ABForum.be  
Ga terug   ABForum.be > Algemeen > GSM-PDA-GPS-Smartphone
Forum Handleidingen Chat Downloads LinX Radio

GSM-PDA-GPS-Smartphone Alle vragen en nieuws ivm smartphones, PDA's, GSM's, GPS'en, en andere handhelds


Reageren
 
Onderwerptools Weergave
  #1  
Oud 09/06/10, 13:49
Ro0tWiZ's avatar
Ro0tWiZ Offline Man
ABF Addict
Belgie
 
Geregistreerd: 05/02/07
Berichten: 2,815
Provider: Teletet
Cool crack thomson speedtouch wpa keys with your android phone

Python on android

You can use your android for domotics that's a lot of fun and impressive. But here is another way to impress your friends with your phone. There's a scripting environment available for the Android and that makes it possible to run python, which in turn makes it possible to run the python version of stkeys.

stkeys

stkeys is a little tool demonstrating a weakness in the thomson speedtouch wifi router default wpa key. The default wep/wpa key is generated by an algorithm which is based on the serial number and so is the default SSID. The algorithm was cracked a long time ago and is a nice demonstration of what you shouldn't rely on for security. This is a very dangerous situation as wrongfully thinking you are safe is even worse then running an open network.
Read more about this on gnucitizen.org
I remembered someone posted a python version of this tool in the comments on that article, this script runs on android without modification. I modified it a bit for convenience so it scans for networks and uses a GUI for easy usage.
Android scripting environment

To do this you need the android scripting environment, which you can install from here
Or scan this barcode with your android:

After you've installed the scripting environment start it in apps, (it's called ase)
Press menu, then view, then Interpreters, then menu again, then add and in this menu you can select the python interpreter.
When the interpreter is installed you can run python scripts (great!) you can even edit and write them on the phone with the build in editor.

The Script

Download the modified python script here
Connect the phone to your pc with the usb cable, and save the script on your sd card in the directory /ase/scripts
Next time you run the ase on your phone the script is available.

execute it.
select the speedtouch SSID (if there is any)

watch it running

within minutes you get 1 or 2 possible ssid keys. If you get 2 you just have to try them both.

Select the key and use the button to paste it to the android clipboard.
Disclaimer

This is obviously something you should only try on routers you own yourself or where you have permission to do this. The process is undetectable as long as you don't connect to the router. In most circumstances it's obviously illegal to decrypt network traffic without permission. Use this to convince people of changing the WEP/WPA key in routers where it's factory default, generated keys are not safe.
A great tool

This Scripting environment on the android is really cool, I did most of the (very rough) modifications I did on this script on the phone itself in just a few minutes.
De volgende leden hebben Ro0tWiZ bedankt voor dit bericht :
chessboxing (09/06/10)
Reageren

Favorieten/bladwijzers

Onderwerptools
Weergave

Regels voor berichten
Je mag geen nieuwe onderwerpen starten
Je mag niet reageren op berichten
Je mag geen bijlagen versturen
Je mag niet je berichten bewerken

BB code is Aan
Smileys zijn Aan
[IMG]-code is Aan
HTML-code is Uit

Forumnavigatie


Page Ranking Tool
Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc. and
Page generated in 0.07 seconds (100.00% PHP - 0% MySQL) with 10 queries