Pyrit - The Famous Wpa Precomputed Cracker
Pyrit allows you lot to practice massive databases of pre-computed WPA/WPA2-PSK authentication stage inward a space-time-tradeoff. By using the computational might of Multi-Core CPUs in addition to other platforms through ATI-Stream,Nvidia CUDA in addition to OpenCL, it is currently past times far the most powerful assault against 1 of the world's most used security-protocols.
WPA/WPA2-PSK is a subset of IEEE 802.11 WPA/WPA2 that skips the complex draw of piece of occupation of cardinal distribution in addition to customer authentication past times assigning every participating political party the same pre shared key. This master key is derived from a password which the administrating user has to pre-configure e.g. on his laptop in addition to the Access Point. When the laptop creates a connecter to the Access Point, a novel session key is derived from the master key to encrypt in addition to authenticate next traffic. The "shortcut" of using a unmarried master key instead of per-user keys eases deployment of WPA/WPA2-protected networks for home- in addition to small-office-use at the toll of making the protocol vulnerable to brute-force-attacks against it's cardinal negotiation phase; it allows to ultimately disclose the password that protects the network. This vulnerability has to hold upward considered exceptionally disastrous equally the protocol allows much of the cardinal derivation to hold upward pre-computed, making elementary brute-force-attacks fifty-fifty to a greater extent than alluring to the attacker. For to a greater extent than background come across this article on the project's blog (Outdated).
The writer does non encourage or back upward using Pyrit for the infringement of peoples' communication-privacy. The exploration in addition to realization of the engineering scientific discipline discussed hither motivate equally a purpose of their own; this is documented past times the opened upward development, strictly sourcecode-based distribution in addition to 'copyleft'-licensing.
Pyrit is costless software - costless equally inward freedom. Everyone tin inspect, re-create or alter it in addition to percentage derived piece of occupation nether the GNU General Public License v3+. It compiles in addition to executes on a broad diversity of platforms including FreeBSD, MacOS X in addition to Linux equally operation-system in addition to x86-, alpha-, arm-, hppa-, mips-, powerpc-, s390 in addition to sparc-processors.
Attacking WPA/WPA2 past times brute-force boils downwards to to computing Pairwise Master Keys equally fast equally possible. Every Pairwise Master Key is 'worth' precisely 1 megabyte of information getting pushed through PBKDF2-HMAC-SHA1. In turn, computing 10.000 PMKs per minute is equivalent to hashing 9,8 gigabyte of information amongst SHA1 inward 1 second.
These are examples of how multiple computational nodes tin access a unmarried storage server over diverse ways provided past times Pyrit:
- A unmarried storage (e.g. a MySQL-server)
- A local network that tin access the storage-server straight in addition to furnish 4 computational nodes on diverse levels amongst solely 1 node truly accessing the storage server itself.
- Another, untrusted network tin access the storage through Pyrit's RPC-interface in addition to provides 3 computional nodes, ii of which truly access the RPC-interface.
How to use
Pyrit compiles in addition to runs fine on Linux, MacOS X in addition to BSD. I don't attention virtually Windows; driblet me a draw (read: patch) if you lot brand Pyrit piece of occupation without copying one-half of GNU ... Influenza A virus subtype H5N1 direct for installing Pyrit on your organization tin hold upward flora inward the wiki. There is equally good a Tutorial in addition to a reference manual for the commandline-client.
How to participate
You may desire to read this wiki-entry if interested inward porting Pyrit to novel hardware-platform. Contributions or põrnikas reports you lot should [submit an Issue] (https://github.com/JPaulMora/Pyrit/issues).
