Revisions to Bully for WPS wireless auditing: is it possible to continue an interrupted --bruteforce PIN test?

Fixed failure in code formatting.

Source Link

edited May 1, 2014 at 15:19

6.7k
13
66
99

Locate the last PIN tested from the storage progress file (the first number in the last line until the ":"): $ tail /root/.bully/112233445566.run

$ tail /root/.bully/112233445566.run
# session ended 2014-04-27 03:08:48 with signal 2
63370002:63370002:1::

You can extract it directly by using cut:

$ tail /root/.bully/112233445566.run -n 1 | cut -d ":" -f 1
63370002

And continue from there:

$ sudo bully mon0 --bssid 11:22:33:44:55:66 -v 3 --bruteforce --pin 63370002
[!] Bully v1.0-22 - WPS vulnerability assessment utility
[+] Switching interface 'mon0' to channel '6'
[!] Starting pin specified, defaulting to sequential mode
[!] Using 'AA:BB:CC:DD:EE:FF' for the source MAC address
[+] Datalink type set to '127', radiotap headers present
[+] Scanning for beacon from '11:22:33:44:55:66' on channel '6'
[+] Got beacon for 'NoamChomsky' (11:22:33:44:55:66)
[!] Restoring session from '/root/.bully/8c0ca32a2751.run'
[+] Index of starting pin number is '63370002'
[+] Last State = 'NoAssoc'   Next pin '63370002'
[+] Rx(  M7  ) = 'Pin2Bad'   Next pin '63370003'
[+] Rx(  M7  ) = 'Pin2Bad'   Next pin '63370004'

I don't think that the "Restoring session" message makes any sense here, but anyway you can solve the problem.

Locate the last PIN tested from the storage progress file (the first number in the last line until the ":"): $ tail /root/.bully/112233445566.run

# session ended 2014-04-27 03:08:48 with signal 2
63370002:63370002:1::

You can extract it directly by using cut:

$ tail /root/.bully/112233445566.run -n 1 | cut -d ":" -f 1
63370002

And continue from there:

$ sudo bully mon0 --bssid 11:22:33:44:55:66 -v 3 --bruteforce --pin 63370002
[!] Bully v1.0-22 - WPS vulnerability assessment utility
[+] Switching interface 'mon0' to channel '6'
[!] Starting pin specified, defaulting to sequential mode
[!] Using 'AA:BB:CC:DD:EE:FF' for the source MAC address
[+] Datalink type set to '127', radiotap headers present
[+] Scanning for beacon from '11:22:33:44:55:66' on channel '6'
[+] Got beacon for 'NoamChomsky' (11:22:33:44:55:66)
[!] Restoring session from '/root/.bully/8c0ca32a2751.run'
[+] Index of starting pin number is '63370002'
[+] Last State = 'NoAssoc'   Next pin '63370002'
[+] Rx(  M7  ) = 'Pin2Bad'   Next pin '63370003'
[+] Rx(  M7  ) = 'Pin2Bad'   Next pin '63370004'

I don't think that the "Restoring session" message makes any sense here, but anyway you can solve the problem.

Locate the last PIN tested from the storage progress file (the first number in the last line until the ":"):

$ tail /root/.bully/112233445566.run
# session ended 2014-04-27 03:08:48 with signal 2
63370002:63370002:1::

You can extract it directly by using cut:

$ tail /root/.bully/112233445566.run -n 1 | cut -d ":" -f 1
63370002

And continue from there:

$ sudo bully mon0 --bssid 11:22:33:44:55:66 -v 3 --bruteforce --pin 63370002
[!] Bully v1.0-22 - WPS vulnerability assessment utility
[+] Switching interface 'mon0' to channel '6'
[!] Starting pin specified, defaulting to sequential mode
[!] Using 'AA:BB:CC:DD:EE:FF' for the source MAC address
[+] Datalink type set to '127', radiotap headers present
[+] Scanning for beacon from '11:22:33:44:55:66' on channel '6'
[+] Got beacon for 'NoamChomsky' (11:22:33:44:55:66)
[!] Restoring session from '/root/.bully/8c0ca32a2751.run'
[+] Index of starting pin number is '63370002'
[+] Last State = 'NoAssoc'   Next pin '63370002'
[+] Rx(  M7  ) = 'Pin2Bad'   Next pin '63370003'
[+] Rx(  M7  ) = 'Pin2Bad'   Next pin '63370004'

I don't think that the "Restoring session" message makes any sense here, but anyway you can solve the problem.

