hashcatch v1.2 releases: Capture handshakes of nearby WiFi networks automatically

by do son · Published August 25, 2019 · Updated April 2, 2023

hashcatch

Hashcatch deauthenticates clients connected to all nearby WiFi networks and try to capture the handshakes. It can be used in any Linux device including Raspberry Pi and Nethunter devices so that you can capture handshakes while walking your dog

Written by @SivaneshAshok

Features to be added

PMKID attack
Pixiedust attack for WPS enabled networks
More location features
Automatically check handshakes with a rainbow table

Changelog v1.2

Fix Major bug

Setting up

git clone https://github.com/staz0t/hashcatch.git & cd hashcatch
./setup.sh
Enter the interface that can be switched to monitor mode
The script will install the prerequisites

Usage

sudo ./hashcatch.sh

Hashcatch runs indefinitely until keyboard interrupt
Handshakes captured will be stored in /usr/share/hashcatch/handshakes/
The captured WiFi network’s BSSID and ESSID will be added to /usr/share/hashcatch/db
If you’re targeting a wifi network, spend around 20 to 30 seconds within the wifi’s range to ensure handshake capture
[Experimental] If you are connected to the internet while capturing, the following data will also be added to the db file
- latitude
- longitude
- signal radius
- time of record
- Note: Kudos to Alexander Mylnikov for the API he’s running that returns the location details of a router’s MAC address using public databases

The Configuration file

The configuration file can be found in /etc/hashcatch/hashcatch.conf
You can later edit the “interface” field to set the interface of your choice
You can also add an “ignore” field to mention the WiFi networks you want hashcatch to ignore while running
Refer the example given below to know about the format in which entries should be added to the configuration file
Format option name=option1,option2,option3
No space in between option name, equal sign, and options
Example
interface=wlan0
ignore=Google Starbucks, AndroidAP