Overclock.net › Forums › Industry News › Software News › [ATNB] WPA2 - You don't even need to crack it.
New Posts  All Forums:Forum Nav:

[ATNB] WPA2 - You don't even need to crack it.

post #1 of 48
7/23/10 at 3:31am
Thread Starter 
Quote:
Wi-Fi security has experienced a lot of churn over the last decade. As protocols like WEP and TKIP fell by the wayside, WPA2 emerged as the “Last Wi-Fi Security Protocol Standing.” Wi-Fi Alliance recently announced its plan to phase out WEP and TKIP, promoting WPA2 as the go-to security standard.
Source

Basically an exploit was found (known as Hole 196) and exploiting this vulnerability, you can decrypt WPA2-encrypted over the air data from other authorized users in the network with his own private key. No key cracking or brute force is required!

The 0day vulnerability is going to be shown off at the Black Hat Arsenal on July 29 (13:30-18:00).
lain
(16 items)
  		  
CPUMotherboardGraphicsRAM
i7 930 D0 ASUS P6X58D eVGA GTX 480 Ripjaws DDR3-1600 
Hard DriveOptical DriveCoolingOS
WD Caviar Blacks Asus NH-D14 Win7 / Arch Linux 
MonitorKeyboardPowerCase
2 Dell Ultrasharp U2412M Filco Majestouch Tenkeyless (MX Blues) Corsair HX750 HAF 932 
MouseMouse PadAudioAudio
Naos 5000 Hien Ve S Black HT Claro+ Sennheiser HD555 
View all
  hide details  
Reply
lain
(16 items)
  		  
CPUMotherboardGraphicsRAM
i7 930 D0 ASUS P6X58D eVGA GTX 480 Ripjaws DDR3-1600 
Hard DriveOptical DriveCoolingOS
WD Caviar Blacks Asus NH-D14 Win7 / Arch Linux 
MonitorKeyboardPowerCase
2 Dell Ultrasharp U2412M Filco Majestouch Tenkeyless (MX Blues) Corsair HX750 HAF 932 
MouseMouse PadAudioAudio
Naos 5000 Hien Ve S Black HT Claro+ Sennheiser HD555 
View all
  hide details  
Reply
post #2 of 48
7/23/10 at 3:43am
MAC filtering still works.
Clasicos
(16 items)
 
Proletariatop
(13 items)
 
Upgrayedds
(4 items)
 
CPUMotherboardGraphicsGraphics
Phenom II X6 1090T 4.1ghz|1.60v GA-MA790X-UD4P Sapphire 6870|1GhzCore 1.27GhzMem nVidia Quadro NVS 290 
GraphicsRAMHard DriveOptical Drive
Sapphire 6870|1GhzCore 1.27GhzMem 2x2GB Geil 800 + 2x2GB Micron 800 2x Hitachi 500 GB RAID1 + 870 GB JBOD Optiarc DVD-RAM 
OSMonitorKeyboardPower
Windows 7 Ultimate x64 1x Hanns·G 28" + 2x AOC 20" + 1x Envision 19" Unicomp Customizer Corsair GS600 
CaseMouseMouse PadAudio
Xigmatek Utgard Logitech MX518 Waxed wooden surface. XFi XtremeGamer 
View all
CPUMotherboardGraphicsRAM
AMD Fusion E-240 @ 1.5Ghz Hudson D1 Chipset AMD Radeon 6310 2x4GB DDR3 1333 
Hard DriveOSMonitorPower
Crucial M4 64GB Windows 7 64-bit 11.6" 1366x768 3-cell lithium ion 
Case
ThinkPad X Series X120e 
View all
CPUGraphicsGraphicsPower
AMD 1090T AMD 6870 AMD 6870 Thermaltake Toughpower XT TPX-775M 775W PSU 
View all
  hide details  
Reply
Clasicos
(16 items)
 
Proletariatop
(13 items)
 
Upgrayedds
(4 items)
 
CPUMotherboardGraphicsGraphics
Phenom II X6 1090T 4.1ghz|1.60v GA-MA790X-UD4P Sapphire 6870|1GhzCore 1.27GhzMem nVidia Quadro NVS 290 
GraphicsRAMHard DriveOptical Drive
Sapphire 6870|1GhzCore 1.27GhzMem 2x2GB Geil 800 + 2x2GB Micron 800 2x Hitachi 500 GB RAID1 + 870 GB JBOD Optiarc DVD-RAM 
OSMonitorKeyboardPower
Windows 7 Ultimate x64 1x Hanns·G 28" + 2x AOC 20" + 1x Envision 19" Unicomp Customizer Corsair GS600 
CaseMouseMouse PadAudio
Xigmatek Utgard Logitech MX518 Waxed wooden surface. XFi XtremeGamer 
View all
CPUMotherboardGraphicsRAM
AMD Fusion E-240 @ 1.5Ghz Hudson D1 Chipset AMD Radeon 6310 2x4GB DDR3 1333 
Hard DriveOSMonitorPower
Crucial M4 64GB Windows 7 64-bit 11.6" 1366x768 3-cell lithium ion 
Case
ThinkPad X Series X120e 
View all
CPUGraphicsGraphicsPower
AMD 1090T AMD 6870 AMD 6870 Thermaltake Toughpower XT TPX-775M 775W PSU 
View all
  hide details  
Reply
post #3 of 48
7/23/10 at 3:45am
thats why i only limit my IP range to 2 computers..
Carbon Fiber Delight
(13 items)
  		  
