Umcwaningi wezokuphepha wakwa-Israel u-Ido Hoorvitch (Tel Aviv) ushicilele imiphumela yokuhlolwa kokucwaninga amandla amaphasiwedi asetshenziswa ukuhlela ukufinyelela kumanethiwekhi angenantambo. Ocwaningweni lwamafreyimu abanjiwe anezihlonzi ze-PMKID, kube nokwenzeka ukuqagela amagama ayimfihlo ukuze kufinyelelwe ku-3663 kwabangu-5000 (73%) abacwaninge amanethiwekhi angenawaya e-Tel Aviv. Ngenxa yalokho, kwafinyelelwa esiphethweni sokuthi abanikazi abaningi benethiwekhi engenazintambo babeka amagama ayimfihlo abuthakathaka asengozini yokuqagelwa ngokushesha, futhi amanethiwekhi abo angenawaya angahlaselwa kusetshenziswa izinsiza ezijwayelekile ze-hashcat, i-hcxtools kanye ne-hcxdumptool.
U-Ido usebenzise ikhompuyutha ephathekayo esebenzisa i-Ubuntu Linux ukuze abambe amaphakethe enethiwekhi engenantambo, wawafaka kubhaka futhi wazulazula edolobheni waze wakwazi ukuvimba amafreyimu ngezihlonzi ze-PMKID (Pairwise Master Key Identifier) ezivela kumanethiwekhi ayizinkulungwane ezinhlanu ahlukene. Ngemva kwalokho, wasebenzisa ikhompuyutha ene-8 GPU NVIDIA QUADRO RTX 8000 48GB ukuze aqagele amagama ayimfihlo esebenzisa amahashi akhishwe kusihlonzi se-PMKID. Ukusebenza okukhethiwe kule seva cishe bekungama-hashe ayizigidi ezingu-7 ngomzuzwana. Ukuze uqhathanise, kukhompuyutha ephathekayo evamile, ukusebenza cishe kungama-hashe ayizinkulungwane ezingama-200 ngomzuzwana, okwanele ukuqagela iphasiwedi enamadijithi ayi-10 emizuzwini eyi-9.
Ukuze kusheshiswe ukukhetha, ukusesha bekukhawulelwe ekulandeleni okuhlanganisa izinhlamvu ezi-8 kuphela, kanye namadijithi ayi-8, 9 noma ayi-10. Lo mkhawulo bewanele ukunquma amaphasiwedi angu-3663 kumanethiwekhi angu-5000. Amagama ayimfihlo adume kakhulu bekungamadijithi ayi-10, asetshenziswa kumanethiwekhi ayi-2349. Amaphasiwedi anezinombolo ezingu-8 asetshenziswe kumanethiwekhi angu-596, anezinombolo ezingu-9 ku-368, kanye namaphasiwedi ezinhlamvu ezingu-8 ngamagama amancane angu-320. Ukuphinda okukhethiwe kusetshenziswa isichazamazwi se-rockyou.txt, usayizi ongu-133 MB, kwenze kwaba nokwenzeka ukuthi ukhethe ngokushesha amagama ayimfihlo angu-900. .
Kucatshangwa ukuthi isimo esinokwethenjwa kwamagama ayimfihlo kumanethiwekhi angenawaya kwamanye amadolobha namazwe acishe afane futhi amaphasiwedi amaningi angatholakala emahoreni ambalwa futhi achithe cishe u-$50 ekhadini elingenantambo elisekela imodi yokuqapha umoya (i-ALFA Network Ikhadi le-AWUS036ACH lisetshenziswe ekuhloleni). Ukuhlasela okusekelwe ku-PMKID kusebenza kuphela ezindaweni ezisekela ukuzulazula, kodwa njengoba umkhuba ubonisile, abakhiqizi abaningi abawuvali.
Ukuhlasela kusebenzise indlela ejwayelekile yokugebenga amanethiwekhi angenawaya nge-WPA2, eyaziwa kusukela ngo-2018. Ngokungafani nendlela yakudala, edinga ukubamba amafreyimu okuxhawula ngesandla ngenkathi umsebenzisi exhuma, indlela esekelwe ekucabheni kwe-PMKID ayiboshelwe ekuxhumekeni komsebenzisi omusha kunethiwekhi futhi ingenziwa noma kunini. Ukuze uthole idatha eyanele ukuze uqale ukuqagela iphasiwedi, udinga kuphela ukuthimba uhlaka olulodwa ngesihlonzi se-PMKID. Ozimele abanjalo bangatholwa ngemodi yokungenzi lutho ngokuqapha umsebenzi ohlobene nokuzulazula, noma bangakwazi ukuqalisa ngokuphoqelela ukudluliswa kwamafreyimu nge-PMKID emoyeni ngokuthumela isicelo sokuqinisekisa endaweni yokufinyelela.
I-PMKID iyi-hashi ekhiqizwa kusetshenziswa igama-mfihlo, indawo yokufinyelela ikheli le-MAC, ikheli le-MAC leklayenti, kanye negama lenethiwekhi engenantambo (SSID). Amapharamitha amathathu okugcina (i-MAC AP, Isiteshi se-MAC kanye ne-SSID) ayaziwa ekuqaleni, okuvumela ukusetshenziswa kwendlela yokusesha isichazamazwi ukuze kutholwe igama-mfihlo, okufana nendlela amaphasiwedi abasebenzisi ohlelweni angaqagelwa ngayo uma i-hashi yabo iputshukile. Ngakho, ukuphepha kokungena kunethiwekhi engenantambo kuncike ngokuphelele emandleni esethi yephasiwedi.
Source: opennet.ru