Enhanced last line example.

Source Link

edited Apr 27, 2014 at 10:11

Sopalajo de Arrierez

6.7k
13
66
99

Locate the last PIN tested from the storage progress file (the first number in the last line until the ":"): $ tail /root/.bully/112233445566.run

# session ended 2014-04-27 03:08:48 with signal 2
63370002:63370002:1::

You can extract it directly by using cut:

$ tail /root/.bully/112233445566.run -n 1 | cut -d ":" -f 1
63370002

And continue from there:

$ sudo bully mon0 --bssid 11:22:33:44:55:66 -v 3 --bruteforce --pin 63370002
[!] Bully v1.0-22 - WPS vulnerability assessment utility
[+] Switching interface 'mon0' to channel '6'
[!] Starting pin specified, defaulting to sequential mode
[!] Using 'AA:BB:CC:DD:EE:FF' for the source MAC address
[+] Datalink type set to '127', radiotap headers present
[+] Scanning for beacon from '11:22:33:44:55:66' on channel '6'
[+] Got beacon for 'NoamChomsky' (11:22:33:44:55:66)
[!] Restoring session from '/root/.bully/8c0ca32a2751.run'
[+] Index of starting pin number is '63370002'
[+] Last State = 'NoAssoc'   Next pin '63370002'
[+] Rx(  M7  ) = 'Pin2Bad'   Next pin '63370003'
[+] Rx(  M7  ) = 'Pin2Bad'   Next pin '63370004'

I don't think that the "Restoring session" message makes any sense here, but anyway you can solve the problem.

Locate the last PIN tested from the storage progress file (the first number in the last line until the ":"):

$ tail /root/.bully/112233445566.run -n 1 | cut -d ":" -f 1
63370002

And continue from there:

$ sudo bully mon0 --bssid 11:22:33:44:55:66 -v 3 --bruteforce --pin 63370002
[!] Bully v1.0-22 - WPS vulnerability assessment utility
[+] Switching interface 'mon0' to channel '6'
[!] Starting pin specified, defaulting to sequential mode
[!] Using 'AA:BB:CC:DD:EE:FF' for the source MAC address
[+] Datalink type set to '127', radiotap headers present
[+] Scanning for beacon from '11:22:33:44:55:66' on channel '6'
[+] Got beacon for 'NoamChomsky' (11:22:33:44:55:66)
[!] Restoring session from '/root/.bully/8c0ca32a2751.run'
[+] Index of starting pin number is '63370002'
[+] Last State = 'NoAssoc'   Next pin '63370002'
[+] Rx(  M7  ) = 'Pin2Bad'   Next pin '63370003'
[+] Rx(  M7  ) = 'Pin2Bad'   Next pin '63370004'

I don't think that the "Restoring session" message makes any sense here, but anyway you can solve the problem.

Locate the last PIN tested from the storage progress file (the first number in the last line until the ":"): $ tail /root/.bully/112233445566.run

# session ended 2014-04-27 03:08:48 with signal 2
63370002:63370002:1::

You can extract it directly by using cut:

$ tail /root/.bully/112233445566.run -n 1 | cut -d ":" -f 1
63370002

And continue from there:

$ sudo bully mon0 --bssid 11:22:33:44:55:66 -v 3 --bruteforce --pin 63370002
[!] Bully v1.0-22 - WPS vulnerability assessment utility
[+] Switching interface 'mon0' to channel '6'
[!] Starting pin specified, defaulting to sequential mode
[!] Using 'AA:BB:CC:DD:EE:FF' for the source MAC address
[+] Datalink type set to '127', radiotap headers present
[+] Scanning for beacon from '11:22:33:44:55:66' on channel '6'
[+] Got beacon for 'NoamChomsky' (11:22:33:44:55:66)
[!] Restoring session from '/root/.bully/8c0ca32a2751.run'
[+] Index of starting pin number is '63370002'
[+] Last State = 'NoAssoc'   Next pin '63370002'
[+] Rx(  M7  ) = 'Pin2Bad'   Next pin '63370003'
[+] Rx(  M7  ) = 'Pin2Bad'   Next pin '63370004'

I don't think that the "Restoring session" message makes any sense here, but anyway you can solve the problem.