CPUMotherboardGraphicsRAM
Phenom II X4 720 3.6ghz@1.5v Asus Crosshair III xfire 6850 G.skill ddr3 4gb 1333 7-7-7-20 
Hard DriveOSMonitorPower
x2 Seagate 250Gb 7200rpm Windows 7 x64 32inch TCL 1920x1080p XFX Black edition 850w 
Case
CM 690 II Advance 
View all
  hide details  
Reply
Carbon Fiber Delight
(13 items)
  		  
CPUMotherboardGraphicsRAM
Phenom II X4 720 3.6ghz@1.5v Asus Crosshair III xfire 6850 G.skill ddr3 4gb 1333 7-7-7-20 
Hard DriveOSMonitorPower
x2 Seagate 250Gb 7200rpm Windows 7 x64 32inch TCL 1920x1080p XFX Black edition 850w 
Case
CM 690 II Advance 
View all
  hide details  
Reply
post #4 of 48
7/23/10 at 3:52am
Quote:
Originally Posted by videoman5 View Post
MAC filtering still works.
Heheh, not hard to change your MAC address.
My System
(13 items)
  		  
CPUMotherboardGraphicsRAM
Q6600 G0 3Ghz Asus P5K P35 HIS 4850 512MB 710/1110 4GB PC2-6400 (2x2GB) 
Hard DriveOSMonitorPower
Hitachi T7K500 320GB + 750GB NAS Windows 7 x64 2x 19" Hanns G 5ms (2880x900) EZCool 650Watt Modular 
Case
Aspire X-Plorer 
  hide details  
Reply
My System
(13 items)
  		  
CPUMotherboardGraphicsRAM
Q6600 G0 3Ghz Asus P5K P35 HIS 4850 512MB 710/1110 4GB PC2-6400 (2x2GB) 
Hard DriveOSMonitorPower
Hitachi T7K500 320GB + 750GB NAS Windows 7 x64 2x 19" Hanns G 5ms (2880x900) EZCool 650Watt Modular 
Case
Aspire X-Plorer 
  hide details  
Reply
post #5 of 48
7/23/10 at 5:15am
Quote:
Originally Posted by Jimi View Post
Basically an exploit was found (known as Hole 196) and exploiting this vulnerability, you can decrypt WPA2-encrypted over the air data from other authorized users in the network with his own private key. No key cracking or brute force is required!


Does that mean that you still need to break into the network though? I'm thinking of home or corporate networks...obviously everyone on a free public Wi-Fi is "authorized". But at least I'm not going to be wardriven or have freeloaders on my corporate Wi-Fi, right?
Vulcan's Core i7
(13 items)
  		  
CPUMotherboardGraphicsRAM
Core i7 920 @ 3.7 GHz Asus P6T Deluxe EVGA GTX 260 (216) 6GB Corsair XMS3 DDR3-1333 
Hard DriveOptical DriveOSMonitor
300GB Velociraptor C:, 2TB total LG Blu-Ray burner Windows 7 Home Premium x64 Gateway FHD2400 
KeyboardPowerCaseMouse
Logitech G15 ThermalTake 850W Lian Li PC-6077 Logitech G5 
View all
  hide details  
Reply
Vulcan's Core i7
(13 items)
  		  
CPUMotherboardGraphicsRAM
Core i7 920 @ 3.7 GHz Asus P6T Deluxe EVGA GTX 260 (216) 6GB Corsair XMS3 DDR3-1333 
Hard DriveOptical DriveOSMonitor
300GB Velociraptor C:, 2TB total LG Blu-Ray burner Windows 7 Home Premium x64 Gateway FHD2400 
KeyboardPowerCaseMouse
Logitech G15 ThermalTake 850W Lian Li PC-6077 Logitech G5 
View all
  hide details  
Reply
post #6 of 48
7/23/10 at 5:18am
Interesting. But the only problem is though this won't work if you're not already on there network (wired).
Perpetual debt
(15 items)
 
Money Pit
(17 items)
  		 
