[APP][2.2+][ROOT][WiFi] Reaver-GUI for Android

Search This thread

antukubo

Senior Member
Feb 9, 2011
257
73
Johor Bahru
is 32 -bit instead of 64-bit
Aborted

So, that is the problem. I didn't realize that Pixel is using arm64 architecture. I believe that reaver/bcmon is for arm only. Even if u factory reset, i don't think you can run reaver.

But i might be wrong. U can google for more info. Maybe there's a way to run reaver/bcmon on 64 bit android? Linux Deploy? LinuxOnAndroid? Kali Nethunter?
 

twiztid2018

New member
Mar 3, 2018
1
0
Can anyone help with this error? When I hit attack, I get this.

_shell/10056:12060: <stdin>[3]: .h: not found
link_image[1891]: 12067 could not oad needed library 'libpcap.so.1' for './reaver'
load_library[1093]: Library libpcap.so.1' not found)CANNOT INK EXECUTABLE
_shell/10056:12060: <stdin>[6]: wlanO: not found
 
Last edited:

darkshadw

Senior Member
Nov 3, 2009
142
12
Hey, I was wondering if this could work on one of the following devices: Galaxy S3, Galaxy S4 Mini, Galaxy Note 4, Galaxy S7 Edge.
I can't seem to be able to get it to run properly on the Galaxy S7 Edge, I'm getting the following after following the instructions from OP (See picture 1)
 

Attachments

  • photo_2019-01-02_02-13-55.jpg
    photo_2019-01-02_02-13-55.jpg
    39 KB · Views: 1,174

brncgreen

Member
Dec 10, 2018
35
5
8pxfqkb9.png

Reaver for Android v1.30
Reaver-WPS GUI for rooted devices with bcm4329/4330 wifi chipset or working external wifi card.
4t3b7gia.png


INFO:
Reaver for Android, short RfA, is a simple-to-use Reaver-GUI for Android devices with monitor-mode support.
It has some very cool features:

  • Detects automatically WPS-enabled routers.
  • All Reaver-Settings are accessible from a simple-to-use GUI.
  • Activates and deactivates Monitor-Mode automatically when needed.
  • Provides a simple way to connect when Reaver finds the WPA-Key.
  • External script support

Project status: PRE-FINAL
What does this mean?
There are some features which are not implemented yet.
Developement will continue very soon.​


Installation

  1. Download/install bcmon.apk from HERE and RfA.apk from the bottom of this post. RfA may also download bcmon automatically.
  2. Run bcmon, if it crashes try a second time.
  3. If all runs fine, start RfA. If not, your device may be not bcmon compatible. Please see second post.
  4. After selecting an WPS-enabled router, click on "Test Monitor-Mode".
  5. Now you can use RfA:), don't uninstall bcmon.
Steps 1 - 4 are only for the installation, they don't have to be repeated once done.


FAQ:

What is this awesome app actually usefull for?
Well, RfA is able to unveil the actual WPA(2)-Key of many routers within 2 - 10 hours.

WHAT?! I though WPA(2) is safe?
It used to be, but then many router models got WiFi Protected Setup, short WPS, implemeted, which is pretty vulnerable. (Details)
Basically it's a Brute-Force attack with Reaver against a 8 digit pin with 10^4 + 10^3 possibilities.

What is Reaver?
Reaver-WPS is a pentesting tool developed by Tactical Network Solutions.
It attacks WPS-enabled routers and after the WPS-Pin is cracked, it retrieves the actual WPA-key.
Reaver provides only a terminal interface, which is ok for notebooks etc., however it's a pain on Android devices.
Because of this I developed RfA.

Doesn't Reaver requires monitor-mode and so can't work on Android?
Yes, Reaver needs monitor-mode, but thanks to bcmon (or external wifi cards) some Android devices are now monitor-mode capable.​


bcmon compatibility
Developed and tested on: Nexus 7 2012 (Stock 4.3)
RfA *should* work on all devices with bcmon support (Broadcom bcm4329/bcm4330 chipsets)
Simply try by installing bcmon. Don't worry, if something goes wrong a simple reboot should fix everything.
For external wifi cards please see second post.

