Pwnagotchi - hacking WiFi networks in seconds | Real Experiment

แชร์
ฝัง
  • เผยแพร่เมื่อ 22 ธ.ค. 2024

ความคิดเห็น • 468

  • @robertanderson5092
    @robertanderson5092 ปีที่แล้ว +65

    My neighbors will usually give me their WiFi passwords if I ask nicely

    • @e1woqf
      @e1woqf ปีที่แล้ว +1

      Why would they do that?

    • @threeMetreJim
      @threeMetreJim ปีที่แล้ว +6

      @@e1woqf Split the bill. Both get it for half price then. Used to be common until people were scared by the "it could be a P. or a T. using your connection, getting you into trouble.". This is why you should know, and get on with, your neighbours.

    • @J-eb6nd
      @J-eb6nd ปีที่แล้ว +5

      Social engineering 👍
      Saving GPU power 😂

    • @Shri_Bhoorakaka
      @Shri_Bhoorakaka 6 หลายเดือนก่อน

      Hypothetical post....Nowadays, nobody gives wifi password 😒 🙄

  • @chiroyce
    @chiroyce ปีที่แล้ว +250

    Basically if you want to be safe against this, just like any other piece of software/website/service - have a really secure password. Larger passwords are exponentially harder to crack (as long as they aren't a common password), especially with a combination of symbols, uppercase, lowercase, and numbers.

    • @oneproudbrowncoat
      @oneproudbrowncoat ปีที่แล้ว +9

      Or use a LAN.

    • @magesmith-kd3xo
      @magesmith-kd3xo ปีที่แล้ว +43

      @@oneproudbrowncoat yeah carry a f wire and box around like a neanderthal

    • @mohammedissam3651
      @mohammedissam3651 ปีที่แล้ว +1

      Most people don’t know 😈
      Keep educate people but seriously there are 90 tries are successful of 100 times

    • @albertas978
      @albertas978 ปีที่แล้ว +7

      using WPA3 PMF Enforced network would prevent it from getting the handshake i believe [well at least would help it out]

    • @Soederlund
      @Soederlund ปีที่แล้ว +1

      Does it find and hack wifi that doesn't broadcast its SSID?

  • @anatolydyatlov963
    @anatolydyatlov963 ปีที่แล้ว +340

    Amazing. A standard dictionary attack against a WPA handshake. It's truly revolutionary! I'm sure it'll be able to crack 99% of networks out there, especially the ones with non-dictionary passwords generated automatically by ISPs

    • @yourpststudios
      @yourpststudios ปีที่แล้ว +66

      You get it! I like the idea of this thing, and will definitely be making one just because this seems a lot easier than carrying around, powering up, and running commands on my Pi 2 but the reality is that this doesn't do anything you can't already do with a laptop and a WiFi adapter. I got all excited when I heard "Automatically" but I guess I needed to remind myself that a 16 year brutce force/dictionary attack is still "Automatic" if it runs itself the whole time.......

    • @MrKoblepot
      @MrKoblepot ปีที่แล้ว +16

      I wouldn't listen to the opinion of a sir named Dyatlov 😂😂😂
      But you're right, dictionary are in most of cases useless in my experience.

    • @Matt18001
      @Matt18001 ปีที่แล้ว +17

      Well you need a dictionary that includes the default password lists of your local isps. For example in my area there are 3 major isps and their entire password lists add 600k entries to my dictionary. At least on a laptop that only represents a few minutes of time (I imagine a pi might add 10s of minutes)

    • @MrKoblepot
      @MrKoblepot ปีที่แล้ว

      @@Matt18001 where I do live we have router provided by the internet provider, with randomized 20 chars pass, made of digits, uppers and lowers, no default lass, so even with brute force, 20 chars would take an eternity, better to go phishing 😉
      But using this tool with dictionary on a whole day of walking in a big town can still bring results thanks to the huge quantity of handshakes collected, some may be weak.

    • @AlexandreLefaure
      @AlexandreLefaure ปีที่แล้ว +61

      No lol the video says ANY wifi network. Seriously this clickbait bullshit has to be stopped

  • @anniestarlight
    @anniestarlight ปีที่แล้ว +73

    Another way to protect yourself is to upgrade your wifi to WPA3, which doesn't have the same auth vulnerability with its handshake. Not every little smart device is compatible with it yet of course, but computers are

    • @jbranche8024
      @jbranche8024 ปีที่แล้ว

      Does assigning and limiting IP Adddresses help? Maybe some routers can send a notification when a New device is attempting to access the network. A lot of the world does Not have the skill or money to upgrade to the latest tech or Use IP Provided Routers.

    • @AlexandreLefaure
      @AlexandreLefaure ปีที่แล้ว

      @@jbranche8024 Just use a strong password and you are safe against this attack.

    • @curtispavlovec
      @curtispavlovec ปีที่แล้ว +4

      Yes unfortunately very few devices even in late 2023 support WPA3.