CPUMotherboardGraphicsRAM
Intel i7 2600k Asus P8P67 Pro PNY GTX 480 2x4gb G.Skill Ripjaws 2133mhz 
Hard DriveCoolingOSMonitor
OCZ Vertex 3 Coolit Freezone Elite Win7 Ultimate Samsung 2233rz 
KeyboardPowerCaseMouse
Logitech G15 Corsair HX750 Antec Server case Razer Deathadder 
Mouse PadAudioAudio
Thermaltake LCD Mousepad Logitech 5.1 Surround Tritton AX PC Pro 5.1 Surround Headset 
View all
CPUMotherboardGraphicsRAM
Intel q6600 @ 3.9ghz (433x9) EVGA 780i FTW evga 8200gs 512mb  4x2gb Corsair XMS TwinX 866mhz @ 5-5-5-5-18 
Hard DriveHard DriveOptical DriveCooling
2x 750gb Seagate Baracuda 7200.12 RAID0 5x 1.5tb Seagate Baracuda 7200.11 RAID5 LITE-ON 22X DVD Burner Black SATA Corsair H70 
OSMonitorKeyboardPower
Win7 Ultimate x64 22" Acer x223w Logitech G15 Corsair HX750 
CaseMouseMouse PadAudio
APEVIA MX-ALIEN Razer Deathadder Thermaltake LCD Mousepad Triton AX Pro PC 
Audio
Logitech 5.1 surround sound. 
View all
  hide details  
Reply
Perpetual debt
(15 items)
 
Money Pit
(17 items)
  		 
CPUMotherboardGraphicsRAM
Intel i7 2600k Asus P8P67 Pro PNY GTX 480 2x4gb G.Skill Ripjaws 2133mhz 
Hard DriveCoolingOSMonitor
OCZ Vertex 3 Coolit Freezone Elite Win7 Ultimate Samsung 2233rz 
KeyboardPowerCaseMouse
Logitech G15 Corsair HX750 Antec Server case Razer Deathadder 
Mouse PadAudioAudio
Thermaltake LCD Mousepad Logitech 5.1 Surround Tritton AX PC Pro 5.1 Surround Headset 
View all
CPUMotherboardGraphicsRAM
Intel q6600 @ 3.9ghz (433x9) EVGA 780i FTW evga 8200gs 512mb  4x2gb Corsair XMS TwinX 866mhz @ 5-5-5-5-18 
Hard DriveHard DriveOptical DriveCooling
2x 750gb Seagate Baracuda 7200.12 RAID0 5x 1.5tb Seagate Baracuda 7200.11 RAID5 LITE-ON 22X DVD Burner Black SATA Corsair H70 
OSMonitorKeyboardPower
Win7 Ultimate x64 22" Acer x223w Logitech G15 Corsair HX750 
CaseMouseMouse PadAudio
APEVIA MX-ALIEN Razer Deathadder Thermaltake LCD Mousepad Triton AX Pro PC 
Audio
Logitech 5.1 surround sound. 
View all
  hide details  
Reply
post #7 of 48
7/23/10 at 5:51am
Quote:
Originally Posted by VulcanDragon View Post
Does that mean that you still need to break into the network though?
Yes, you must already have the passphrase and be on the network to decrypt the other person's traffic. If you're outside the network, prepare for a few long years of painful brute forcing.
404 - System not found
(13 items)
  		  
CPUMotherboardGraphicsRAM
i7 920 D0 MSI X58 Pro-E Zotac GTX 275 3x2GB G.Skill DDR3-1333 9-9-9-24 
Hard DriveOptical DriveOSMonitor
30GB OCZ Vertex, 640GB WD Caviar Black ASUS DVD-RW Win 7 Pro x64, Ubuntu 10.04 i386 Samsung 2253BW 
KeyboardPowerCaseMouse
Turbo-Trak (Google it :D) Corsair HX-520 CM690 Dogitech G5 
Mouse Pad
Everglide Titan 
View all
  hide details  
Reply
404 - System not found
(13 items)
  		  
CPUMotherboardGraphicsRAM
i7 920 D0 MSI X58 Pro-E Zotac GTX 275 3x2GB G.Skill DDR3-1333 9-9-9-24 
Hard DriveOptical DriveOSMonitor
30GB OCZ Vertex, 640GB WD Caviar Black ASUS DVD-RW Win 7 Pro x64, Ubuntu 10.04 i386 Samsung 2253BW 
KeyboardPowerCaseMouse
Turbo-Trak (Google it :D) Corsair HX-520 CM690 Dogitech G5 
Mouse Pad
Everglide Titan 
View all
  hide details  
Reply
post #8 of 48
7/23/10 at 6:24am
Bloody hell i trusted a few good clients to this protocol. Now look at it.

