Well this is no way intended for you to go and get yourself in trouble, so you assume all responsibility I'm simply providing a way to test the vulnerability of your OWN Personal wireless network. This is for thomson speedtouch wifi routers u can check if your ssid shows up and execute it
I am not responsible for your phone blowing up, freezing turning into a jet plane building u a island replicating into an phone etc etc.
here we go:
Your going to be using stkeys, Python and Android scripting environment
stkeys is a little tool demonstrating a weakness in the thomson speedtouch wifi router default wpa key. The default wep/wpa key is generated by an algorithm which is based on the serial number and so is the default SSID. The algorithm was cracked a long time ago and is a nice demonstration of what you shouldn't rely on for security.
o do this you need the android scripting environment, which you can install from my DB http://db.tt/l3O3hPG
After you've installed the scripting environment start it in apps, (it's called SL4A)
Press menu, then view, then Interpreters, then menu again, then add and in this menu you can select the python interpreter.
When the interpreter is installed you can run python scripts
Next what you want to do is download the modified python script you can get that from my DB. http://db.tt/jfkmgBP
save the script on your sd card in the directory /SL4A/scripts
Next time you run the ase on your phone the script is available.
then
execute it.
select the speedtouch SSID (if there is any)
within minutes you get possible ssid keys. you can check if yours shows up.
have fun!
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
interesting...
i wish it was possible for us to check our equipment no matter what kind of router we have...
you know for educational purposes and all
I was told it worked some other routers too btw....
Ive got it running but no keys show up. ive tried on 4 different networks. How long does it take?
Related
Everything Search is a lightweight program that allows you to locate files and folders instantly , as you type.This is a must have tool for everyone.Bind it with a hotkey (Eg: Win+S).You can search anything almost instantly on Windows.
http://www.voidtools.com/download.php (download free < 500kb)
Preview on Windows
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
This short & simple tutorial will allow anyone to remotely/locally search files on your home pc/local network/laptop in less than a second.Tried & tested this method on edge/wifi.
Step 1: (Ctrl+P) Goto Tools -> Options -> HTTP Tab
Fill in the desired port or leave as is.
Fill in the user name and password for authentication
Note : I have an android phone , so for me downloading only worked when the authentication was removed during configuration.
You can remove this authentication if download fails.
Step 2: Start the HTTP Server.
Step 3: Url Formation - http://[yourip]:[port]
If you are accessing your files remotely. You can find your global ip using http://whatismyip.com
Eg: Remote Url http://123.231.31.192:8080
If you are accessing files locally through wifi , find out your host pc's ip address
Eg: Local Url http://192.168.2.1:8080
Open the url in your mobile browser and search your entire pc/laptop
You can see search takes less than a second.Download speed as per your network.
This is just a straightforward method , so it should work on any mobile/tablet with a basic browser.I am not affiliated with the software in anyway.Hope this tutorial was helpful to you.
Update: It did'nt work for me on Opera Mini. For every other browser works fine.
Would highly appreciate a feedback.
Press 'Thanks' if this post was useful in anyway.
Well written and laid out. I'll give this a go. Thanks!
Good post.. Cheers
FOR ALL ROOTED ROMS
This thread may eventually hold multiple apps related to general tools for the G3. I am happy to take suggestions on future apps that we can all use that we might find interesting. My apps are going to have a simple bare bones layout with no bells or whistles. I can't develop everything in the world but I will give it a try.
TEMPS apk
Temps is simple lightweight app that gives a data readout of all temp sensors within the G3. All data is listed per zone and refreshed every second for an accurate reading. Please don't ask me what each zone designation is. I simply don't know, and its not listed anywhere to my knowledge. The purpose of the app is simply to collect data. Nothing more.
I made it for some testing I was doing and figured maybe somebody else might have a use for it.
[emoji2]
DOWNLOAD
http://d-h.st/0KW
System Sampler application
REQUIREMENTS.
Must be rooted.
Set SeLinux to Permissive.
System Sampler is a tool to allow you to sample data deep in the system. It's great for developers and Android enthusiasts who have an interest what's happening in real time.
FEATURES.
- Adjust sampling time from 1-10 seconds.
- Set file permissions if needed to read data.
- Status bar readout viewable in any screen.
HOW TO USE.
1. Enter the file path in the box located at the top of the screen.
2. Turn on the sampling button.
3. If you are unable to read the file, use the "chmod" button to set file permissions to 777 and try again.
TIPS.
It's much easier to copy and paste the file path using the "getFilePath" application. Get it here..https://play.google.com/store/apps/details?id=net.fro9.android.app.getfilepath
POSSIBLE ISSUES.
This is a beta release!
System Sampler was built on Tasker and has only been tested on my LG G3. That being said, their may be issues with different devices with screen resolutions and the status bar readout.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
[DOWNLOAD.
Beta version 1
https://www.androidfilehost.com/?fid=23991606952615006
Future
Future2
Future3
This. Is. Major.
So, I have been meaning to create an xda-developers account for a while. And one of the reasons is this - a major security vulnerability potentially usable for data theft.
