boruchy / reaver-wps

Automatically exported from code.google.com/p/reaver-wps
0 stars 0 forks source link

Ability to obtain the WPS key from a known WPA key #556

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago
Please describe the feature you would like to be implemented into Reaver.
English only.

Request the ability to derive the WPS key from a known WPA key

   More and more WPS blocked routers are becoming available. However even these routers allows a certain number of WPS requests to be made before the router locks. 

   In many cases the first keys used by these WPS routers is a simple numeric string easily broken by brute force methods(ie aircrack-ng nor reaver). Furthermore more users change their WPA Key and pay little regard to WPS.

   WPS locked routers if they are DOS and forced to reset loose their WPS lock and are open allowing limited WPS request to be made.

   Hence if you have the WPS key you could in theory obtain the new WPA
 key. This feature would allow a small window of exploitation against WPS locked routers.

Original issue reported on code.google.com by muske...@yahoo.com on 12 Sep 2013 at 4:45