Learn about our website mirrors here.
New attack on WPA/WPA2 using PMKID
by Faiql4 - July 09, 2019 at 09:54 PM
In this writeup, I'll describe a new technique to crack WPA PSK (Pre-Shared Key) passwords.

In order to make use of this new attack you need the following tools:

    hcxdumptool v4.2.0 or higher
    hcxtools v4.2.0 or higher
    hashcat v4.2.0 or higher

This attack was discovered accidentally while looking for new ways to attack the new WPA3 security standard. WPA3 will be much harder to attack because of its modern key establishment protocol called "Simultaneous Authentication of Equals" (SAE).

The main difference from existing attacks is that in this attack, capture of a full EAPOL 4-way handshake is not required. The new attack is performed on the RSN IE (Robust Security Network Information Element) of a single EAPOL frame.

At this time, we do not know for which vendors or for how many routers this technique will work, but we think it will work against all 802.11i/p/q/r networks with roaming functions enabled (most modern routers).

The main advantages of this attack are as follow:

    No more regular users required - because the attacker directly communicates with the AP (aka "client-less" attack)
    No more waiting for a complete 4-way handshake between the regular user and the AP
    No more eventual retransmissions of EAPOL frames (which can lead to uncrackable results)
    No more eventual invalid passwords sent by the regular user
    No more lost EAPOL frames when the regular user or the AP is too far away from the attacker
    No more fixing of nonce and replaycounter values required (resulting in slightly higher speeds)
    No more special output format (pcap, hccapx, etc.) - final data will appear as regular hex encoded string

MORE INFORMATION HERE: https://hashcat.net/forum/thread-7717.html
Thanks for sharing this!

I always like "discovered accidentally" attacks. Blush
(July 13, 2019 at 06:36 PM)MetaHummer Wrote: Thanks for sharing this!

I always like "discovered accidentally" attacks. Blush

lol dude at this point this attack has become common.

Possibly Related Threads…
Thread Author Replies Views Last Post
How do hackers hack into your device just by using your ip address thagod 456 34,028 June 03, 2020 at 04:58 AM
Last Post: TreyHunt
Redcar cyber-attack: Council using pen and paper STARTEXMISLEAD 3 356 February 14, 2020 at 08:35 PM
FBI Warns of Risks Behind Using Free WiFi While Traveling Estramonio 5 507 December 22, 2019 at 06:40 AM
Last Post: sabirous

 Users browsing this thread: 1 Guest(s)