Tested & works on:
Nexus 7 2012 (Stock 4.3, Cyanogen 9)
Huawei Honour (Cyanogen Mod based ROM)

bcmon does NOT work on:
Samsung Galaxy S3/4/5
HTC One
LG G2
Nexus 4/5
Nexus 7 (2013)

Credits & used tools:

Monitor-Mode over bcmon.apk:
Omri Ildis, Ruby Feinstein & Yuval Ofir
See: bcmon.blogspot.com

Reaver-WPS:
Tactical Network Solutions
See: code.google.com/p/reaver-wps/

Disclaimer

Attention: Hacking of networks is illegal without having the permission of the owner! The developer is not responsible for any damage etc. this app could cause.
This software is only intended to show a big security hole, not to be able to surf in the neighbours Wifi;)

XDA:DevDB Information
Reaver-GUI for Android, App for all devices (see above for details)

Contributors
SOEDI, bcmon team & Tactical Network Solutions

Version Information
Status: Stable
Current Stable Version: 1.30
Stable Release Date: 2014-07-01
Beta Release Date: 2013-11-04

Created 2013-09-24
Last Updated 2014-09-27

Now if bcmon doesn't work can this method still work? Obviously a new script but I have checked my settings and wlan0 does have promisc mode. Assuming drivers are there. My main question is will reaver work on non cmon cards?
 

Wilsonb

Senior Member
Nov 23, 2010
1,106
231
Austin
[Pcap Capture] app detecting my RTL8187 USB WiFi device.

USING Samsung Note 8 - SM-950U1 - Custom Nougat Rom Rooted

So I got [Pcap Capture] app detecting my RTL8187 USB WiFi device. Type-C to Mini USB.
Is able to log and do captures..
So connection is there and there is a way for Android to see it.



When using Reaver-GUI for Android & BCMON 1.0
BCMON doesn't detect it. Doesnt seem to do anything.
Is there a newer version that works?
 

terawyvenx

Member
Jun 15, 2015
47
9
Cape Town
USING Samsung Note 8 - SM-950U1 - Custom Nougat Rom Rooted

So I got [Pcap Capture] app detecting my RTL8187 USB WiFi device. Type-C to Mini USB.
Is able to log and do captures..
So connection is there and there is a way for Android to see it.



When using Reaver-GUI for Android & BCMON 1.0
BCMON doesn't detect it. Doesnt seem to do anything.
Is there a newer version that works?

You welcome to try nethunter. It comes with all the tools needed for pentesting with your android phone. BCMON and RFA is pretty much obsolete now. They won't work on anything beyond the year 2012. Nethunter installs the kali linux terminal, along with some basic tools such as the aircrack range tools, reaver and other juicy hacking goodies. You gonna have to use those tools manually meaning you gonna need to read up how to use them in the kali linux terminal. There are ways to install nethunter on most android devices, look it up. I hope this helps
 
Jan 22, 2020
1
0
Tried on galaxy s5 to disable bcmon and use the three scripts - Activated debug to find this -
Debug: activation script
StdoutC

StderrC
XdataXuserX0Xde.dewsoft.RfaXcacheXrunnerK2KC suC not found
Im guessing this means I need root access? Is that correct? X is forward slash (damn anti code websites) K is square bracket C is colon
 

plzhelpme1

New member
Jul 5, 2020
3
0
Is bcmon a malware?

I have just downloaded bcmon.apk from Google archive:
code.google.com (slash) archive (slash) p (slash) bcmon (slash) downloads

And then scanned it with VirusTotal website:
virustotal.com (slash) gui (slash) home (slash) upload

It reports that 25 of their virus scan engines has detected the file as a virus. Are they false positives?

P.S.
It reports clean for RfA_1.30.apk.
 

Sreehari Vikram

New member
Jul 6, 2021
4
0
I am using HTC desire 828( Android 5.1)and i have done the instructions for reaver installation. But On starting the attack, it says

Debug activation script
Std out:
rfasuccess
StdErr:
error: only position independent executables(PIE) are supported.