    • @nin1ten1do
      @nin1ten1do ปีที่แล้ว +1

      dont care your pass i loking for backdoor..

    • @anniestarlight
      @anniestarlight ปีที่แล้ว +1

      @@nin1ten1do So are a lot of people who are smarter than both of us lol
      And eventually, one day a backdoor will be found, and a new standard will subsequently be released to replace WPA3 when that happens just like with how WPA3 is replacing WPA2

  • @DFX2KX
    @DFX2KX ปีที่แล้ว +55

    while whitelisting MAC addresses is helpful and a good step, a fair few devices can spoof any MAC address they want (Hell, my home sever here has that option for both it's adapters in regular desktop Linux, Mint to be precise).
    As an aside, a hacking tool has no business being that cute.

    • @jbranche8024
      @jbranche8024 ปีที่แล้ว +1

      Two connected network devices can Not have the same Mac address from my understanding. Both devices would receive some but probably not all data. The device would not function properly. This would Alert the network normal users at homes. I like increasing password length and adding special characters as AI and advances in computing make it possible to Crack shorter passwords or passwords not using special characters.

    • @DFX2KX
      @DFX2KX ปีที่แล้ว +5

      @jbranche8024 they cannot, no. But an attacker need only wait for said device to disconnect, or kick it off the net first

    • @BangBangBang.
      @BangBangBang. ปีที่แล้ว

      ah yes you're the guy recommending to do something that nobody does because its trivial

    • @DFX2KX
      @DFX2KX ปีที่แล้ว +5

      @BangBangBang. pretty sure that IS done because of how trivial it is.
      How often I'm not sure, but settling up a whitelist still is the security equivalent of using a $5 chain lock on your front door.

    • @fgregerfeaxcwfeffece
      @fgregerfeaxcwfeffece ปีที่แล้ว +1

      @@DFX2KX Exactly, his "logic" is very "special".
      Trivial things like this are just automatically done by most scripts. Getting a list of allowed mac adresses is standard procedure just in case there is a white list.
      Precisely because it is so trivial you just exclude this potential source of problems. Diagnosing randomly refused or dropped connections is way more of a hassle then just doing stuff like this from the start. There is no downside to just doing this every time if there are any devices online.

  • @SumanRoy.official
    @SumanRoy.official ปีที่แล้ว +52

    so it's just an automated interceptor, we still send the data to a rig which will crack the password using hashcat

    • @KOOLAIDxK1D
      @KOOLAIDxK1D ปีที่แล้ว +13

      Yep, clickbait

    • @UntrackedEndorphins
      @UntrackedEndorphins ปีที่แล้ว +3

      you could run the recovered hash against a dictionary in the device. Or do the same thing I used to do and automatically upload them to a server

    • @CMDR_John_Crichton
      @CMDR_John_Crichton 5 หลายเดือนก่อน +4

      @@KOOLAIDxK1D No, not entirely clickbait. The pwnagotchi can be loaded with a plugin that automatically sends the intercepted hashes to an online cracking service, which emails you if it gets a hit. Doesn't get everything, but its still functional.

    • @KOOLAIDxK1D
      @KOOLAIDxK1D 5 หลายเดือนก่อน

      @@CMDR_John_Crichton now that sounds more like it

  • @muhammedmokrane1440
    @muhammedmokrane1440 ปีที่แล้ว +24

    The quality, is mind blowing! thank you for all who work hard to get this result, and keep it up, the content is very interesting.

    • @Sumsubcom
      @Sumsubcom  9 หลายเดือนก่อน +2

      Thank you very much! We appreciate it

  • @checkm8606
    @checkm8606 ปีที่แล้ว +20

    First of all you did not create it and it is not new... Those exist for a long time...
    Second of all it just works for wpa (an already old and vulnerable protocol...) Which no one should use anyways...
    .
    And third of all it just catches hashes No passwords...
    To get a password from a hash youll essentially need to brute force try all password... And hope youll find the right one ... So more of an gimmick than a useful tool to hack wifi routers...

    • @Bikesdavebikes
      @Bikesdavebikes 9 หลายเดือนก่อน +1

      fourth of all no body cares

    • @checkm8606
      @checkm8606 8 หลายเดือนก่อน

      @user-xh2ms3nc5r if that is the case then I was wrong, my bad...

    • @TonySmith-zq2hx
      @TonySmith-zq2hx 6 หลายเดือนก่อน +1

      Brute force?? Try hashcat

    • @checkm8606
      @checkm8606 6 หลายเดือนก่อน +1

      @@TonySmith-zq2hx to my knowledge even hashcat brut-forces to some extent... Sure you can optimize around the human psychology, or commonly used passwords but the rest is brute force...
      Bc hash-fcn are ment to be one way fcn. (Easy in one way. More or less impossible in the other direction.)

