Cowpatty: Wifi cracking full tutorial

Introduction

In this post, you will learn what is cowpatty and also by end of the post you will learn how to work with the tool.

Cowpatty is an offline dictionary attack against WPA/WPA2 networks using PSK-based authentication (e.g. WPA-Personal).

Cowpattys can implement an accelerated attack if a precomputed PMK file is available for the SSID that is being assessed.

Advertisement

Just follow the below steps and have any doubt comment down below.

Previously the cowpatty was in this directory /pentest/wireless but now thecowpatty is in this location /usr/bin/cowpatty

You can download the cowpatty by just entering apt-get install cowpatty

If you just enter cowpatty you can see the help options and the usage.

There are three things the cowpatty needs they are

Just as in cracking with aircrack-ng, we need to put the wireless adapter into monitor mode.

airmon-ng start wlan0

Next, we need to start a capture file where the hashed password will be stored when we capture the 4-way handshake.

Advertisement

airodump-ng –bssid 00:25:9C:97:4F:48 -c 9 -w cowpatty mon0

Now when someone connects to the AP, we’ll capture the hash and airdump-ng will show us it has been captured in the upper right-hand corner.

Now that we have the hash of the password, we can use it with cowpatty and our wordlist to crack the hash.

cowpatty -f /usr/share/wordlists/darkc0de.lst -r /root/cowcrack-01.cap -s M

To create our own hash, We need to generate our own hashes for our target SSID.

We can do this by using an application called genpmk.

genpmk -f /usr/share/wordlists/darkc0de.lst -d hashes -s Mandela2

we can then crack the password with cowpatty by typing:

cowpatty -d hashfile -r dumpfile -s ssid

Some alternatives for the cowpatty tool is aircrack-ng and fern. But anyways still the cowpatty depends on other tools to generate hash.

I prefer Aircrack-ng instead of cowpatty.

Advertisement