I have read the forum regarding bypass the PIE check by flashing bypass.zip and curl. zip.
I have done that too, but curl.zip installation failed as d/t invalid zip format.
Is there any solution to this problem?
 

ormanelif007

New member
May 11, 2022
1
0
8pxfqkb9.png

Reaver for Android v1.30
Reaver-WPS GUI for rooted devices with bcm4329/4330 wifi chipset or working external wifi card.
4t3b7gia.png


INFO:
Reaver for Android, short RfA, is a simple-to-use Reaver-GUI for Android devices with monitor-mode support.
It has some very cool features:

  • Detects automatically WPS-enabled routers.
  • All Reaver-Settings are accessible from a simple-to-use GUI.
  • Activates and deactivates Monitor-Mode automatically when needed.
  • Provides a simple way to connect when Reaver finds the WPA-Key.
  • External script support

Project status: PRE-FINAL
What does this mean?
There are some features which are not implemented yet.​
Developement will continue very soon.​


Installation

  1. Download/install bcmon.apk from HERE and RfA.apk from the bottom of this post. RfA may also download bcmon automatically.
  2. Run bcmon, if it crashes try a second time.
  3. If all runs fine, start RfA. If not, your device may be not bcmon compatible. Please see second post.
  4. After selecting an WPS-enabled router, click on "Test Monitor-Mode".
  5. Now you can use RfA:), don't uninstall bcmon.
Steps 1 - 4 are only for the installation, they don't have to be repeated once done.


FAQ:

What is this awesome app actually usefull for?
Well, RfA is able to unveil the actual WPA(2)-Key of many routers within 2 - 10 hours.​
WHAT?! I though WPA(2) is safe?
It used to be, but then many router models got WiFi Protected Setup, short WPS, implemeted, which is pretty vulnerable. (Details)​
Basically it's a Brute-Force attack with Reaver against a 8 digit pin with 10^4 + 10^3 possibilities.​
What is Reaver?
Reaver-WPS is a pentesting tool developed by Tactical Network Solutions.​
It attacks WPS-enabled routers and after the WPS-Pin is cracked, it retrieves the actual WPA-key.​
Reaver provides only a terminal interface, which is ok for notebooks etc., however it's a pain on Android devices.​
Because of this I developed RfA.​
Doesn't Reaver requires monitor-mode and so can't work on Android?
Yes, Reaver needs monitor-mode, but thanks to bcmon (or external wifi cards) some Android devices are now monitor-mode capable.​


bcmon compatibility
Developed and tested on: Nexus 7 2012 (Stock 4.3)​
RfA *should* work on all devices with bcmon support (Broadcom bcm4329/bcm4330 chipsets)​
Simply try by installing bcmon. Don't worry, if something goes wrong a simple reboot should fix everything.​
For external wifi cards please see second post.​
Tested & works on:
Nexus 7 2012 (Stock 4.3, Cyanogen 9)​
Huawei Honour (Cyanogen Mod based ROM)​
bcmon does NOT work on:
Samsung Galaxy S3/4/5​
HTC One​
LG G2​
Nexus 4/5​
Nexus 7 (2013)​

Credits & used tools:

Monitor-Mode over bcmon.apk:
Omri Ildis, Ruby Feinstein & Yuval Ofir​
Reaver-WPS:
Tactical Network Solutions​

Disclaimer

Attention: Hacking of networks is illegal without having the permission of the owner! The developer is not responsible for any damage etc. this app could cause.
This software is only intended to show a big security hole, not to be able to surf in the neighbours Wifi;)

XDA:DevDB Information
Reaver-GUI for Android, App for all devices (see above for details)

Contributors
SOEDI, bcmon team & Tactical Network Solutions

Version Information
Status:
Stable
Current Stable Version: 1.30
Stable Release Date: 2014-07-01
Beta Release Date: 2013-11-04

Created 2013-09-24
Last Updated 2014-09-27
Tnx
 

Top Liked Posts

  • There are no posts matching your filters.
  • 180
    8pxfqkb9.png

    Reaver for Android v1.30
    Reaver-WPS GUI for rooted devices with bcm4329/4330 wifi chipset or working external wifi card.
    4t3b7gia.png


    INFO:
    Reaver for Android, short RfA, is a simple-to-use Reaver-GUI for Android devices with monitor-mode support.
    It has some very cool features:

