TODO v2.7.1

[kimocoder]

• "john" cracker isnt working at this point. After the change from HcxPcapTool to HcxPcapngTool the
  regex and everything parsing the output doesnt work to it, need to try find a solution soon.

• Add more password to the probable wordlist.

• Better usage and implementation of hcx tools suite.

• Add back "ignore none essid" behind a switch

  Go through README.md and look for improvements/changes.

[kimocoder]

Pushed a lot of fixes and various stuff the past two days, but it's one thing I don't seem to figure out that easily...
As for now, passing hashes through "john" isn't working, so I ran through it all to see everything and this is the case, not sure if it was because of the change from HcxPcapTool to Hcxpcapngtool and updates to "john" (possibly both);

[kimocoder]

[kimocoder]

Have to find a new way to parse this both for "john" and "cowpatty" has the same problem. Changes was when we moved from deprecated HcxPcapTool to HcxPcapngTool, but I have a real time struggle with it at the moment, however I prepared everything else besides this issue. @ZerBea I noticed that two of them wasn't working, props for some time 🥇

The passwotd is there in plain sight, it's just the parsing through python that need an update. split and lines section 💯

The fancy section over at and below. It all seems good, but it's not.

wifite2/wifite/tools/john.py

Line 47 in c01b4b1

# Parse password (regex doesn't work for some reason)

[ZerBea]

Beside this fixed issue
openwall/john#5205
john is working as expected here.
The issue is still open on Arch Linux:
https://bugs.archlinux.org/task/76252?project=5&string=john

The same applies to --john output of hcxpcapngtool and hcxhashtool.
Status of cowpatty is not known here, because I don't use it. If I need to calculate a rainbow table (for some reasons to verify a large number of PMKs) I use hcxkeys (GPU) which is much faster.

BTW:
Arch Linux moved to OpenSSL 3.0.x
https://archlinux.org/packages/core/x86_64/openssl/
We'll get some warnings until I adapt the code from 1.1 to 3.0 (EVP functions are faster on 3.0).

[ZerBea]

Forgot to mention that dwpa is using hashcat and john, too:
https://github.com/RealEnder/dwpa
As far as I know without problems:
https://wpa-sec.stanev.org/

[kimocoder]

I will dig deeper, because it seems that the check in stdout isn't working anymore, I did extensive tests and see the problem. I will setup a test network and show exact, but from our side it looks good and all 👍

[kimocoder]

Updated the parsing of password which happens at

wifite2/wifite/tools/john.py

Line 47 in c01b4b1

# Parse password (regex doesn't work for some reason)

And below

[ZerBea]

BTW:
There is a plan to adopt hcxtools' (and hashcat's) new unified WPA input line format to JtR:
openwall/john#4183

[ZerBea]

I finished the refactoring of hcxlabtool. Nearly everything is improved, now.
I removed WIRELESS EXTENSIONS and ioctl() calls (except that one that detect presence of WIRELESS EXTENSIONS) completely. The interface is now controlled via NL80211 and RTNETLINK which offer a lot more options than WIRELESS EXTENSION ever do. NL80211 drivers should work out of the box.
I tested (successfully) rtl88xxau and I got the first responses regarding iwlwifi:
ZerBea/hcxdumptool#245 (comment)
ZerBea/hcxdumptool#186 (comment)

Maybe hcxlabtool will be a better solution to run in background of WiFite2 than the WIRELESS EXTENSION dinosaur hcxdumptool.
Less unnecessary features and less status messages but much faster and more effective than hcxdumptool.

[kimocoder]

TODO updated. Added support for latest hcxdumptool and cowpatty is working again.

[kimocoder]

• PMKID doesn't look for duplicates in "cracked.json" so on continuous scans, the PMKID attack does each selected target over again and duplicate (or more) in the JSON. Not ideal.

• Remove the BAD_DRIVERS part, as that part was added to aircrack-ng's airmon-ng few years back now.

• Tidy up some Exceptions, make it a bit nicer.