I Inadvertently Left Kali Running a Scan on Local APs Using the Airodump Function in Aircrack Whilst I Was Away for a Couple of Days. Upon My Return I Find That It Has Seemingly Grabbed Shedloads of WPA Handshakes for Various BSSIDs Whilst I've Been Away. As I'm Used to Using the Tutorials on Here (Whereby You Use the -W Command to Create a File for the Captured 'Shakes) I've No Idea Where to Find the Handshakes. I Know I Need to Make a Start on the Linux Basics Tutorials but Any Assistance in the Interim on Locating and Getting to Grips on the 'Shakes I've Grabbed Would Be Appreciated.
Forum Thread: Confused Noob
- Hot
- Active
-
Forum Thread:
Python 2 or 3 for Hacking?
3
Replies
1 day ago -
Forum Thread:
Complete Guide to Creating and Hosting a Phishing Page for Beginners
39
Replies
2 days ago -
UML:
UML Class Designing - Ultimate Guide
1
Replies
2 days ago -
Forum Thread:
How to Hack My College Website
8
Replies
2 days ago -
Forum Thread:
How Does Keto Quick Work to Lose Weight?
0
Replies
2 days ago -
Forum Thread:
How to Use NGROK in a Reverse_Tcp Attack?
19
Replies
2 days ago -
Forum Thread:
Hack Instagram Account Using BruteForce
194
Replies
2 days ago -
How to:
HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide]
164
Replies
2 days ago -
Forum Thread:
How Can I Enable Monitor Mode on TL-WN722N V2 Using Kali Nethunter(Phone) And How Can I Install It's Drivers on My Phone
0
Replies
2 days ago -
Forum Thread:
How Can I Download a Embedded Ebook ?
1
Replies
3 days ago -
How to:
Transparently Routing Traffic Through Tor
8
Replies
4 days ago -
Forum Thread:
Hey...i finished CEH couple of years ago...still dont know ...from were to start my career in Ethical Hacking....?
0
Replies
4 days ago -
Forum Thread:
Identifying Phishing Attacks
5
Replies
5 days ago -
Forum Thread:
I Lost My Facebook
0
Replies
6 days ago -
Forum Thread:
How Can You Increase Your ALFA AWUS036NHA Txpower in 2020?
1
Replies
6 days ago -
How to Extract Passwords :
Password Extraction With PassGetter
0
Replies
6 days ago -
Kali Linux Persistence Error:
No Solution on Internet
4
Replies
1 wk ago -
Forum Thread:
Ext4 File System Error While Installing Kali Linux for Bootable Usb
2
Replies
1 wk ago -
Forum Thread:
Proxychains Not Working or Loading??
3
Replies
1 wk ago -
Forum Thread:
Hacking WPA2 Wi-Fi Networks with Aircrack-Ng Suite [Updated 2020]
0
Replies
1 wk ago
-
How To:
Become an In-Demand Ethical Hacker with This $15 CompTIA Course
-
How to Hack Wi-Fi:
Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
How To:
Brute-Force Nearly Any Website Login with Hatch
-
How To:
Top 10 Things to Do After Installing Kali Linux
-
Android for Hackers:
How to Turn an Android Phone into a Hacking Device Without Root
-
How To:
Check if Your Wireless Network Adapter Supports Monitor Mode & Packet Injection
-
How To:
Buy the Best Wireless Network Adapter for Wi-Fi Hacking in 2019
-
How To:
The Hacks Behind Cracking, Part 1: How to Bypass Software Registration
-
How To:
Crack Any Master Combination Lock in 8 Tries or Less Using This Calculator
-
Hacking Windows 10:
How to Create an Undetectable Payload, Part 1 (Bypassing Antivirus Software)
-
How To:
Attack Web Applications with Burp Suite & SQL Injection
-
How To:
Hack Android Using Kali (Remotely)
-
How To:
4 Ways to Crack a Facebook Password & How to Protect Yourself from Them
-
How To:
Become an In-Demand Cybersecurity Pro with This $30 Training
-
How To:
Wardrive with the Kali Raspberry Pi to Map Wi-Fi Devices
-
How To:
Crack Wi-Fi Passwords with Your Android Phone and Get Free Internet!
-
Hack Like a Pro:
How to Find Directories in Websites Using DirBuster
-
How To:
Crack Password-Protected Microsoft Office Files, Including Word Docs & Excel Spreadsheets
-
How To:
Gain Complete Control of Any Android Phone with the AhMyth RAT
-
How To:
Seize Control of a Router with RouterSploit
2 Responses
Ciuffy is correct about the headline - I don't post much and was rushing off to a beer festival. Many thanks for your help.
A few things you can do (assuming you're using Kali):
Open up a terminal and run from the command line:
wpaclean new.cap old.cap
Note that the order in this is the opposite of what you'll usually see -- enter the file name you want to give your clean cap file FIRST, and then the file of the one you have now. e.g.
wpaclean SmallCap.cap HugeCapBecauseILeftAirCrackRunning.cap
This will strip the file down to only the relevant handshakes (you only need two from each set, but they have to be the right two).
pyrit -r Old.cap -o New.cap strip
This will strip it down to just handshakes, but won't pre-select them for you.
After that you can run:
pyrit -r New.cap analyze
This will return a list of all handshakes, and tell you if they're usable ("good spread") or not.
And, finally, you can do it manually by opening the cap file in wireshark and selecting individual packets. See this for an explanation:
http://aircrack-ng.org/doku.php?id=wpa_capture&DokuWiki=074d5917c87bb3032d8c42de85f2e8da
Caveat:
I've only ever used these on cap files that captured handshakes from a single ESSID. Not certain how they'll work if you have dozens of different ESSIDs in there.
What I've done is run pyrit strip on the cap file first, run pyrit analyze on it, and then run it through wpaclean. Then I'll open up the final cap file in wireshark and make sure they all look good. But I think you can get away with just wpaclean.
Share Your Thoughts