    • Detects automatically WPS-enabled routers.
    • All Reaver-Settings are accessible from a simple-to-use GUI.
    • Activates and deactivates Monitor-Mode automatically when needed.
    • Provides a simple way to connect when Reaver finds the WPA-Key.
    • External script support

    Project status: PRE-FINAL
    What does this mean?
    There are some features which are not implemented yet.
    Developement will continue very soon.​


    Installation

    1. Download/install bcmon.apk from HERE and RfA.apk from the bottom of this post. RfA may also download bcmon automatically.
    2. Run bcmon, if it crashes try a second time.
    3. If all runs fine, start RfA. If not, your device may be not bcmon compatible. Please see second post.
    4. After selecting an WPS-enabled router, click on "Test Monitor-Mode".
    5. Now you can use RfA:), don't uninstall bcmon.
    Steps 1 - 4 are only for the installation, they don't have to be repeated once done.


    FAQ:

    What is this awesome app actually usefull for?
    Well, RfA is able to unveil the actual WPA(2)-Key of many routers within 2 - 10 hours.

    WHAT?! I though WPA(2) is safe?
    It used to be, but then many router models got WiFi Protected Setup, short WPS, implemeted, which is pretty vulnerable. (Details)
    Basically it's a Brute-Force attack with Reaver against a 8 digit pin with 10^4 + 10^3 possibilities.

    What is Reaver?
    Reaver-WPS is a pentesting tool developed by Tactical Network Solutions.
    It attacks WPS-enabled routers and after the WPS-Pin is cracked, it retrieves the actual WPA-key.
    Reaver provides only a terminal interface, which is ok for notebooks etc., however it's a pain on Android devices.
    Because of this I developed RfA.

    Doesn't Reaver requires monitor-mode and so can't work on Android?
    Yes, Reaver needs monitor-mode, but thanks to bcmon (or external wifi cards) some Android devices are now monitor-mode capable.​


    bcmon compatibility
    Developed and tested on: Nexus 7 2012 (Stock 4.3)
    RfA *should* work on all devices with bcmon support (Broadcom bcm4329/bcm4330 chipsets)
    Simply try by installing bcmon. Don't worry, if something goes wrong a simple reboot should fix everything.
    For external wifi cards please see second post.

    Tested & works on:
    Nexus 7 2012 (Stock 4.3, Cyanogen 9)
    Huawei Honour (Cyanogen Mod based ROM)

    bcmon does NOT work on:
    Samsung Galaxy S3/4/5
    HTC One
    LG G2
    Nexus 4/5
    Nexus 7 (2013)

    Credits & used tools:

    Monitor-Mode over bcmon.apk:
    Omri Ildis, Ruby Feinstein & Yuval Ofir
    See: bcmon.blogspot.com

    Reaver-WPS:
    Tactical Network Solutions
    See: code.google.com/p/reaver-wps/

    Disclaimer

    Attention: Hacking of networks is illegal without having the permission of the owner! The developer is not responsible for any damage etc. this app could cause.
    This software is only intended to show a big security hole, not to be able to surf in the neighbours Wifi;)

    XDA:DevDB Information
    Reaver-GUI for Android, App for all devices (see above for details)

    Contributors
    SOEDI, bcmon team & Tactical Network Solutions

    Version Information
    Status: Stable
    Current Stable Version: 1.30
    Stable Release Date: 2014-07-01
    Beta Release Date: 2013-11-04

    Created 2013-09-24
    Last Updated 2014-09-27
    17
    Second Post

    • If anyone has working Andorid drivers for external Wifi cards, please let me know,
    • If the layout looks strange on your phone, please send me a screenshot, so I can fix it
      I have only a tablet and HD phone (emulator works to slow), so can't test the layout properly.


    Usage of custom-scripts

    To make RfA less dependent from bcmon, which seems to be dicontinued, I introduced custom monitor-mode-activation scripts.

    Please note that those scripts only have sense for you, if you are already able to use monitor-mode on your device. Ether via special firmware for the internel wifi card or a kernel, which properly supports external wifi cards. Those scripts serve only as a "connector" between your wifi interface and RfA.
    In order to enable this function you need to open RfA settings, tap on "Monitor-Mode settings" and disable the "Use bcmon" checkbox.

