PIXIEWPS(1) | Offline WPS bruteforce tool | PIXIEWPS(1) |
NAME¶
pixiewps - Offline WPS bruteforce toolDESCRIPTION¶
- Pixiewps is a tool written in C used to bruteforce offline the WPS pin exploiting the low or non-existing entropy of some APs (pixie dust attack).
- It is meant for educational purposes only.
SYNOPSIS¶
pixiewps <arguments>ARGUMENTS¶
REQUIRED ARGUMENTS¶
-e, --pke- Enrollee DH public key, found in M1.
-r, --pkr
- Registrar DH public key, found in M2. It can be avoided by specifying -S, --dh-small in both Reaver and Pixiewps.
- pixiewps -e <pke> -s <e-hash1> -z <e-hash2> -a <authkey> -n <e-nonce> -S
-s, --e-hash1
- Enrollee hash-1, found in M3.
-z, --e-hash2
- Enrollee hash-2, found in M3.
-a, --authkey
- Authentication session key. Although for this parameter a modified version of Reaver or Bully is needed, it can be avoided by specifying small Diffie-Hellman keys in both Reaver and Pixiewps and supplying --e-nonce, --r-nonce and --e-bssid.
- pixiewps -e <pke> -s <e-hash1> -z <e-hash2> -S -n <e-nonce> -m <r-nonce> -b <e-bssid>
-n, --e-nonce
- Enrollee's nonce, found in M1.
OPTIONAL ARGUMENTS¶
-m, --r-nonce- Registrar's nonce, found in M2.
-b, --e-bssid
- Enrollee's BSSID.
-S, --dh-small
- Small Diffie-Hellman keys. The same option MUST be specified in Reaver (1.3 or later versions) too. This option DOES NOT WORK (currently) with mode 3.
-v, --verbosity
- Verbosity level 1-3, 1 is quietest, default is 3.
-h
- Display a simple help usage screen.
--help
- Display verbose help.
-V, --version
- Display version information.
--mode N[,... N]
- Select modes, comma separated (experimental modes are not used unless specified):
- 1 - RT/MT
- 2 - eCos simple
- 3 - RTL819x
- 4 - eCos simplest [Experimental]
- 5 - eCos Knuth [Experimental]
--start [mm/]yyyy
- --end
- [mm/]yyyy
- Starting and ending dates for mode 3, they are interchangeable.
- If only one is specified, the machine current time will be used for the other. The earliest possible date is 01/1970, corresponding to 0 (Epoch time).
EXAMPLES¶
pixiewps --pke <pke> --pkr <pkr> --e-hash1 <e-hash1> --e-hash2 <e-hash2> --authkey <authkey> --e-nonce <e-nonce>pixiewps -e <pke> -r <pkr> -s <e-hash1> -z <e-hash2> -a <authkey> -n <e-nonce>
AUTHOR¶
Pixiewps was developed by wi7ire.This manual page was written by Daniel Echeverry <epsilon77@gmail.com> and Samuel Henrique <samueloph@gmail.com> for the Debian project, but can be used by other projects as well.
September 2016 | pixiewps |