Well, a safety researcher has revealed a novel WiFi hacking technique that makes it easier for hackers to scissure WiFi passwords of almost modern routers.
Discovered past times the Pb developer of the pop password-cracking tool Hashcat, Jens 'Atom' Steube, the novel WiFi hack industrial plant explicitly against WPA/WPA2 wireless network protocols alongside Pairwise Master Key Identifier (PMKID)-based roaming features enabled.
The assail to compromise the WPA/WPA2 enabled WiFi networks was accidentally discovered past times Steube piece he was analyzing the newly-launched WPA3 safety standard.
This novel WiFi hacking method could potentially permit attackers to recover the Pre-shared Key (PSK) login passwords, allowing them to hack into your Wi-Fi network in addition to eavesdrop on the Internet communications.
How to Hack WiFi Password Using PMKID
Whereas, the new attack no longer requires roughly other user to hold out on the target network to capture credentials. Instead, it is performed on the RSN IE (Robust Security Network Information Element) using a unmarried EAPOL (Extensible Authentication Protocol over LAN) frame later requesting it from the access point.
Also Read: How to Hack WPA2 WiFi Protocol Using KRACK Attack
Robust Security Network is a protocol for establishing secure communications over an 802.11 wireless network in addition to has PMKID, the fundamental needed to flora a connector betwixt a customer in addition to an access point, every bit i of its capabilities.
Step 1 — An assaulter tin exercise a tool, similar hcxdumptool (v4.2.0 or higher), to asking the PMKID from the targeted access signal in addition to dump the received frame to a file.
$ ./hcxdumptool -o test.pcapng -i wlp39s0f3u4u5 --enable_status
Step 2 — Using the hcxpcaptool tool, the output (in pcapng format) of the frame tin in addition to hence hold out converted into a hash format accepted past times Hashcat.
$ ./hcxpcaptool -z test.16800 test.pcapng
Step iii — Use Hashcat (v4.2.0 or higher) password nifty tool to obtain the WPA PSK (Pre-Shared Key) password, in addition to Bingo!
$ ./hashcat -m 16800 test.16800 -a iii -w iii '?l?l?l?l?l?lt!'
That's the password of the target wireless network, nifty which may bring fourth dimension depending on its length in addition to complexity.
"At this time, nosotros practise non know for which vendors or for how many routers this technique volition work, exactly nosotros intend it volition piece of job against all 802.11i/p/q/r networks alongside roaming functions enabled (most modern routers)," Steube said.
Since the novel WiFi hack solely industrial plant against networks alongside roaming functions enabled in addition to requires attackers to animate existence forcefulness the password, users are recommended to protect their WiFi network alongside a secure password that's hard to crack.
This WiFi hack also does non piece of job against next-generation wireless safety protocol WPA3, since the novel protocol is "much harder to assail because of its modern fundamental institution protocol called "Simultaneous Authentication of Equals" (SAE)."
Also Check: Wi-Fi Hacking in addition to Penetration Testing From Scratch Training Course.
