Reaver 1.4 WPS Bruteforce Tool Install/Scan/Bruteforce Tutorial

[MartinBishop]

http://maurisdump.blogspot.com/2012/...l-upgrade.html

Prerequisites

You must be running Linux
You must have a wireless card capable of raw injection
You must put your wireless card into monitor mode. This is most easily done using airmon-ng from the aircrack-ng tool suite.

Basic Usage

First, make sure your wireless card is in monitor mode:

# airmon-ng start wlan0

Then Start ./wash -i mon0 to scan for valid Wifis.

To run Reaver, you must specify the BSSID of the target AP and the name of the monitor mode interface (usually 'mon0', not 'wlan0', although this will vary based on your wireless card/drivers):

# reaver -i mon0 -b 00:01:02:03:04:05

You will probably also want to use -vv to get verbose info about Reaver's progress:

# reaver -i mon0 -b 00:01:02:03:04:05 -vv

Speeding Up the Attack

By default, Reaver has a 1 second delay between pin attempts. You can disable this delay by adding '-d 0' on the command line, but some APs may not like it:

# reaver -i mon0 -b 00:01:02:03:04:05 -vv -d 0

[robbo1985]

used this tool before i was lucky and it cracked my wps in 2 hours only got to around 10% to 15% before it cracked it most computers im guessing it will take around 6 - 12 hours to crack the wps

tool worth adding

[TAPE]

I was having good results with v1.3, however was having difficulty with v1.4;
it was not associating with my test router whereas v1.3 was associating fine.

My work around was associating with aireplay-ng and running reaver with the -A switch ;

So in 1 terminal window ;

Code:

aireplay-ng mon0 -1 120 -b 00:11:22:33:55 -e ESSID

In another terminal window ;

Code:

reaver -i mon0 -A -c XX -b 00:11:22:33:44:55 -v

Am still running through it, however sofar so good.

[VulpiArgenti]

Genius TAPE - this is the first time I've managed to get Reaver working.

.

(Small typo in the first code line: "-b" should be "-a" I think).

[zimmaro]

from the (bottom) of my experience I think that version 1.3 works better than 1.4 (I run the same "SIMPLE-test" in the same "situation" with the two versions) passed tests only v1.3
bye

[TAPE]

Genius TAPE - this is the first time I've managed to get Reaver working.
.
(Small typo in the first code line: "-b" should be "-a" I think).

Yeah think you are right I always get confused with which switch to use in aireplay

I am currently running it like this on a VMware image of BT5R1 and so far so good ;
http://adaywithtape.blogspot.com/201...erability.html

I will amend the blogpost later to have the -a switch correctly mentioned after testing complete

[TAPE]

Damn this double post syndrome...

[VulpiArgenti]

Yes, I don't know what's going on with the forum software. I currently have no "go advanced" or formatting tools; my posts luk iliturat http://www.backtrack-linux.org/forum...lies/frown.png

[djolej]

from the (bottom) of my experience I think that version 1.3 works better than 1.4 (I run the same "SIMPLE-test" in the same "situation" with the two versions) passed tests only v1.3
bye

i keep getting WARNING: Receive timeout occurred, and i cant get it to start? anyone knows how to fix this? i tried wash, and -d 15 :P has this anything to do with 1.4 version?

[TheEnd]

it's stuck on that for about half an hour, What seems to be the problem ?
Note: Same pin, and same percentage for half an hour...