  • @Videoaccountname
    @Videoaccountname ปีที่แล้ว +4

    Does this work on WPA3? Video only mentions WPA and WPA2. Also, how about WPA2-enterprise, i.e. EAP-TLS? Should work, since "hack any wifi network" would include that.

    • @appleseed_316
      @appleseed_316 ปีที่แล้ว +3

      i think it only work against wpa-psk not wpa3 or EAP-TLS and P-EAP.

  • @RavyDavy
    @RavyDavy 10 หลายเดือนก่อน +3

    Came across this channel in one of your shorts, and began watching your full length videos - really liking the presentation and the content - you have yourself a new sub here.

    • @Sumsubcom
      @Sumsubcom  9 หลายเดือนก่อน +1

      Welcome aboard! Check out the new one about QR codes * , *

  • @coldfire6869
    @coldfire6869 ปีที่แล้ว +9

    I'd recommend the Raspberry pi zero wh. Thats the model with pins already soldered onto the board like shown in the video

  • @kriss3d
    @kriss3d ปีที่แล้ว +8

    So it doesnt actually let you hack any wifi. It does what every other wifi hacking method does. It captures the packages and youre STILL relying on bruteforce/dictionary attack on the hashes.
    This makes this otherwise cute little tool pretty moot as theres tons of tools out there can you could do this with that would be cheaper to build and smaller.

    • @johndoe__8
      @johndoe__8 11 หลายเดือนก่อน +2

      What would be cheaper?

    • @kriss3d
      @kriss3d 11 หลายเดือนก่อน

      @@johndoe__8 Its just about capturing the handshakes. You can get an arduino IDE board for like $10 or so. And a cheap wifi antenna for about the same. The rest is code

  • @TheAmazingBobl
    @TheAmazingBobl ปีที่แล้ว +39

    It's cute, simple and cheap, just wow! And than a very nice video fully explaining how the product is made and how to use it, just AMAZING!! Definitely gonna check out the product!! :3

    • @Sumsubcom
      @Sumsubcom  ปีที่แล้ว +5

      Thanks man! Appreciate your opinion

    • @LEGENDS-ex9td
      @LEGENDS-ex9td ปีที่แล้ว +3

      Where to buy it

    • @douglasduda9826
      @douglasduda9826 ปีที่แล้ว

      @@LEGENDS-ex9td It is probably something you can find online, you may not be able to buy it Ready to use, But you can buy all the parts and make one yourself.

  • @triularity
    @triularity 11 หลายเดือนก่อน +1

    @10:11 - NOT true anymore. Many devices nowadays use a random MAC to connect by default (unless turned off). This is done for privacy, but also breaks things like static DHCP and knowing if a "new" MAC is an intruder, or just a random one from an existing device. Of course, anyone could just clone a valid device's MAC and use it to hide.. making the security advice given almost useless.

  • @TheDJLatex
    @TheDJLatex ปีที่แล้ว +23

    when a windows user feels like hackerman 😂😂

    • @maksimmuruev423
      @maksimmuruev423 ปีที่แล้ว +1

      Exactly as soo as you can see drive C:\ you imitatively know that this will be 'bullshit'.

    • @username-mc7jw
      @username-mc7jw ปีที่แล้ว

      What is Windoze??? Sounds like an inferior OS that only sheep would use.

    • @Chickenfriedpenguin
      @Chickenfriedpenguin 10 หลายเดือนก่อน

      @@username-mc7jw found the arch user.

  • @rzamafuu478
    @rzamafuu478 ปีที่แล้ว +8

    very nice video, I enjoyed watching it entirely

  • @artnotes
    @artnotes ปีที่แล้ว +3

    This device claims it attacks any wifi hotspot, which is an overclaim. Without even finishing the rest of the video, I can make some guesses. It will work with something like EAP-TLS, and it likely uses WPA2 handshake vulnerability, which is majorly fixed in WPA3.
    And After I finish the video my assumption is true. I am usually very careful when I hear it works on anything. 99% of the time, it's a troll.

  • @WoetotheVanquished
    @WoetotheVanquished ปีที่แล้ว +3

    so it's only for WPA?

    • @Georgggg
      @Georgggg ปีที่แล้ว

      WEP-encrypted wifi is cracked automatically in 5 minutes with 100% success rate.
      Almost all wifi is WPA/WPA2 now.

  • @chillchilli2671
    @chillchilli2671 ปีที่แล้ว +7

    The only useful attack you can do with any device labelled "Wi-FI Hacking device" is Wi-FI De-auth/Turning off their wifi.

    • @fgregerfeaxcwfeffece
      @fgregerfeaxcwfeffece ปีที่แล้ว +2

      Sort of, yes, it is the only thing that will just always work with minimal effort. But many people still make severe mistakes in password choice.
      But I agree, router defaults have become more sensible during the last 20 years. Doesn't prevent people from changing them to less sensible options.

