Image Source The Reason Behind Weak Passwords Then he used ‘Rockyou.txt’, a dictionary that allowed him to crack more passwords, more specifically 1,359, and most of those passwords contained lower-case characters.Īll these supported his WiFi network cracking experiment. The average speed per password raised up to 9 minutes. The researcher managed to crack no less than 2,200 passwords by means of a standard laptop. To get the password right, a calculation of the numbers’ options associated with phone numbers from Israel should be made. This would help him discover if the users’ wifi passwords corresponded with their cellphone numbers, which is said to be a common practice in Israel.
The next thing he did was to launch “Mask attacks”. These would be then useful to be cracked in order to get the password. What he managed through the mentioned method was to collect PMKIDs. The researcher made use of the Jens “atom” Steube’s method that already existed and belonged to the lead developer of Hashcat. In that PMKID hash, one can find 4 things: the passphrase, the MAC address, the SSID of the network, and last, but not least a static integer. Then, next, he used the free software WireShark for sniffing purposes. How PMKID hashes can be gathered? Well, he made use of two things: a network card to the tune of $50 and the tool that allows packet injection. This kind of hash is normally useful for roaming purposes.
The next step he followed was to exploit a vulnerability with the role to permit PMKID hash retrieval. The intention was the collection of 5,000 network hashes that would help him carry out his research. The researcher under discussion, by his name Ido Hoorvitch, took a walk in the center of the city and brought with him WiFi sniffing equipment.
The whole process unfolded as described below, according to the report this researcher published. How Did the Researcher Do His Experiment? This happened in Tel Aviv when he did the WiFi network cracking experiment, Tel Aviv being his hometown. A researcher wanted to prove that a hacker could hijack a home network with ease by exploiting their lack of security, so he cracked 70% of a 5,000 WiFi network sample.
0 kommentar(er)
