wpa-psk TKIP crack

[rtdp]

Sorry for the noob post but i can't find the info i need.
I got the handshake and tried the crunch command with pyrit. Just set it to 10 characters as it might be the default key lenght for this router.
Screen capture of the crunch window is in the attachment.
Is there any faster way for cracking because it seems it could take months for cracking longer passwords.
And is there any way to find the router model in backtrack?
In kismet.netxml captured file i found it's the Tilgin router but can't see the specific model.[size=78%] [/size]

[Darkshadow2913]

Have you tried running an nmap scan on it?

[TH3CR4CK3R]

Have you tried running an nmap scan on it?

Indeed, running a nmap scan against it with the -O flag will try to detect the operating system and therefor possibly give the model of the router.

Did you try to see if it is vulnerable to reaver attacks? reaver can be a much faster method if it is.

[iTpHo3NiX]

nmap -O is going to be the best way, you can look up a MAC on a vendor list but will only give you the vendor. You'll have to connect to the router, or at least get the external ip and try to connect remotely to it.

WPS is the most probable attack or use a farm of computers in an attempt to crack the handshake. Possible yes, worth the time no.

Best method is to break into their house and get the router model. Most these days have the key and WPS pin on it anyways. While your there might as well steal their shit and make some money

[proxx]

Who threw in the NMAP suggestion ? da fuck.
All you have is the handshake right, no IP connectivity so no nmapping..

You could look for some specific vulns online but most of them wont get you very far.
A dictionary attack makes far more sense than this random character attack.

Did they change the SSID?
This is no hard math but often when people change the SSID chances are they change to key as well.
Considering most are not techsavy enough to understand the need for a proper password a dictionary attack with some alterations is probably the best shot you have.
Calculate that bruteforce time before you are actually attempting to do so, it quickly becomes a lifetime or 2.
Also you are running this on the metal with full driver support right ?
If not that is the first thing you want to do.

[iTpHo3NiX]

Who threw in the NMAP suggestion ? da fuck.
All you have is the handshake right, no IP connectivity so no nmapping..

You could look for some specific vulns online but most of them wont get you very far.
A dictionary attack makes far more sense than this random character attack.

Did they change the SSID?
This is no hard math but often when people change the SSID chances are they change to key as well.
Considering most are not techsavy enough to understand the need for a proper password a dictionary attack with some alterations is probably the best shot you have.
Calculate that bruteforce time before you are actually attempting to do so, it quickly becomes a lifetime or 2.
Also you are running this on the metal with full driver support right ?
If not that is the first thing you want to do.

I figure if you're going to break the law, might as well just break into their house and steal shit. While you're in there might as well disable their AV and load up a RAT and forward your port so you can get their facebook login.

Sometimes people go the hardest routes when it's very simple

[proxx]

I figure if you're going to break the law, might as well just break into their house and steal shit. While you're in there might as well disable their AV and load up a RAT and forward your port so you can get their facebook login.

Sometimes people go the hardest routes when it's very simple

Good point, very valid.
Suppose you can just take a hdd home, does not get better than that.

[lucid]

Also, since you've already gone through the trouble of breaking in, you might as well find their spare keys and steal their car. Since you'll probably want to get outta there as fast as possible. Might even take it to a chop shop.

[Architect]

What's going on in this thr -
Oh lawd.
That escalated quickly.

[proxx]

What's going on in this thr -
Oh lawd.
That escalated quickly.

That when I made a very constructive comment.

[iTpHo3NiX]

Well shit if we're escalating this to a home invasion, forget the laptop and tvs, go and get the jewelry box. See if there's a safe and get the code. Blindfold, gag, hog tie and ducktape to the floor. Call your boys load the big shit in the trucks, take the car. Remeber you need to wear gloves, a hairnet and big shoes with lead at the bottom to increase your weight and pressure of the imprint. Having a pressure sprayer (like 3 bucks at home depot) fill that shit with bleach and spray down the house when you leave. Also be sure to have a buddy out of town and go visit him right when you leave, drop the goods at a drop site, and go out spend $$$ on your credit cards and leave a paper/cctv away from the crime scene.

Damn I think I may have given out to many secrets. Still amazes me just how stupid some criminals are lmfao

[Matriplex]

Don't forget to raid the kitchen.

[lucid]

big shoes with lead at the bottom to increase your weight and pressure of the imprint.

Hehe you aren't the only smart guy here... 

[Darkvision]

while your at it make sure that friend is good at stage makeup, use padding/makeup to disguise your actual features. Actually scratch all of that.

Do as deep copy says but when they get home after tying them up load them with the rest of their possessions and sell the whole family into slavery overseas. Use all the money to buy explosives/guns etc then use that to break into a bank and steal everything. Use that money to higher mercs, then use the mercs to kill that asshole that called you a fucktard online. you know the one im talking about.

[Architect]

Use that money to higher mercs, then use the mercs to kill that asshole that called you a fucktard online. you know the one im talking about.

Fuck Jon, god I hate that guy. He's everywhere.