    • @jbtafisher
      @jbtafisher 2 หลายเดือนก่อน

      Luckily WPA3 has protect management frames which prevent this

  • @Luftbubblan
    @Luftbubblan ปีที่แล้ว +2

    I'm a bit confused. It surely is too slow to crack anything, even a dictionary would be way too slow. So what is it doing? Only collecting handshakes?
    At some point the video talks about online cracking, if this is needed, how would it be connected to the internet? How would it be "safe" to use?
    Seems more like a toy than a tool.

    • @nrgonline
      @nrgonline ปีที่แล้ว +5

      Video is misguided. The device just collects unauthorized handshakes which are called IV. You need a lot of them. With that, you would need to run it through a very large dictionary to find the password. Then once found, you can test the password on that network with a wifi device. Ppl watching this and thinking they can just sit next to a wifi network and get in with a click of a button are wrong.
      The entire point, make your wifi password hard and long. Set up layers in your network. Different vlans, Mac auth, honeypot for unknown device, etc.

  • @dannym817
    @dannym817 ปีที่แล้ว +1

    So if the password is next to hashed also be salted or pepperd it does not work?
    Arent wifi passwords also salted?
    Also because the real power comes from the software running on the device, not the raspberry it self. Doing most of the work by api web services. Why not run it on a smart phone? A person looking at a smartphone is a lot less suspisious then someone looking to this device.

    • @anonymes2884
      @anonymes2884 ปีที่แล้ว

      It's a novelty item that was popular 3 or 4 years ago as a fun DIY project, the idea being you have a (kinda sorta) Tamagotchi toy that's _also_ capturing handshakes. In reality though, sure, you could just use a phone or some other less obvious device.
      (and a strong password of 12+ characters, WPA3 etc. all defeat this, it's old news - not to say hash attacks don't still _work_ of course, _plenty_ of bad passwords/WPA2 still out there)

  • @snowfreeze
    @snowfreeze ปีที่แล้ว +7

    Unbelievable! So, if I understand correctly, it doesn't actually give the hacker the Password to the wifi? If not, what good is it then?

    • @ДарийФедореев-э7т
      @ДарийФедореев-э7т ปีที่แล้ว +9

      It gives hacker password hash, which can be used for getting the password via brute force attack. Basically, that's the only option for hacking WPA2 network (at least, for now), but there's two main issues
      1. Any Android or iOS (jailbroken) smartphone can do the same thing, so there's not much point in specific device. Sure, it works automatically on any detected network and it automatically transfers hash files to PC that is used for bruteforcing, but it's not like you can set up any phone to do the same thing.
      2. WPA3 networks are protected from this attack, so it isn't of any use for them.

    • @ДарийФедореев-э7т
      @ДарийФедореев-э7т ปีที่แล้ว +3

      Also, I'd like to add that they say that this device is using AI for password generating, but I'm not sure if AI is making password bruteforcing significantly faster. Moreso, this AI is still used not on device, but on PC that is doing bruteforcing, so it's not like you can't just download its code and use it on any PC with any hash, be it hash that you got from the phone or from the laptop.

    • @tendosingh5682
      @tendosingh5682 ปีที่แล้ว

      Should have named it GetHashGotchi.

    • @snowfreeze
      @snowfreeze ปีที่แล้ว

      @@ДарийФедореев-э7т Thanks!!

    • @snowfreeze
      @snowfreeze ปีที่แล้ว

      @@ДарийФедореев-э7т If I have the latest router, is it WPA3? Thanks again.

  • @intellectualhybrid2
    @intellectualhybrid2 ปีที่แล้ว

    So it's mainly used for Wardriving?

  • @XeniaSuaiden
    @XeniaSuaiden ปีที่แล้ว +3

    Just found and subscribed to your channel, I love the formal white gloves. 😆

  • @TaylorPinkham-c2o
    @TaylorPinkham-c2o ปีที่แล้ว +7

    Not using a weak password and WPA3 bouta ruin this whole man's career.

    • @alienJIZ1990
      @alienJIZ1990 2 หลายเดือนก่อน

      It'll be a while before everyone switches to WPA3. People are typically slow to update devices, WPA2 will still be around for years

  • @AnnFranksUrn
    @AnnFranksUrn ปีที่แล้ว +1

    Does it do wps pixie dust attacks ik it’s kinda old but you’d be surprised how many people are vulnerable to it

  • @JamesColeman
    @JamesColeman ปีที่แล้ว +2

    mac address spoofing is a thing, I've done it on hotel wifi before. You find mac address of an already connected device, and spoof it. So I don't quite agree with mac address filtering. Also phones nowadays use random mac addresses. The best way to protect against this kind of hack is to use a strong password, the reason this thing works is because of weak wifi passwords. None wants to type a 20+ character password on a printer, but if you want to be safe you should.