On all versions of android, If you have root, you can find information for ALL (previously, i think even if you press forget) wifi networks you have connected to. Even by WPS. The same goes for p2p. The file is located in /data/misc/wifi/ and is called wpa_supplicant.conf (p2p_supplicant.conf for p2p). This file contains a lot of sensitive information like the mac addresses, ssid's and passwords/passkeys. Keep in mind that these are ALL entirely unencrypted and are plain text format.
Here is an example of mine:
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
You may be wondering: so this only affects root users?
Well, the answer is no.
An app could perform temporary root and send a copy of the wpa_supplicant.conf file to an attacker
and of course, an ordinary user would be none the wiser, for the root would be gone on the next boot up and they would not even have a clue what root is.
I do alot of root projects and it is my passion. This is something I have come across over time. I know this is the case from as far back as android eclair (2.1) to android oreo (8) but dont have an older android device to test it with.
Also, please try to mark this as a helpful post. I think I have made a breakthrough in Htc Wildfire Buzz (and potentially other devices) Network Unlocking via Root, but I cant post it here.
huh? This is not an exploit, if you say so then all the devices running an operating system is potentially exploitable. It all comes down to application's trust and system firewall to prevent this from happening.
Besides you don't need to root/administrator privileges to get MAC ID, wifi password on any operating system.
SpiritBreak3r said:
huh? This is not an exploit, if you say so then all the devices running an operating system is potentially exploitable. It all comes down to application's trust and system firewall to prevent this from happening.
Besides you don't need to root/administrator privileges to get MAC ID, wifi password on any operating system.
Click to expand...
Click to collapse
Ah yes sorry i confused it! Either way, this is major, root or no root
So my college has a wifi setup where I have to use a User Name and password.
EAP method is PEAP.
Phase 2 Authentication MSCHAPV2
The issue is they do not provide a certificate.
This is using the Android 11 that comes on the Oneplus 8T I unlocked it and rooted it.
Android 11 security patch does not allow you to connect to non-certificated WPA3 wifi connections.
My Oneplus 7 Pro on Android 10 had no issues using the exact same connection settings.
Has anyone experienced this or know of a work around. It seems with all new samsung devices using Android 11 they have no issues. Just my Oneplus 8T.
There must be a patch or a mod I even tried changing the file for the saved internet connection. No success.
Reference this for the security patch
PSA: Android 11 will no longer let you insecurely connect to enterprise WiFi networks
The Android 11 update will break connecting to certain enterprise WiFi networks. Here's why and what you can do to fix it.
www.xda-developers.com
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Option 1: Add you College's public key to the trusted keys. I am not sure how that Auth method really works, but I suppose that the connection is signed by a self-signed certificate.
Try to get your hands on it and add it under Settings > Security.
Option 2: Ask your College to fix this. If they have not signed their encryption/auth method (again, I don't really know how WPA3 Enterprise works, and I suppose that some keys are automatically generated on setup), ask them to do so. If their signatures are outdated or somehow not working ask them to regenerate them properly.
I have not been successful last few days getting anything from the schools IT department telling them it don't work is like speaking another language.
There has to be a away to force Android to allow a connection. I'm willing to edit what ever files or settings via root editing that's needed. I searched the deepest parts of the internet without any luck this disappointing..
Try update system to latest build, because i can select "Do not validate" with a warning message below.
Two builds earlier "OnePlus8TOxygen_15.O.21_0215_2101010247"s changelog mentioned:
Network
• Fixed the issue that the WiFi connection failed in a specific situation
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Blue2Hotspot is a program for automatically turning on an access point (Hotspot) when connected to certain Bluetooch devices.
Languages: English, Russian (translation planned)
It happens that you get tired of doing the same thing and constantly get into the car, look for your phone, turn on the access point, and so on every day. I decided to write a small application to automate these actions. To enable the access point, you need permission - location (I myself think this is nonsense). The program does not write your data or send it anywhere. All other permissions are needed to keep Android from being unloaded from the system.
Some water. Since the parents bought a car and there is a large screen, you can launch the navigator and all sorts of online services, but how to turn on the access point turned out to be more difficult to teach, since a couple of weeks will pass and the call "how to turn on Wi-Fi". And I decided to write a small application.
Instructions
Make pairing with Bluetooth and Wifi device.
Install Blue2Hotspot, give permission.
Make settings and select your Bluetooth device.
Click on the Start service button
That's it, the service will work on this; now, when connected to the device, the access point will turn on.
Homepage: https://inceptive.ru/projects/blue2hotspot/
Spoiler: Screenshot
Spoiler: Changelog
0.3
Android 12 support
Correction of jambs
Corrected the view
English translation
0.2
Corrected the end of the service when disconnecting a Bluetooth device
Corrected the view
Added information on "activity control" for Huawei, Xiaomi and OPPO.
Correction of minor bugs.
0.1
Optimized work
Made the access point turn on when connecting Bluetooth
Auto start on phone restart.
What is the speed that one can expect?
Thanks for the very useful app, that works very well. I tried a couple of others before finding this that didn't work.
Would it be possible to select multiple BT devices so that it could be used in more than one car?
After using Blue2Hotspot for a couple of weeks I'm an absolute fan of it. Annexhack, you have programmed a really useful program, easy to handle for beginners too. I second the requst from kk131 and add: I'd like to donate a beer to you, let us know how to do. Thanks
Bye for now Fred