Author Topic: [WPA/WPA2] Reaver (Read 4858 times)

Ragehottie · « **on:** February 18, 2012, 04:19:54 pm »

I have not seen this here, so I decided to share. It is a great WPA/WPA2 password cracker. In fact, I am posting this from a router I have cracked. Anyway, here is a link: http://code.google.com/p/reaver-wps/

sanju4883 · « **Reply #1 on:** May 29, 2012, 09:12:47 am »

Quote from: Ragehottie on February 18, 2012, 04:19:54 pm

I have not seen this here, so I decided to share. It is a great WPA/WPA2 password cracker. In fact, I am posting this from a router I have cracked. Anyway, here is a link: http://code.google.com/p/reaver-wps/

how to install tar.gz file in Ubuntu... and also how to use this tools??

frog · « **Reply #2 on:** May 29, 2012, 11:02:52 am »

you have to compile the software first. make sure you have gcc and g++ installed. extract the tar.gz( tar -zxf reaver*.tar.gz) and then cd to 'src' directory inside extracted folder, run ./configure and it might tell you about missing libraries; if it doesn't you're lucky and then proceed with 'make' and 'make install' as root

the libraries in question are libpcap-dev and libsqlite3-dev; if you're on a debian/ubuntu based system just do the apt-get install libpcap-dev libsqlite3-dev. some of the later versions had a hard time compiling even after I grabbed the libraries(i'm guessing this is because of the way the makefile looks for the libraries), so try compiling earlier versions of the code until you find one that compiles.

p.s. my experience with this tool is that it didn't seem to work worth a shit; if you have any info regarding your experience with it let me know how it worked for you.

jibudada · « **Reply #3 on:** May 29, 2012, 12:22:39 pm »

hi body have a look on this video demo of reaver. really great tool

http://www.securitytube.net/video/3971

ande · « **Reply #4 on:** May 29, 2012, 06:04:34 pm »

This is a very old topic for those who replied today.

But with that said, I just recently found and tried this with my Alpha Networking card. Works like a charm.

frog · « **Reply #5 on:** June 01, 2012, 03:46:14 am »

Quote from: ande on May 29, 2012, 06:04:34 pm

This is a very old topic for those who replied today.

But with that said, I just recently found and tried this with my Alpha Networking card. Works like a charm.

Did the program do what it was supposed to?

I had a problem with AP association as well as getting locked out after multiple attempts. Never got it to guess pins consecutively w/o getting locked up after only a few attempts. I tried this on multiple routers. I'm going to try mac spoofing (apparently reaver supports this by rewriting the 802.11 frames' source mac field) to fix the association problems. I've heard from others this tool works just fine w/ default settings most of the time but i've never seen it yet. I watched that video above and it is inconclusive.

Ragehottie · « **Reply #6 on:** June 01, 2012, 03:02:06 pm »

I have used reaver on +3 routers and it has worked every time. I have experienced the problem with getting locked out and I am pretty sure it has to do with the router. Not to sure though.

centizen · « **Reply #7 on:** June 04, 2012, 11:51:54 pm »

title is a little misleading, this isn't so much an attack on WPA as it is the exploiting a flaw in WPS. It'll only work on routers that have WPS enabled, which is a select few nowadays

Androv · « **Reply #8 on:** July 31, 2012, 10:08:29 pm »

Quickest thing to do is just use Wireshark and a filter to find WPS enabled.

Kulverstukas · « **Reply #9 on:** July 31, 2012, 10:47:22 pm »

Quote from: Androv on July 31, 2012, 10:08:29 pm

Quickest thing to do is just use Wireshark and a filter to find WPS enabled.

What? wireshark is for sniffing traffic bro.

frog · « **Reply #10 on:** August 01, 2012, 03:38:04 am »

Yea, but that doesn't mean that you can't use it to identify certain things. In this case I would use `walsh -i wlan0` or `wash -i wlan0` to find WPS-enabled networks. This 'walsh' reaver-1.3, or 'wash' reaver-1.4 tool comes with reaver. Use this to accomplish the task.

4p3x · « **Reply #11 on:** August 04, 2012, 02:08:37 am »

^^ above me is right, what I usually do to test my own network, cracks my WPA password in 8 seconds and its like 30 something letters long. is I use backtrack but type in airmon-ng start wlan0 and then airodump-ng mon0 to scan for a network and then I find a network and use the BSSID in reaver.. like this

reaver -i mon0 -b (bssid here) -vv and it usually cracks it. basically the simple usage for reaver, I think its a great tool.

Boodar · « **Reply #12 on:** September 03, 2012, 06:53:12 am »

Not many router have wps on at the moment but in future its going to be standard on most devices.
Sky new router for one and most netgear which incidentally you cannot turn wps off even though it states it is off...when you turn it of manually...

IFailStuff · « **Reply #13 on:** September 03, 2012, 03:02:41 pm »

Quote from: 4p3x on August 04, 2012, 02:08:37 am

reaver -i mon0 -b (bssid here) -vv and it usually cracks it. basically the simple usage for reaver, I think its a great tool.

[X] ERROR: Failed to compile packet filter

^with 'wash -i mon0'

relax · « **Reply #14 on:** September 03, 2012, 05:49:19 pm »

run:

Code: [Select]

wash -i mon0 --igand u get the routers around you that has wps on
chose a target copy the mac and run

Code: [Select]

reaver -i mon0 -b <MAC> -vvand now just w8 until its done

reaver is a awesome tool but its not completed some of the tasks seems to be unstable
one of the unstable tasks is association this can sometimes be fixed if you add '-A' after the MACaddrs in reaver
and open a new terminal and run aircrack command:

Code: [Select]

aireplay-ng -1 60 -a <MAC> mon0
other switches that are usefull in reaver is

Code: [Select]

-N -S -d 0-15
oh yeah most errors if because your to far away from the router but i have cracked wps with -70 -80 so its possible