    There are 3 different scripts you can specify:

    Activation script
    This script will be executed in it's own directory.
    It should enable monitor-mode and exit.
    Example:
    Code:
    #!/bin/bash
    svc wifi disable
    LD_LIBRARY_PATH=/data/data/com.bcmon.bcmon/files/libs
    LD_PRELOAD=/data/data/com.bcmon.bcmon/files/libs/libfake_driver.so sh
    cd /data/data/com.bcmon.bcmon/files/tools
    ./enable_bcmon
    echo "rfasuccess"
    exit

    Warm-up script
    RfA will read in this script as textfile and execute the commands internally. This is needed to execute reaver in the same terminal session as the script.
    It should do all prepartions before Reaver is started. At least it has to cd into the directory where the reaver binary is.
    Example:
    Code:
    #!/bin/bash
    LD_LIBRARY_PATH=/data/data/com.bcmon.bcmon/files/libs
    LD_PRELOAD=/data/data/com.bcmon.bcmon/files/libs/libfake_driver.so sh
    cd /data/data/com.bcmon.bcmon/files/tools

    Stop script
    This script will be executed in it's own directory.
    It should disable monitor-mode and exit.
    Code:
    #!/bin/bash
    svc wifi enable
    echo "rfasuccess"

    Additional Information
    • You have also to specify your wifi-interface.
    • The given examples are those scripts, which RfA uses by default when you enable the "Use bcmon" checkbox.
    • The activation and stop script have to echo "rfasuccess" in order to tell RfA that they were executed properly. With this method you can also implement a sort of error-checking, by returning "rfasuccess" only when everything went fine.
    9
    New Version

    Hey folks,

    finally, I found some time and implemented script support.
    This makes RfA ready for bcmon independent usage. Now, if you have a working external wifi card and the right kernel, you will be able to write a short shell-script (details later) and RfA will be able to use it.

    Also, this will make RfA compatible with @n01ce PwnAir, at least after the script for it is ready ;)


    Regards,
    SOEDI


    P.S: Release will be in the next few days.
    7
    @ruleh: it’s amazing how you stay calm and keep on answering even the most stupid questions!

    In the meantime I integrated the PixieDust attack. I had to rewrite some parts of RfA, pixiewps and reaver itself, but it looks pretty promising now. It was not easy to get the stuff compiled, so keep that in mind when you meet a "Segmentation fault" sometimes ;)
    Details (and release) will follow later...

    RfA 1.40 is coming soon, yeah :D
    6
    Theorically, all that needs is to crosscompile mdk3 (or bully, or a kernel module which supports monitor mode, or another program you want) for ARM architecture, and eventually doing some tweakings.

    In the reality, considering no one did other wifi tools for android, apart the old Reaver (excluding apps in google play mostly to find default passwords according to bssid and router model), I believe it's much difficult than thought.

    Let's remember also the aim of bcmon, reaver-wps and RfA is to return tools to use with internal wifi.
    I believe (but still to try), that if you use Linux Deploy to install Kali, a powered microusb-OTG and an external wifi dongle, you are able to run all of wifi-sec tools you want from your device.

    Just a personal consideration: I'm against the use of mdk3, because the "art" of reaver/bully is to find the correct settings not to trigger the WPS lockdown. I have tested on my TNCAP router and, according also to what I have read, unless you put up a series of wireless tools to intercept packets and monitor your router (wireshark, kismet, etc), you won't realize there is a WPS bruteforce attack in course.
    But start flooding periodically the AP with mdk3, freezing and resetting it in cycle, and I'll be the first to suspect an attack, intercept your packets and knock at your door with a handgun ;)

    P.S. being in topic, there are some reports of TNCAP routers being able to reboot with permanent lock WPS already on, after some floods with mdk3.

    Here's an android + bcmon compatible mdk3 binary + source. Tested and works on N7 2012 4.3, but some attack may not work (as fast) as they should.

    copy the mdk3 binary inside the zip to data/data/com.bcmon.bcmon/files/tools and don't forget to set the right permissions.


    Best Regards
    SOEDI