    • @username-mc7jw
      @username-mc7jw ปีที่แล้ว

      No one wants to type a 20 character password, and they shouldn't be doing that anyway. Plopping in a 40 character password is trivial when you use a password manager like Enpass, or any of the dozens of other ones available. I like Enpass because they don't store your database, YOU do. If you're not using a password manager, I can pretty much guarantee you are using the same password on multiple websites... which is a really stupid thing to do.

    • @JamesColeman
      @JamesColeman ปีที่แล้ว +2

      @@username-mc7jw Something you missed is I mentioned a printer. I guess you never tried entering that password on a printer.

    • @GotMadStacks
      @GotMadStacks ปีที่แล้ว

      Printer, Fridge, Motor Vehicle (try typing on steering wheel buttons) Many things a password manager doesnt solve but its still better to use one.....@@JamesColeman

    • @s.i.m.c.a
      @s.i.m.c.a 10 หลายเดือนก่อน

      @@username-mc7jw and now are the problem - you need to login to the password manager which requires the internet, .... which could be accessed through wifi ...

  • @StephenMcGregor1986
    @StephenMcGregor1986 ปีที่แล้ว +3

    So I plug this into my wall socket and it takes over NASA right?

  • @TechInventorAman
    @TechInventorAman 4 หลายเดือนก่อน

    I dont understand , how are you sniffing packets without connecting external wifi adaptor capable of packet injection and monitor mode ? The onboard wifi chip on pi zero does not allow you to do so as far as i know it .

  • @Elhechmibidou
    @Elhechmibidou ปีที่แล้ว +1

    so its just a tool for capturing handshakes ?

  • @dwayne-jq9mk
    @dwayne-jq9mk ปีที่แล้ว +1

    ive had mine for a few years. Nothing new about any of this. Automated capture >> sort ssid's based on isp provider >> generate custom wordlists per isp type >> free wifi. WPA3 has been shipped with products for a while.... but is never enabled by default. Even though your password may be 12+, if it uses common dictionary words its still a shit password

  • @shantanusapru
    @shantanusapru 8 หลายเดือนก่อน

    Interesting!!
    What is the 'effective range' of this gadget?

  • @dj_johanna_joy
    @dj_johanna_joy 5 หลายเดือนก่อน

    Can a flipper zero do the same?

  • @TheRobDez
    @TheRobDez ปีที่แล้ว +5

    This just collects hashes ? I was kind of interested at first. There are rooted android phones that can do this without all the extra trouble involved with this gadget.

  • @deslomeslager
    @deslomeslager ปีที่แล้ว +1

    Because I use Home Assistant, I am only using giving access to known MAC addresses. Not that I am afraid my password will get cracked, it is best to plan for the worst case. For visitors I my router offers a second WiFi network. It even has a third network for Home Assistant appliances, but two will do because of using the MAC addresses. Hint: I use the MAC addresses to give every appliance a fixed IP via DHCP. I found out the hard way after a router failure appliances were not reconnecting perfectly to H.A. thus having fixed IP's makes live a lot easier.

    • @username-mc7jw
      @username-mc7jw ปีที่แล้ว +1

      Assigning static IPs via DHCP is good, but also close down the pool of DHCP addresses available to guests (on a separate VLAN, of course).

    • @deslomeslager
      @deslomeslager ปีที่แล้ว

      @@username-mc7jw I forgot to say so, thank you for adding this!

  • @zatty232
    @zatty232 ปีที่แล้ว +6

    I just discovered your channel, and a new video just popped up. Nice!

    • @Sumsubcom
      @Sumsubcom  ปีที่แล้ว +3

      Welcome! Recommend you watching other experimental videos ;)

  • @tonkofonko
    @tonkofonko 8 หลายเดือนก่อน

    Can I use Banana Pi M2 Zero instead of Rpi Zero ?
    And will it works at all ?
    Thx.

  • @mikehamilton6259
    @mikehamilton6259 ปีที่แล้ว

    It should be called "Libergotchi" 😂 with one of those cheesy thin mustaches

  • @bryanteger
    @bryanteger ปีที่แล้ว

    Did Dr Schlotky get this working with a zero 2 w yet? What about the waveshare v3?

  • @littlejohnie
    @littlejohnie ปีที่แล้ว +1

    Very Good , will build and conquer the world .🙂

  • @twisstedtoast
    @twisstedtoast 10 หลายเดือนก่อน

    how do i do such thing with a rpi 4

  • @unkn0wn_trickky134
    @unkn0wn_trickky134 11 หลายเดือนก่อน

    what screen to use??

  • @R3Z3R3CT10N
    @R3Z3R3CT10N ปีที่แล้ว +2

    This is fun programming/engineering.

