12 (20 dBm)
2472MHz  13 (20 dBm)
2484MHz  14 (20 dBm)

terminating...

Have a good start into 2022 and a happy new year.
See you again in 2022.
Reply
I found that probably the easiest way for newbies to run hcxdumptool/hcxtools in Arch Linux is to use the Live USB.
Perhaps this should be mentioned in the README.md
https://wiki.archlinux.org/title/USB_fla...ion_medium

The Live USB includes Midnight Commander, which makes it easy to use the CLI. Simply type mc
After booting, I already have an ethernet configured and working. And can use the iwctl utility for WiFi.
Then
pacman -Sy
pacman -S hcxdumptool
You have installed hcxdumptool. Unfortunately, not the most recent version.

To install the latest version:
pacman -R hcxdumptool
pacman -S git make pkg-config gcc
Then follow the instructions on https://github.com/ZerBea/hcxdumptool
git clone https://github.com/ZerBea/hcxdumptool.git
cd hcxdumptool
make
make install
You have installed the most recent version!

BTW, do you have any idea why Hashcat v6.2.5 slower than v5.1.0 in my case?
Please see here
https://hashcat.net/forum/thread-10548.html
Reply
I have no idea why v6.2.5 is slower in your case.
Regarding my systems (GTX1060 and GTX1080Ti) everything is working as expected. Both cards are downclocked, because I neither run big word lists nor big masks or excessive rules. Mostly "Util" is only at 50% because I use hcxtools only to feed hashcat.
Code:
$ uname -r
5.15.12-arch1-1

$ pacman -Q | grep nvidia
nvidia 495.46-6
nvidia-settings 495.46-2
nvidia-utils 495.46-1
opencl-nvidia 495.46-1

$ pacman -Q | grep cuda
cuda 11.5.1-1

$ hashcat --version
v6.2.5-79-g656ed048f

BTW:
No need to mention that Arch is providing a live system, because nearly every distribution is doing that.
Arch provide the latest tested version of hcxdumptool/hcxtools and hcxkeys.
Whenever I release a new version, I flag the old one out, e.g.:
https://archlinux.org/packages/?q=hcxtools
Reply