Highest Voted 'wps' Questions - IT Security Stack Exchange

3

votes

1 answer

Why use WPS on an unsecured WiFi AP?

I was searching for my home WiFi AP (router's broken and am trying to fix it), when I found a WiFi access point that does not have any security but does have WPS enabled: Thinking that it probably had a MAC address filter, I tried connecting to it.…

wifi wps

asked May 17 '16 at 17:08

AStopher

777
6
18

3

votes

1 answer

Does WPS actually send passphrase?

As you know, by hacking WPS we can get the networks PSK but my question is that does WPS exactly transfers PSK when connection established? If so, Why does it need to send PSK? I mean, if the session is started successfully, why AP should send PSK…

wifi wpa2-psk wps

asked Oct 11 '15 at 18:33

lusic

31
1

2

votes

2 answers

Enabled WPS methods

I would like to know if there are tools available to identify what WPS method is actually enabled on an AP? I would like to know also if there is a way by looking at packets to know which WPS method is enabled?

wpa2 wpa2-psk wps

asked Sep 08 '15 at 08:08

Othman

587
5
16

2

votes

2 answers

Where does the WPS Pin fit into the 4-way-handshake?

So I found a diagram online, that shows the 4-way-handshake: The way I understand it, when a station (STA) is trying to authenticate to an access point (AP), the AP sends the ANonce (authentication number, once). Then the handshake continues.. What…

wireless wps

asked Oct 03 '13 at 17:44

BubbleMonster

267
3
7

2

votes

2 answers

Has the WPS brute-force cracking issue been fixed?

I have heard a rumor that the WPS brute force attack doesn't work on newer devices. Is that true?

wifi brute-force wps

asked Mar 27 '13 at 14:56

Smit Johnth

1,709
4
17
23

2

votes

0 answers

Why would the WPS PIN be separated into two halves?

While preparing for the CompTIA Security+ certification, I learned that a problem with the 8-digit WPS PIN is that checking is split into two sets of 4-digits, and also that the last digit is a check digit so it's really one 4-digit number and one…

wps

asked Apr 24 '22 at 06:22

jia103

121
2

2

votes

2 answers

How to know if my router has been hacked?

I have a (maybe dumb) question for you. I was wondering if there is a way to know if my router has been hacked. I secured it the best that I can and also made it so only the mac addresses of the devices that I know can access my WiFi. I turned off…

network wifi account-security router wps

asked Apr 18 '20 at 14:13

claire

21
4

2

votes

1 answer

How to continue where I left off on reaver?

I was attempting to brute-force the WPS PIN on my home router to check the security of my network. Strangely, after three days it still had not finished, I believe this is because my computer was far away from the router while I was performing this…

linux wifi kali-linux wpa2 wps

asked Sep 16 '17 at 19:49

user5623335

381
1
4
12

2

votes

1 answer

WPS PBC Security

On my router I have a WPS button (PBC) that enables anyone to connect during a short time frame. There is no 4 numbers PIN anywhere on the router or on the instruction manual, and I can't find any trace of it in the router configuration either. How…

wireless router wps

asked Nov 24 '16 at 16:45

BgrWorker

1,941
1
10
17

2

votes

1 answer

Is WPS still insecure if the router requires a client pin?

Recently purchased an Asus AC88U and I noticed that you can require a client pin for a WPS connection to successfully happen. It seems that this would be a pretty secure implementation of WPS. Are there still insecurities of using this method of…

network wifi wireless router wps

asked Sep 01 '16 at 22:09

Paramount

123
3

2

votes

1 answer

Dumpper and Jumpstart for hacking WPS

As asked in this question, there is a program called Dumpper. it can find PIN of AP without brute forcing them. But with another tool called Jumpstart, together they can crack any AP that is running WPS feature. It laterally bring the PSK of WPA2…

wifi wireless wps

asked Mar 29 '16 at 11:55

Eibo

2,485
3
19
32

2

votes

1 answer

How to optimize cracking speed with Reaver

When testing network security with Reaver in order to find out WPS, what parameters do you usually use with respect to cracking speed? I've chosen for TP-LINK Archer C20i AC750 Dual Band a delay of 20s, small DH keys and no nacks, but I guess the…

wifi password-cracking wpa2 wps

asked Feb 18 '16 at 20:32

Stanislav Jirák

141
4

2

votes

1 answer

Is a "standalone WPS server" possible?

Wi-Fi Protected Setup (WPS) is a network security standard to create a secure wireless home network. It aims at simplifying the enrollment of WiFi devices in a WiFi network (via a PIN, a button, ...). I have a standalone AP which does not…

network wifi wireless wpa2 wps

asked Feb 12 '16 at 08:24

WoJ

8,957
2
32
51

1

vote

1 answer

Why is it not possible to capture a WPS handshake to WLAN

There are well known attacks to WPA by capturing handshake and running offline hashcracking against it. Also there are tools to exploit vulnerability in WPS to get the PIN. My question is why WPS handshake (if it is called handshake) cannot be…

wps

asked Jun 02 '14 at 17:50

user3155036

75
1
5

1

vote

1 answer

Why is monitor mode necessary on the NIC used to attack WPS with reaver and other tools?

I am trying to get a deeper understanding about the inner working of WiFi Protected Setup and its active attack using reaver, bully and other utilities. What I am really unable to realize is why it is necessary to set the network card on the…

wireless wps

asked Mar 07 '14 at 10:20

Dakatine

61
7

Questions tagged [wps]