  • @SaikiranAnandas
    @SaikiranAnandas ปีที่แล้ว

    From where do I get all those hardwares I need pwnagotchi

  • @Mauroplcr
    @Mauroplcr ปีที่แล้ว

    Amazing, but you can do this also with a raspberry 4 ? right

  • @nobeltheinsider
    @nobeltheinsider ปีที่แล้ว +2

    i really like it the way you teach us but not like just sitting on sofa and describing about the cyber crime i like it like this pls keep up like this

  • @owtoproductions
    @owtoproductions ปีที่แล้ว +10

    You don't need the gateway for SSH access to the device if it is on the same subnet, in particular the standard /24 pushed by DHCP on 99% of all home networks.
    Just saying, because I am picky. - Great video BTW.

    • @repairstudio4940
      @repairstudio4940 ปีที่แล้ว

      Truth. If you in the network range but still that'd require the target to have an SSH session running ...

  • @shibbyshaggy
    @shibbyshaggy ปีที่แล้ว +2

    this is no different from using wifisher or airmon-ng tools. in the end this "toy" won't crack the password since you need to take the cap file and run it against a massive dictionary to hash the password
    to plain text.

    • @Steph.98114
      @Steph.98114 ปีที่แล้ว +1

      Still a cool project though, main benefit is it just runs in the background.

  • @SocialistDog
    @SocialistDog ปีที่แล้ว

    Got me onevof those fancy Steamdecks. Is there a way to run it on that instead of a Raspberry pie?

  • @cyberx6448
    @cyberx6448 9 หลายเดือนก่อน

    Does that work on raspberry pi zero 2

  • @johnburrows7938
    @johnburrows7938 ปีที่แล้ว

    Will this crack doip vehicles?

  • @trippy123
    @trippy123 ปีที่แล้ว

    what if you hide your router from broadcasting its name?

    • @username-mc7jw
      @username-mc7jw ปีที่แล้ว

      Haaa.... That's funny. Useless. I might not know your SSID, but I would still know your MAC.

  • @summerbee80
    @summerbee80 ปีที่แล้ว +1

    where can i buy all the parts? names, list etc cheers

    • @Allinone-sh6cj
      @Allinone-sh6cj ปีที่แล้ว +1

      Bro it can only able to capture the handshake file and only works for wpa and wpa2 not wpa3 and the handshake that it capture also have to present in the wordlist😢

    • @Allinone-sh6cj
      @Allinone-sh6cj ปีที่แล้ว

      It only works for some networks not all networks😢

  • @محمدالشاطري-ض6ج
    @محمدالشاطري-ض6ج ปีที่แล้ว

    Can you give me the 3D printed model of the drone that you sent on the channel previously?

  • @dixienormus8097
    @dixienormus8097 ปีที่แล้ว

    I don't understand how this can break AES-256?

  • @s.b.7660
    @s.b.7660 ปีที่แล้ว

    Please send a list with all parts...

  • @Lazarus_zer0_day
    @Lazarus_zer0_day 11 หลายเดือนก่อน

    Hello! I love your videos! Do you mind listing out all the parts for Pwnagotchi assembly?

  • @mrtechie6810
    @mrtechie6810 ปีที่แล้ว

    So how long will it take to crack a random 63 character WPA2 password?

  • @brainkast
    @brainkast ปีที่แล้ว +1

    So they said it works with WEP and wpa what about WPA-Enterprise or WPA2-Enterprise or WPA3-Enterprise
    And if that's the case that it work then maybe the industry needs to look into a different way to do Wi-Fi authentication

  • @joker28666
    @joker28666 ปีที่แล้ว +17

    Its a great tool, hard to believe it was mostly made by one person, too bad the project has been dead for a long while. Also you are making it sound like cracking hashes is cheap/easy, its usually not with strong password requirements ;).

    • @hansgichtler9102
      @hansgichtler9102 11 หลายเดือนก่อน

      Jayofelonys fork got updated since years,it runs better than the original

  • @gauntletwielder6306
    @gauntletwielder6306 ปีที่แล้ว +6

    This is all well & good except for 2 things…
    1. No mention is given to the time it takes to crack passwords.
    2. Cracking WiFi passwords for more networks, does NOT reduce the cracking time needed for WiFi passwords in the future.
    Btw… my WiFi is password 50+ random characters. Lol. 😈

  • @Williamgould-s9n
    @Williamgould-s9n ปีที่แล้ว

    I can’t see or find the link can someone send it
    10:03

  • @RedBigz
    @RedBigz ปีที่แล้ว +1

    i feel like this is teaching me on how to hack the neighbours wifi, thanks sumsub!

  • @butchcassidy9625
    @butchcassidy9625 6 หลายเดือนก่อน

    So if your wi fi is being hacked, you automatically know the perp is near by? They have to be in range in order to be able to hack your wi-fi is that correct?
    Yes or no?

  • @karljarvis2703
    @karljarvis2703 ปีที่แล้ว

    ive been after one of those battery packs in my location (UK) abd cannot find anyware, anuyone knoq (even if another country

    • @anonymes2884
      @anonymes2884 ปีที่แล้ว

      Bought a pretty similar one in Poundland last year (for about 3 quid).

