Hopefully some of you will find this table useful for () pentesting WiFi routers. Please note that the figures shown in the far right column 'Time' are based on a Palit GTX 970 using oclHashCat. You will need to do your own maths for this, but it gives you a good idea of average crack times for a fairly standard £300 / $500 GPU. For WPA2 with the GTX 970, my benchmarks with hashcat are; • 13,774,031,184 password hashes per day • 573,917,966 per hour • 9,565,299 per minute • 159,421 per second Anything marked as 'Never' and red will take more than a year to crack. Anything green is less than 1 week. Anything amber is unknown or will require a word list.

For EE/Brightbox wordlist details, see (appears to have been taken down. Google cache search.) For NETGEAR details, see. Obviously most of you will find the SSID / Password Format / Length columns the most useful. Loving your work!

Silvester Feuerwerk online kaufen hat Vorteile. ☛ Bequem von zu Hause kaufen.☛ Effekte im Video ansehen ☛ Vertrauen Sie dem Fachmann. Dec 10, 2012. The first version was released in crack-wifi.com, lampiweb.com and auditoriaswireless.net the 8th december 2012 It was published to reveal the results of my studies about Huawei HG 532c from ISP FTE (orange - Spanish. Bash adaptation of arcadyan easy box WPA and PIN generator by coeman76.

Is there any merit to a random walk through the keyspace? Markov chains? Does the routers ssid/mac address influence random key generation? There also must be a non-repeating rule when generating these keys that states you can't have more than two (for example) of the same characters in a sequence. So if attacking a 2WIRE 0-9, 10char, would be a wasted attempt because of the 999 at the end.

How drastically could you reduce the keyspace? I note your entry for virginmediaXXXXXX says 3 weeks, but its the same complexity as VMXXXXXXX-2G/5G at 6 days. Wow, I have to say I am impressed with Xfinity on their default passwords in this case.

Looks like I will have to settle for WPS pins on those instead. I'll update with my lockout findings. Thanks for the info. FYI gemtek seem to be access point/4G routers or internal WiFi cards! The cat and mouse game continues with default passphrases. I could see some sort of decentralised OCLhashcat whatever with participants being rewarded with bitcoin or something.

Does anyone know what limits the crack rate? Driver License Points Check on this page. Is it stream processors or is it raw clockspeed or both?

Wheres the bottleneck? Which part of the silicon is OCL stressing? Xfinity on the other hand seems to be 16 chars hex. Is that 16 to the power of 16? Appears to be uppercase and numbers. Uppercase = 26 letters, numbers = 10 (including 0) (26+10)^16 = 7,958,661,109,946,400,884,391,936.

Correction: On closer inspection, there does not appear to be any letters above F, which is pretty standard for a lot of router passwords. Therefore you are correct bingowings85, it would be; (6+10)^16 = 18,446,744,073,709,551,616 Would take years to crack unless you have an amazing rig or a super computer. Therefore not worth bothering trying to crack this one via Brute Force. Stick to dictionaries. One point to note is that how hard a password is to crack tends to relate more to it's length, rather than it's complexity. Both help, but this Xfinity is a prime example of a password only using 2 types of digits but still being almost impossible to brute-force simply due to it's length. This, of course, does not apply should standard dictionary words be used, or obvious replacements such as $ for S and 3 for E.

I will look at updating the table shortly, busy morning at work today! Seems all new routers are trending towards impossible. I would say so, yes. The ability to capture a WPA/2 handshake is not something they can get rid of any time soon, as it's the way routers actually work, so the easiest way for companies to secure their routers is to simply make the password more difficult. Older routers are certainly the easier passwords, most of the time. One mitigation is to get better equipment, such as a rig of 8 x GPUs, but this is expensive.