Minor semantic enhancement.

Source Link

edited Apr 26, 2014 at 19:56

Sopalajo de Arrierez

6.7k
13
66
99

Locate the last PIN tested from the storage progress file (the first number in the last line until the ":"):

$ tail /root/.bully/112233445566.run -n 1 | cut -d ":" -f 1
63370002

And continue from there:

$ sudo bully mon0 --bssid 11:22:33:44:55:66 -v 3 --bruteforce --pin 63370002
[!] Bully v1.0-22 - WPS vulnerability assessment utility
[+] Switching interface 'mon0' to channel '6'
[!] Starting pin specified, defaulting to sequential mode
[!] Using 'AA:BB:CC:DD:EE:FF' for the source MAC address
[+] Datalink type set to '127', radiotap headers present
[+] Scanning for beacon from '11:22:33:44:55:66' on channel '6'
[+] Got beacon for 'NoamChomsky' (11:22:33:44:55:66)
[!] Restoring session from '/root/.bully/8c0ca32a2751.run'
[+] Index of starting pin number is '63370002'
[+] Last State = 'NoAssoc'   Next pin '63370002'
[+] Rx(  M7  ) = 'Pin2Bad'   Next pin '63370003'
[+] Rx(  M7  ) = 'Pin2Bad'   Next pin '63370004'

I don't think that the "Restoring session" message makes any sense here, but anyway you can solve the problem.

Locate the last PIN tested from the storage file (the first number in the last line until the ":"):

$ tail /root/.bully/112233445566.run -n 1 | cut -d ":" -f 1
63370002

And continue from there:

$ sudo bully mon0 --bssid 11:22:33:44:55:66 -v 3 --bruteforce --pin 63370002
[!] Bully v1.0-22 - WPS vulnerability assessment utility
[+] Switching interface 'mon0' to channel '6'
[!] Starting pin specified, defaulting to sequential mode
[!] Using 'AA:BB:CC:DD:EE:FF' for the source MAC address
[+] Datalink type set to '127', radiotap headers present
[+] Scanning for beacon from '11:22:33:44:55:66' on channel '6'
[+] Got beacon for 'NoamChomsky' (11:22:33:44:55:66)
[!] Restoring session from '/root/.bully/8c0ca32a2751.run'
[+] Index of starting pin number is '63370002'
[+] Last State = 'NoAssoc'   Next pin '63370002'
[+] Rx(  M7  ) = 'Pin2Bad'   Next pin '63370003'
[+] Rx(  M7  ) = 'Pin2Bad'   Next pin '63370004'

I don't think that the "Restoring session" message makes any sense here, but anyway you can solve the problem.

Locate the last PIN tested from the storage progress file (the first number in the last line until the ":"):

$ tail /root/.bully/112233445566.run -n 1 | cut -d ":" -f 1
63370002

And continue from there:

$ sudo bully mon0 --bssid 11:22:33:44:55:66 -v 3 --bruteforce --pin 63370002
[!] Bully v1.0-22 - WPS vulnerability assessment utility
[+] Switching interface 'mon0' to channel '6'
[!] Starting pin specified, defaulting to sequential mode
[!] Using 'AA:BB:CC:DD:EE:FF' for the source MAC address
[+] Datalink type set to '127', radiotap headers present
[+] Scanning for beacon from '11:22:33:44:55:66' on channel '6'
[+] Got beacon for 'NoamChomsky' (11:22:33:44:55:66)
[!] Restoring session from '/root/.bully/8c0ca32a2751.run'
[+] Index of starting pin number is '63370002'
[+] Last State = 'NoAssoc'   Next pin '63370002'
[+] Rx(  M7  ) = 'Pin2Bad'   Next pin '63370003'
[+] Rx(  M7  ) = 'Pin2Bad'   Next pin '63370004'

I don't think that the "Restoring session" message makes any sense here, but anyway you can solve the problem.

Mistake in file name.

Source Link

edited Apr 26, 2014 at 14:20

Sopalajo de Arrierez

6.7k
13
66
99

Loading

Source Link

created Apr 26, 2014 at 12:35

Sopalajo de Arrierez

6.7k
13
66
99

Loading

Stack Exchange Network

Return to Answer