  • @MissFoxification
    @MissFoxification ปีที่แล้ว +1

    It does have controls. There's not only txt files but web UI you can connect to via the data port.

    • @xTerminatorAndy
      @xTerminatorAndy ปีที่แล้ว +2

      He meant as opposed to the flipper, which has got physical buttons through which you can control some aspects of it

    • @MissFoxification
      @MissFoxification ปีที่แล้ว

      @@xTerminatorAndy Well he didn't clarify and didn't mention the web UI either. So.. that's not clear and as I am not psychic I can't tell entirely what he meant, neither can you.

    • @xTerminatorAndy
      @xTerminatorAndy ปีที่แล้ว +2

      @@MissFoxification true I'm not psychic, but he literally said "UNLIKE THE FLIPPER". So although English is only my 3rd language, I am convinced that I understood the meaning perfectly.

    • @MissFoxification
      @MissFoxification ปีที่แล้ว

      @@xTerminatorAndy Really, got nothing better to do with your life or did you type youtube instead of reddit by mistake because I am not invested in your BS.

    • @xTerminatorAndy
      @xTerminatorAndy ปีที่แล้ว

      @@MissFoxification 2 can play that game. You also got nothing better to do than come and troll me?

  • @1LetterLef
    @1LetterLef ปีที่แล้ว

    i wanted this but the hashes seem hard to crack

  • @jakubknotek4891
    @jakubknotek4891 11 หลายเดือนก่อน

    MAC filter is more of annoyance for legitimate users rather than effective measure against attackers as spoofing a MAC address is rather trivial

  • @anondimwit
    @anondimwit 3 หลายเดือนก่อน

    where the hell did you get the eink for $9 its like $20 online

  • @rootexploring
    @rootexploring ปีที่แล้ว

    So it's wifite on steroids
    How do u extract.pcap files if failed on dictionary attack

  • @BooktownBoy
    @BooktownBoy ปีที่แล้ว +1

    You haven't, or wont "hack" a network in seconds...you will (probably) capture some handshakes that need to be run through something like hashcat...and with modern ssid passwords being so complex you'll be there a long time to crack it. Alarmist vid iym

  • @Sunil-dl9ep
    @Sunil-dl9ep ปีที่แล้ว

    Great video 🙏

    • @Sumsubcom
      @Sumsubcom  9 หลายเดือนก่อน

      Thank you 🙌

  • @AnikBhushan
    @AnikBhushan ปีที่แล้ว +1

    good explanation. ❤

  • @darkpsion
    @darkpsion ปีที่แล้ว +2

    MAC filtering means nothing. Next video - MAC spoofing

  • @default19in
    @default19in ปีที่แล้ว

    Tx for sharing the gr8 knowledge.

  • @SONYSony-em8dt
    @SONYSony-em8dt ปีที่แล้ว

    I changed my router setting that the SSID
    Invisible so for example if a guest come there is no way that he can use the Wi-Fi
    Unless I tell him the SSID and the password so that he can enter it manually

    • @vinyyy7007
      @vinyyy7007 ปีที่แล้ว

      That actually doesn't do anything. For example u can open airodump(network monitoring tool) and your network pops up like any other.

    • @SeqK
      @SeqK 6 หลายเดือนก่อน

      It will just appear as hidden network then you use one of many methods to identify the ssid

  • @Fjprints
    @Fjprints ปีที่แล้ว +4

    Is it just me or dose the voice sound like an AI voice over?

    • @anonymes2884
      @anonymes2884 ปีที่แล้ว

      Could be. This voice used to have a real body attached to it in the videos (older videos were fronted by an actual English human) but he/they could've cloned his voice.

  • @swawonmondal989
    @swawonmondal989 ปีที่แล้ว

    This can't be played message showing

  • @ReligionAndMaterialismDebunked
    @ReligionAndMaterialismDebunked ปีที่แล้ว

    I remember the Tamagotchi days. As I was saying that the other day.

  • @rjk1404
    @rjk1404 11 หลายเดือนก่อน

    MAC-Whitelisting is just an absolute basical protection. Zero trust is mandatory for all clients communicating in your network.
    The problem is not a hacker getting into your wifi. The problem starts, when he finds loads of open ports and loose listeners within the network...

