Hashcatch - Capture Handshakes Of Nearby Wifi Networks Automatically

Hashcatch deauthenticates clients connected to all nearby WiFi networks together with tries to capture the handshakes. It tin endure used inwards whatever linux device including Raspberry Pi together with Nethunter devices thus that y'all tin capture handshakes piece walking your dog
Written past times @SivaneshAshok

PoC of hashcatch (running alongside a span of WiFi networks inside range)


Setting up
  1. ./setup.sh
  2. Enter the interface that tin endure switched to monitor mode
  3. The script volition install the prerequisites

Usage
sudo ./hashcatch.sh
  • The script runs indefinitely until keyboard interrupt
  • If you're targeting a wifi network, pass unopen to xx to thirty seconds inside the wifi's hit to ensure handshake capture
  • Handshakes captured volition endure stored inwards handshakes/ directory
  • The captured WiFi network's BSSID together with ESSID volition endure stored inwards db file
  • [Experimental] If y'all are connected to the cyberspace piece capturing, the next information volition too endure added to the db file
    • latitude
    • longitude
    • signal radius
    • time of record
    • Note: Kudos to Alexander Mylnikov for the API he's running that returns the place details of a router's MAC address using world databases

The "config" file
  • The config file volition endure generated past times the setup.sh script
  • You tin afterward edit the "interface" plain to ready the interface of your choice
  • You tin too add together an "ignore" plain to hollo the WiFi networks y'all desire hashcatch to ignore piece running
  • Refer the representative given below to know almost the format inwards which entries should endure added to config file

Format of config file
option name=option1,option2,option3
No infinite inwards betwixt choice name, equal sign together with options
Example
interface=wlan0 ignore=Google Starbucks,AndroidAP

Features to endure added
  • PMKID attack
  • Pixiedust assault for WPS enabled networks
  • More place features
  • Automatically depository fiscal establishment jibe handshakes alongside a rainbow table
PS: Even though I was working on this script few days earlier @evilsocket posted almost his pwnagotchi, his function has definitely been an inspiration for this project!


Popular posts from this blog

Kerbrute - A Tool To Perform Kerberos Pre-Auth Bruteforcing

Image
Influenza A virus subtype H5N1 tool to speedily bruteforce together with enumerate valid Active Directory accounts through Kerberos Pre-Authentication Grab the latest binaries from the releases page to acquire started. Background This tool grew out of approximately bash scripts I wrote a few years agone to perform bruteforcing using the Heimdal Kerberos customer from Linux. I wanted something that didn't demand privileges to install a Kerberos client, together with when I works life the amazing pure Go implementation of Kerberos gokrb5 , I decided to lastly acquire Go together with write this. Bruteforcing Windows passwords amongst Kerberos is much faster than whatever other approach I know of, together with potentially stealthier since pre-authentication failures produce non trigger that "traditional" An job organisation human relationship failed to log on final result 4625. With Kerberos, y'all tin validate a username or exam a login past times s
Read more

Cameradar V2.1.0 - Hacks Its Mode Into Rtsp Videosurveillance Cameras

Image
   An RTSP flow access tool that comes alongside its library Cameradar allows you lot to Detect opened upward RTSP hosts on whatever accessible target host Detect which device model is streaming Launch automated dictionary attacks to larn their stream route (e.g.: /live.sdp ) Launch automated lexicon attacks to larn the username in addition to password of the cameras Retrieve a consummate in addition to user-friendly study of the results Docker Image for Cameradar Install docker on your machine, in addition to run the next command: docker run -t ullaakut/cameradar -t <target> <other command-line options> See command-line options . e.g.: docker run -t ullaakut/cameradar -t 192.168.100.0/24 -l volition scan the ports 554 in addition to 8554 of hosts on the 192.168.100.0/24 subnetwork in addition to laid on the discovered RTSP streams in addition to volition output debug logs. YOUR_TARGET tin hold out a subnet (e.g.: 172.16.100.0/24 ), an IP (
Read more

Efiguard - Disable Patchguard Together With Dse At Kicking Time

Image
EfiGuard is a portable x64 UEFI bootkit that patches the Windows kicking manager, kicking loader too center at kicking fourth dimension inward club to disable PatchGuard too Driver Signature Enforcement (DSE). Features Currently supports all EFI-compatible versions of Windows x64 e'er released, from Vista SP1 to Server 2019. Easy to use: tin live on booted from a USB stick via a loader application that automatically finds too boots Windows. The driver tin also live on loaded too configured manually using either the UEFI rhythm out or the loader. Makes extensive utilization of the Zydis disassembler library for fast runtime pedagogy decoding to back upwardly to a greater extent than robust analysis than what is possible amongst signature matching, which oftentimes requires changes amongst novel OS updates. Works passively: the driver does non charge or start the Windows kicking manager. Instead it acts on a charge of bootmgfw.efi yesteryear the firmware kicking
Read more