Quote:
Originally Posted by videoman5 View Post
MAC filtering still works.
I hope that is sarcasm.
Leon
(17 items)
  		  
CPUMotherboardGraphicsRAM
Phenom II X4 N970 2.2GHZ Aspire AS5552G-7641 Motherboard Radeon HD 6650m 8GB DDR3 1066MHZ 
Hard DriveHard DriveOptical DriveCooling
A-DATA 128GB SSD Mushkin 16GB Class 10 SD Card DVD Super Multi Aspire AS552G-7641 Cooler 
OSMonitorKeyboardPower
Windows 7 Professional x64 Acer 15.6" 1366x768 Aspire AS5552G Keyboard Hipro 19v 4.74a 
CaseMouseAudioOther
Acer Aspire AS5552G Razer Orochi Realtek HD Audio Intel Centrino 6230 Wireless-N + Bluetooth 3.0HS 
View all
  hide details  
Reply
Leon
(17 items)
  		  
CPUMotherboardGraphicsRAM
Phenom II X4 N970 2.2GHZ Aspire AS5552G-7641 Motherboard Radeon HD 6650m 8GB DDR3 1066MHZ 
Hard DriveHard DriveOptical DriveCooling
A-DATA 128GB SSD Mushkin 16GB Class 10 SD Card DVD Super Multi Aspire AS552G-7641 Cooler 
OSMonitorKeyboardPower
Windows 7 Professional x64 Acer 15.6" 1366x768 Aspire AS5552G Keyboard Hipro 19v 4.74a 
CaseMouseAudioOther
Acer Aspire AS5552G Razer Orochi Realtek HD Audio Intel Centrino 6230 Wireless-N + Bluetooth 3.0HS 
View all
  hide details  
Reply
post #9 of 48
7/23/10 at 6:29am
Quote:
Originally Posted by Marma Duke View Post
Heheh, not hard to change your MAC address.
Yes, but wouldn't you have to know which MAC addresses are allowed prior to connecting in order to spoof it? How are you going to find that out?
Liquid Fusion
(13 items)
  		  
CPUMotherboardGraphicsRAM
Intel Core i7 920 (4.2 GHz) EVGA X58 3X SLI (E758) EVGA GeForce GTX480 (SLI) 12GB G.Skill Ripjaws DDR3 1600MHz 
Hard DriveOptical DriveOSMonitor
600GB Western Digital Velociraptor (2-Way RAID0) Sony Slimline Bluray Drive Microsoft Windows 7 Ultimate 64-bit SP1 Hanns-G HG-281DPB 28-Inch 
KeyboardPowerCaseMouse
Logitech G15 (Revision 2.0) Enermax Galaxy EVO 1250 Watt Corsair Obsidian 800D Logitech G9X 
Mouse Pad
Microcenter Softpad 
View all
  hide details  
Reply
Liquid Fusion
(13 items)
  		  
CPUMotherboardGraphicsRAM
Intel Core i7 920 (4.2 GHz) EVGA X58 3X SLI (E758) EVGA GeForce GTX480 (SLI) 12GB G.Skill Ripjaws DDR3 1600MHz 
Hard DriveOptical DriveOSMonitor
600GB Western Digital Velociraptor (2-Way RAID0) Sony Slimline Bluray Drive Microsoft Windows 7 Ultimate 64-bit SP1 Hanns-G HG-281DPB 28-Inch 
KeyboardPowerCaseMouse
Logitech G15 (Revision 2.0) Enermax Galaxy EVO 1250 Watt Corsair Obsidian 800D Logitech G9X 
Mouse Pad
Microcenter Softpad 
View all
  hide details  
Reply
post #10 of 48
7/23/10 at 6:34am
Quote:
Originally Posted by randomizer View Post
Yes, you must already have the passphrase and be on the network to decrypt the other person's traffic. If you're outside the network, prepare for a few long years of painful brute forcing.
Quote:
Yes, but wouldn't you have to know which MAC addresses are allowed prior to connecting in order to spoof it? How are you going to find that out?
LOLWUT?

backtrack 4...
MyCrap v1.0
(13 items)
  		  
CPUMotherboardGraphicsRAM
i7 950 Rampage III Formula Evga GTX 470 Mushkin Redlines 
Hard DriveOSMonitorKeyboard
Corsair 60gb Force Series Win 7 Ultimate LG Scarlet 42LH70YR LCD G15 
PowerCaseMouse
TX950 HAF 932 G5 
View all
  hide details  
Reply
MyCrap v1.0
(13 items)
  		  
CPUMotherboardGraphicsRAM
i7 950 Rampage III Formula Evga GTX 470 Mushkin Redlines 
Hard DriveOSMonitorKeyboard
Corsair 60gb Force Series Win 7 Ultimate LG Scarlet 42LH70YR LCD G15 
PowerCaseMouse
TX950 HAF 932 G5 
View all
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Software News
Overclock.net › Forums › Industry News › Software News › [ATNB] WPA2 - You don't even need to crack it.