INFO:
Reaver for Android, short RfA, is a simple-to-use Reaver-GUI for Android devices with bcmon support.It has some very cool features:
- Detects automatically WPS-enabled routers.
- All Reaver-Settings are accessible from an a simple-to-use GUI.
- Activates and deactivates Monitor-Mode automatically when needed.
- Provides a simple way to connect when Reaver finds the WPA-Key.
Project status: BETA
What does this mean?
Well, RfA works, but is only tested on very few devices.
Also there are some features which are not yet implemented.
If RfA gets enought attention, developement will continue very soon.
Well, RfA works, but is only tested on very few devices.
Also there are some features which are not yet implemented.
If RfA gets enought attention, developement will continue very soon.
Installation
- Download/install bcmon.apk from HERE and RfA.apk from the bottom of this post.
- Run bcmon, if it crashes try a second time.
- If all runs fine, start RfA.
- After selecting an WPS-enabled router, click on "Test Monitor-Mode".
- Now you can use RfA, don't uninstall bcmon.
FAQ:
What is this awesome app actually usefull for?
Well, RfA is able to unveil the actual WPA(2)-Key of many routers within 2 - 10 hours.
WHAT?! I though WPA(2) is safe?
It used to be, but then many router models got WiFi Protected Setup, short WPS, implemeted, which is pretty vulnerable. (Details)
Basically it's a Brute-Force attack with Reaver against a 8 digit pin with 10^4 + 10^3 possibilities.
What is Reaver?
Reaver-WPS is a pentesting tool developed by Tactical Network Solutions.
It attacks WPS-enabled routers and after the WPS-Pin is cracked, it retrieves the actual WPA-Key.
Reaver provides only a terminal interface, which is ok for Notebooks etc., however it's a pain on Android devices.
Because of this I developed RfA.
Doesn't Reaver requires Monitor-Mode and so can't work on Android?
Yes, Reaver needs Monitor-Mode, but thanks to bcmon some Android devices are now Monitor-Mode capable.
Well, RfA is able to unveil the actual WPA(2)-Key of many routers within 2 - 10 hours.
WHAT?! I though WPA(2) is safe?
It used to be, but then many router models got WiFi Protected Setup, short WPS, implemeted, which is pretty vulnerable. (Details)
Basically it's a Brute-Force attack with Reaver against a 8 digit pin with 10^4 + 10^3 possibilities.
What is Reaver?
Reaver-WPS is a pentesting tool developed by Tactical Network Solutions.
It attacks WPS-enabled routers and after the WPS-Pin is cracked, it retrieves the actual WPA-Key.
Reaver provides only a terminal interface, which is ok for Notebooks etc., however it's a pain on Android devices.
Because of this I developed RfA.
Doesn't Reaver requires Monitor-Mode and so can't work on Android?
Yes, Reaver needs Monitor-Mode, but thanks to bcmon some Android devices are now Monitor-Mode capable.
Compatibility
Developed and tested on: Nexus 7 2012 (Stock 4.3)
RfA *should* work on all devices with bcmon support (Broadcom bcm4329/bcm4330 chipsets)
Simply try by installing bcmon. Don't worry, if something goes wrong a simple reboot should fix everything.
Tested & works on:
Nexus 7 2012 (Stock 4.3, Cyanogen 9)
Huawei Honour (Cyanogen Mod based ROM)
RfA *should* work on all devices with bcmon support (Broadcom bcm4329/bcm4330 chipsets)
Simply try by installing bcmon. Don't worry, if something goes wrong a simple reboot should fix everything.
Tested & works on:
Nexus 7 2012 (Stock 4.3, Cyanogen 9)
Huawei Honour (Cyanogen Mod based ROM)
Credits & used tools:
Monitor-Mode over bcmon.apk:
Omri Ildis, Ruby Feinstein & Yuval Ofir
See: bcmon.blogspot.com
Reaver-WPS:
Tactical Network Solutions
See : code.google.com/p/reaver-wps/
Download : Reaver for Android