Speedtouch Brute Introduction

This documentation provides an overview of the functionality of the thc_sb module.

Speedtouch Brute is a tool designed to generate WEP/WPA keys for older Thomson and Speedtouch routers. It was the first tool to appear on the former HackSuite CMS.

Interface Parameters:

1. BSSID: 6-character hexadecimal broadcast ID, e.g., SpeedtouchF34D0B

ModGlue Variables:

1. $_CONTEXT['thc_sb']['log']: (string) Absolute path to the log file in the module's root folder containing cracked keys.
2. $_CONTEXT['thc_sb']['input']: (string) BSSID to search for.
3. $_CONTEXT['thc_sb']['offset']: (int) Offset to determine whether a part of the generated hash contains the BSSID.
4. $_CONTEXT['thc_sb']['charsetbase']: (string) Alphanumeric character set used for generating the hash.
5. $_CONTEXT['thc_sb']['chars']: (int) Number of characters in the character set.
6. $_CONTEXT['thc_sb']['years']: (array) Possible router manufacturing years.
7. $_CONTEXT['thc_sb']['years_amount']: (int) Number of years to test.
8. $_CONTEXT['thc_sb']['charsetsid']: (string) Hexadecimal character set containing all possible characters in a BSSID.
9. $_CONTEXT['thc_sb']['matches']: (int) Number of possible keys.
10. $_CONTEXT['thc_sb']['serial']: (string) Generated serial based on the possible router manufacturing date.
11. $_CONTEXT['thc_sb']['hash']: (string) Hashed version of the serial.
12. $_CONTEXT['thc_sb']['possiblekey']: (string) WPA/WEP authentication key.

Resource Settings:

• Time Limit: PHP default
• Memory Limit: PHP default

Dependencies:

N/A

Expanding Speedtouch Brute:

N/A

Known Issues:

In some cases, multiple authentication keys may match. Occasionally, the key is incorrect, or no result may be returned at all. If you encounter no matches, consider adding more years to the $aYears variable in the screen.php file located in the module's root folder.