I Inadvertently Left Kali Running a Scan on Local APs Using the Airodump Function in Aircrack Whilst I Was Away for a Couple of Days. Upon My Return I Find That It Has Seemingly Grabbed Shedloads of WPA Handshakes for Various BSSIDs Whilst I've Been Away. As I'm Used to Using the Tutorials on Here (Whereby You Use the -W Command to Create a File for the Captured 'Shakes) I've No Idea Where to Find the Handshakes. I Know I Need to Make a Start on the Linux Basics Tutorials but Any Assistance in the Interim on Locating and Getting to Grips on the 'Shakes I've Grabbed Would Be Appreciated.
Forum Thread: Confused Noob
- Hot
- Active
-
Forum Thread:
https://productscop.com/diet-clarity-keto/
1
Replies
1 hr ago -
Forum Thread:
How Can I Hack a Database of a Online ?
1
Replies
2 hrs ago -
Forum Thread:
https://productscop.com/diet-clarity-keto/
0
Replies
5 hrs ago -
Forum Thread:
How We Can Set a reverse_tcp Payload for Android in Any Apk File?
6
Replies
11 hrs ago -
Forum Thread:
How we can configure (.OVPN) file created by Portmap.io in Kali Linux?
3
Replies
11 hrs ago -
How to:
Crack Instagram Passwords Using Instainsane
24
Replies
16 hrs ago -
Forum Thread:
How to Autorun Android Command Through Shell in Meterpreter?
2
Replies
16 hrs ago -
Forum Thread:
How Can I Hack Gmail Properly
0
Replies
18 hrs ago -
Forum Thread:
Bash and Chmod Command Fix
0
Replies
1 day ago -
Forum Thread:
I'm Trying to Find a Friend That Suddenly Dissaperred online. Can Anyone Help Me Find Them?
0
Replies
1 day ago -
How to:
Install Metasploit Framework on Android | Part #3 - in UserLAnd
7
Replies
1 day ago -
Forum Thread:
TP-Link WN722N v2 on Linux 5.5.0 Not Working
3
Replies
1 day ago -
Forum Thread:
Perform Email Reconnaissance with Buster
1
Replies
1 day ago -
Forum Thread:
Help Me Remove a Photo from a Website
2
Replies
1 day ago -
Forum Thread:
How to Sms Bomber
10
Replies
1 day ago -
Forum Thread:
Is There Any Internal Wifi Card That Support Wireless Monitor Mode and Packet Injection?
1
Replies
1 day ago -
Forum Thread:
How to Crack Window Password with Kali Live Usb
17
Replies
3 days ago -
Forum Thread:
Why Am I Getting a Huge Assembly Dump from a Simple Hello World Program?
0
Replies
3 days ago -
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
5
Replies
3 days ago -
Forum Thread:
Kali Linux External Wifi Not Working?
20
Replies
5 days ago
-
How To:
Build an Off-Grid Wi-Fi Voice Communication System with Android & Raspberry Pi
-
How To:
Python 2 vs. Python 3 — Important Differences Every Hacker Should Know
-
How To:
Become an In-Demand IT Pro with This Cisco Training
-
How To:
Use Zero-Width Characters to Hide Secret Messages in Text (& Even Reveal Leaks)
-
How To:
Hack Android Using Kali (Remotely)
-
Hack Like a Pro:
How to Hack Facebook (Facebook Password Extractor)
-
How To:
4 Ways to Crack a Facebook Password & How to Protect Yourself from Them
-
How To:
Find OSINT Data on License Plate Numbers with Skiptracer
-
How to Hack Wi-Fi:
Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
Android for Hackers:
How to Turn an Android Phone into a Hacking Device Without Root
-
How To:
Streamline Your App & Game Development with AppGameKit
-
How To:
Phish for Social Media & Other Account Passwords with BlackEye
-
How To:
Top 10 Things to Do After Installing Kali Linux
-
How To:
Buy the Best Wireless Network Adapter for Wi-Fi Hacking in 2019
-
How to Hack Wi-Fi:
Cracking WPA2-PSK Passwords Using Aircrack-Ng
-
How To:
Run Kali Linux as a Windows Subsystem
-
How To:
Find Anyone's Private Phone Number Using Facebook
-
How To:
Scan for Vulnerabilities on Any Website Using Nikto
-
How To:
Embed a Metasploit Payload in an Original .Apk File | Part 2 – Do It Manually
-
How To:
Hack Web Browsers with BeEF to Control Webcams, Phish for Credentials & More
2 Responses
Ciuffy is correct about the headline - I don't post much and was rushing off to a beer festival. Many thanks for your help.
A few things you can do (assuming you're using Kali):
Open up a terminal and run from the command line:
wpaclean new.cap old.cap
Note that the order in this is the opposite of what you'll usually see -- enter the file name you want to give your clean cap file FIRST, and then the file of the one you have now. e.g.
wpaclean SmallCap.cap HugeCapBecauseILeftAirCrackRunning.cap
This will strip the file down to only the relevant handshakes (you only need two from each set, but they have to be the right two).
pyrit -r Old.cap -o New.cap strip
This will strip it down to just handshakes, but won't pre-select them for you.
After that you can run:
pyrit -r New.cap analyze
This will return a list of all handshakes, and tell you if they're usable ("good spread") or not.
And, finally, you can do it manually by opening the cap file in wireshark and selecting individual packets. See this for an explanation:
http://aircrack-ng.org/doku.php?id=wpa_capture&DokuWiki=074d5917c87bb3032d8c42de85f2e8da
Caveat:
I've only ever used these on cap files that captured handshakes from a single ESSID. Not certain how they'll work if you have dozens of different ESSIDs in there.
What I've done is run pyrit strip on the cap file first, run pyrit analyze on it, and then run it through wpaclean. Then I'll open up the final cap file in wireshark and make sure they all look good. But I think you can get away with just wpaclean.
Share Your Thoughts