WPScan & WPSpy Tools

May 9th, 2009

These are the Wifi-Protected Setup tools that we presented at ChicagoCon.

WPScan actively sends 802.11 probe requests to access points that advertise WPS support. It then parses out the WPS Information Element in the resulting probe response and displays the results. This is a very useful fingerprinting tool since nearly all new routers have WPS enabled by default, and most vendors will actually put the exact make, model, and version of the router in the probe response!

WPSpy is a tool to simply monitor and report changes in the WPS status of and access point. This is particularly useful if you are running some of our described attacks that leverage WPS to gain access to the WLAN.

, ,

32 Responses to “WPScan & WPSpy Tools”

  1. Hacking With Gum » WiFi Protected Setup Router Backdoor Says:

    [...] you just wait for WPS to be activated (WPS state can be passively monitored real-time using WPSpy) and use a WPS-capable WiFi card (or software) to retrieve the key: Using a Belkin WiFi card to [...]

  2. jean Says:

    hello, i try to use your tool, but i have the following error:

    sudo ./wpspy.py -i wlan1
    Traceback (most recent call last):
    File “./wpspy.py”, line 237, in
    main()
    File “./wpspy.py”, line 220, in main
    conf.iface = optarg
    NameError: global name ‘conf’ is not defined

    (with, wifinger, wpscan and wpspy)

    I run under ubuntu 10, python v2.6, scapy from the package manager (2.0.1-1), i have lorcon v2 rc1 installed, and i have also test with a capture when airodump run on a fixed channel. I have also test with a .cap file generated by airodump-ng (sudo python wpscan.py -p /home/me/test-01.cap -b 00:MAC:…: -e SSID
    Caught exception while running sniff(): global name ’sniff’ is not defined
    )

    If you can submit your configuration (py, scapy) / requierement, it will be cool (for more information, my card is in monitor mode, it’s a rtl8187 with patch aircrack-ng r8187)

  3. craig Says:

    Hi jean,

    scapy has changed the way that imports are done since we released the tool. We’ll updated it soon (hopefully!), but here’s the fix: at the top of the scripts, replace “from scapy import *” with “from scapy.all import *”.

  4. Car Radio Wire Says:

    LOL hell ya but no one touches my lunch

  5. Caramoan Island : Says:

    when it comes to car radios, i prefer to use either Alpine or Pioneer. they are really great brands.`-

  6. Leilani Glaeser Says:

    Good site, where did you come up with the knowledge in this blog? Im pleased I found it though, ill be checking back soon to see what other articles you have.

  7. BIOCYTE Says:

    Thanks , very interesting !

  8. flavored coffee Says:

    Nice post. I study something on different blogs everyday. It’s going to all the time be stimulating to read content from different writers and apply somewhat something from their blog.

  9. zappos coupon boots Says:

    Hey! I just wish to give an enormous thumbs up for the great data you’ve got here on this post. I might be coming again to your blog for extra soon.

  10. δονητές Says:

    My spouse and i ended up being really excited that Jordan managed to complete his analysis from the ideas he acquired while using the weblog. It’s not at all simplistic to simply always be releasing methods which other folks might have been trying to sell. And we already know we have the blog owner to give thanks to for this. All of the explanations you made, the easy site menu, the relationships you can help create – it’s everything astounding, and it is letting our son and the family imagine that the subject is interesting, and that’s really serious. Many thanks for everything!

  11. womens upside ugg boots Says:

    strongzz Attractive section of content. I just stumbled upon your site and in accession capital to assert that I get actually enjoyed account your blog posts. Anyway I will be subscribing to your augment and even I achievement you access consistently fast.

  12. jack Says:

    Spot on with this write-up, I actually assume this web site needs way more consideration. I’ll in all probability be again to learn way more, thanks for that info.

  13. WPS access point scan? | << hack 4 fun Says:

    [...] wpscan.py je součástí balíčku wps_tools. Bude potřeba lehké poupravení kódu pro správnou funkčnost. mkdir wpstools wget [...]

  14. Use wps_tools To Scan WPS AP | Ark@Dis9Team Says:

    [...] tool is bundled wpscan.py wps_tools. You will need light tweaked code to work [...]

  15. sprzatanie Bydgoszcz Says:

    Hey there! Do you use Twitter? I’d like to follow you if that would be ok. I’m undoubtedly enjoying your blog and look forward to new posts.

  16. Used Says:

    Thanks for the post, If I used an RTL8187, then it seems it should work fine. Hopefully you will release an updated tool with the new scapy import soon.

  17. anal Says:

    I just like the helpful info you provide for your articles. I will bookmark your weblog and test once more right here frequently. I am slightly certain I’ll be told many new stuff proper here! Good luck for the following!

  18. Woauiy Says:

    Thanks a lot…

    Hi there, I really appreciate your post, it seems that you know what are you doing. I’ll be looking forward for next article of yours….

  19. Brdaen Says:

    I finally learned how to use WiFi

  20. shoe stretchers for boots Says:

    Hello would you mind sharing which blog platform you’re working with? I’m planning to start my own blog in the near future but I’m having a tough time selecting between BlogEngine/Wordpress/B2evolution and Drupal. The reason I ask is because your design seems different then most blogs and I’m looking for something unique. P.S Apologies for getting off-topic but I had to ask!

  21. Johnathan Shaffren Says:

    Some truly good information, Gladiola I observed this.

  22. Neubberne Says:

    A [url=http://www.hostings.biz]web hosting[/url] service is a type of [url=http://www.hostings.biz]Internet hosting[/url] service that allows individuals and organizations to make their website accessible via the World Wide Web. Web hosts are companies that provide space on a server owned or leased for use by clients, as well as providing Internet connectivity,
    typically in a data center. Visit http://www.hostings.biz

  23. Lyndia Taper Says:

    Car radioes that are digital are the best since they last longer than analog ones. ”

    <a href="Take a look at our personal online site too
    http://www.beautyfashiondigest.com/sexy-lingerie-sets/

  24. logistica a roma Says:

    Excellent post. I was checking continuously this blog and I am impressed! Extremely useful information specially the last part :) I care for such information much. I was looking for this particular info for a long time. Thank you and good luck.

  25. Winford Spells Says:

    OMG i am get for free microsoft point generator from here http://freemicrosoftpointgenerator2013.wordpress.com

  26. migliore mozzarella di bufala campana Says:

    Please let me know if you’re looking for a article writer for your weblog. You have some really great posts and I believe I would be a good asset. If you ever want to take some of the load off, I’d absolutely love to write some material for your blog in exchange for a link back to mine. Please send me an email if interested. Cheers!

  27. Buy Slim Green Coffee Says:

    excellent post, very informative. I’m wondering why the opposite specialists of this sector do not understand this. You must continue your writing. I am sure, you have a great readers’ base already!

  28. jerry Says:

    how to use that ? is there any step by step tutorial ? im newbi sorry for my bad englis

  29. Christian Louboutin Sale Clearance Says:

    In June, the Thai island of phuket, there are a number of the bus property theft case

  30. program do pitów Says:

    Look at my website: program do pitów

  31. chaussures ugg Says:

    SourceSec Security Research » Blog Archive » WPScan & WPSpy Tools lqyiqwklzu Canada Goose coats ifibrgarwcz Canada Goose jacket mehfzm Canada Goose Kensington Parka fwtuns Canada Goose Outlet Toronto
    chaussures ugg

  32. mp3gain alternative Says:

    Great article, jսst what I ոeeded.

Leave a Reply