  • @ZainPlays
    @ZainPlays ปีที่แล้ว

    Just curious about the passwords attacks or types of passwords attack
    Which are not included in any dictionery or wordlists to bruteforce and find it
    What type of bruteforce will it be which do like in this method
    Aaa
    Aab
    Aac
    Aad
    And so on , all the way upto whatever the passwords it reaches
    What types of attack this called and also wanna know
    If i have a password so simple which are not included in any wordlists , dictionery , hashes or so on
    How much time will the method i mentioned can take to crack it ?
    How much

    • @Allinone-sh6cj
      @Allinone-sh6cj ปีที่แล้ว

      It can't able to crack the password then.If your password doesn't exist in the wordlist

    • @Allinone-sh6cj
      @Allinone-sh6cj ปีที่แล้ว

      It will become useless ONLY FOR THAT WIFI NOT OTHERS😏

  • @almurray2000
    @almurray2000 ปีที่แล้ว

    Cute. But the WiFi pineapple did this about 10 years ago. It doesn’t actually hack anything. You still need to crack the hashes which will take a very long time

  • @coreytripp9939
    @coreytripp9939 11 หลายเดือนก่อน

    jammers are a great defense so esp32 marauder is a got to choice

  • @TaxXx_Man
    @TaxXx_Man ปีที่แล้ว +1

    Wow...i want to be apart of the hacker community...i jave these ideas i just have trouble translating them into code❤😢
    You guys seem chill...any advice?

  • @namara_624
    @namara_624 ปีที่แล้ว

    this is so cool. but um haha i want the lil bro to make mean faces hahah

  • @amansaiyed0
    @amansaiyed0 ปีที่แล้ว +2

    I was waiting for your video for so long, finally your video came.❤❤🎉
    I just learned new topics for Hacking
    I am not a black hat only white hat ❤😅

    • @Sumsubcom
      @Sumsubcom  ปีที่แล้ว +2

      ;)

    • @snowfreeze
      @snowfreeze ปีที่แล้ว +3

      ...a black hat hacker would say...

  • @J-eb6nd
    @J-eb6nd ปีที่แล้ว

    It’s a little frustrating that it’s 2023, and the pwnagotchi project uses a Raspberry Pi Zero W for the example, and the Wi-Fi actually uses 802.11 b/g/n.

    • @alittlebitgone
      @alittlebitgone ปีที่แล้ว +1

      It also is bullshit clickbait. It's just a dictionary brute force attack, same as you can do from your laptop or phone. If you have a decent password there is zero chance this thing does anything.

    • @SteveBytes
      @SteveBytes ปีที่แล้ว

      Do some research pwnagotchi works on pizero2 and the raspberry pi4.

  • @moslimislam5714
    @moslimislam5714 9 หลายเดือนก่อน

    Bro the Pwnagotchi is not as powerful as you described. It just collects pcaps and decrypting is requires huge amounts of GPU power that is just not available to us. Only weak passwords are in danger.

  • @SilkroadOnlineGlobal
    @SilkroadOnlineGlobal 10 หลายเดือนก่อน

    Nice content. Thank you.

    • @Sumsubcom
      @Sumsubcom  9 หลายเดือนก่อน

      Glad you liked it!

  • @edmontontech2008
    @edmontontech2008 11 หลายเดือนก่อน

    Imagine thinking that hacking WPA encryption from 2005 is legendary.

  • @bckends_
    @bckends_ ปีที่แล้ว +1

    So its all just a dictionary attack?

  • @stressless8405
    @stressless8405 8 หลายเดือนก่อน

    It doesnt actually crack a password though. It just saves a handshake? You would still need to run a brute force or dictionary attack which would make 99% of these handshakes useless. Wps on 2.4ghz is still the easier way.

  • @Killerspieler0815
    @Killerspieler0815 11 หลายเดือนก่อน

    Seems I'm not that old school at all, I use LAN cables instead of WiFi

  • @likfrikbik
    @likfrikbik ปีที่แล้ว +2

    Strong wifi password and you are good.

  • @waderyun.war00034
    @waderyun.war00034 ปีที่แล้ว

    I've had this program for years and years.

  • @federicomilano5272
    @federicomilano5272 ปีที่แล้ว

    Hi !I can't install Pwnagotchi on Raspberry 4, 8gb. The installation stuck. Is any version good? My installation stuck on "[ Ok ] Started Daily man-db regeneration. ".Thank you!

  • @santhoshakula435
    @santhoshakula435 11 หลายเดือนก่อน

    Hello sir, My waveshare 2.13 display is not switching on after plugging on rasberry pi zero, any reason?

  • @swawonmondal989
    @swawonmondal989 ปีที่แล้ว +2

    I think this video is sponsored by pwnagotchi😢. If i have to use the same brute force to crack password so why not to use traditional monitor mode , packet injection supported wifi adaptor? Instead of buying this shit😂

    • @Steph.98114
      @Steph.98114 ปีที่แล้ว

      It's an open source project lol, they have no interest in sponsorships. You just feel for a click bait video

  • @teapot401
    @teapot401 10 หลายเดือนก่อน

    Can we make one that protects us from hackers?

  • @Sunil-dl9ep
    @Sunil-dl9ep ปีที่แล้ว

    Online jungle, that aptly described internet.👍

    • @Sumsubcom
      @Sumsubcom  9 หลายเดือนก่อน +1

      Pretty much!