Can't log in? Can't recover your password? Need help? Contact me via email: unverified@hotmail.com
 
Thread Rating:
  • 3 Vote(s) - 3.67 Average
  • 1
  • 2
  • 3
  • 4
  • 5


How to Hack Wifi or Wireless Password
05-19-2011, 01:32 PM
Post: #1

karan Offline
Member


Posts: 127
Joined: Aug 2012
Reputation: 8
Currency: 0.00 NSP
How to Hack Wifi or Wireless Password
Hello Friends, today i will explain you how to crack Wifi or wireless password in just 10 to 15 minutes. In my previous articles i have explained the different wireless scanning tools and scanning wireless networks using NetStumbler. Today i will explain How to Hack or Crack Wifi Password. Today's hack will be based on cracking the WEP encryption password. So guys tighten your belts for new hack and lets start hack wifi. I have also included the video at bottom of the post. So guys read on and watch ....

STEPS TO HACK WIFI OR WIRELESS PASSWORD

1. Get the Backtrack-Linux CD. Backtrack Linux Live CD(best Linux available for hackers with more than 2000 hacking tools inbuilt).
Download Backtrack Linux Live CD from here:


http://http://www.backtrack-linux.org/downloads/


2. SCAN TO GET THE VICTIM

Get the victim to attack that is whose password you want to hack or crack.
Now Enter the Backtrack Linux CD into your CD drive and start it. Once its started click on the black box in the lower left corner to load up a "KONSOLE" . Now you should start your Wifi card. To do it so type

airmon-ng

You will see the name of your wireless card. (mine is named "ath0") From here on out, replace "ath0" with the name of your card. Now type

airmon-ng stop ath0

then type:

ifconfig wifi0 down

then type:

macchanger --mac 00:11:22:33:44:55 wifi0

then type:

airmon-ng start wifi0

The above steps i have explained is to spoof yourself from being traced. In above step we are spoofing our MAC address, this will keep us undiscovered.

Now type:

airodump-ng ath0





Now you will see a list of wireless networks in the Konsole. Some will have a better signal than others and its always a good idea to pick one that has a best signal strength otherwise it will take huge time to crack or hack the password or you may not be able to crack it at all.
Once you see the networks list, now select the network you want to hack. To freeze the airodump screen HOLD the CNTRL key and Press C.
:




3. SELECTING NETWORK FOR HACKING

Now find the network that you want to crack and MAKE SURE that it says the encryption for that network is WEP. If it says WPA or any variation of WPA then move on...you can still crack WPA with backtrack and some other tools but it is a whole other ball game and you need to master WEP first.



Once you've decided on a network, take note of its channel number and bssid. The bssid will look something like this --

00:23:69:bb:2d:of

The Channel number will be under a heading that says "CH".





Now in the same KONSOLE window type:

airodump-ng -c (channel) -w (file name) --bssid (bssid) ath0


The file name can be whatever you want. This file is the place where airodump is going to store the packets of info that you receive to later crack. You don't even put in an extension...just pick a random word that you will remember. I usually make mine "Ben" because I can always remember it. Its simply because i love ben10....hhahahahaha Biggrin

Note: If you want to crack more than one network in the same session, you must have different file names for each one or it won't work. I usually name them as ben1, ben2 etc.

Once you typed in that last command, the screen of airodump will change and start to show your computer gathering packets. You will also see a heading marked "IV" with a number underneath it. This stands for "Initialization Vector" but in general terms all this means is "packets of info that contain characters of the password." Once you gain a minimum of 5,000 of these IV's, you can try to crack the password. I've cracked some right at 5,000 and others have taken over 60,000. It just depends on how long and difficult they made the password. More difficult is password more packets you will need to crack it.



4. Cracking the WEP password

Now leave this Konsole window up and running and open up a 2nd Konsole window.
In this window type:


aireplay-ng -1 0 -a (bssid) -h 00:11:22:33:44:55 ath0

This will send some commands to the router that basically it is to associate your computer even though you are not officially connected with the password. If this command is successful, you should see about 4 lines of text print out with the last one saying something similar to "Association Successful :-)"
If this happens, then good! You are almost there.

Now type:
aireplay-ng -3 -b (bssid) -h 00:11:22:33:44:55 ath0

This will generate a bunch of text and then you will see a line where your computer is gathering a bunch of packets and waiting on ARP and ACK. Don't worry about what these mean...just know that these are your meal tickets. Now you just sit and wait. Once your computer finally gathers an ARP request, it will send it back to the router and begin to generate hundreds of ARP and ACK per second. Sometimes this starts to happen within seconds...sometimes you have to wait up to a few minutes. Just be patient. When it finally does happen, switch back to your first Konsole window and you should see the number underneath the IV starting to rise rapidly. This is great! It means you are almost finished! When this number reaches AT LEAST 5,000 then you can start your password crack. It will probably take more than this but I always start my password cracking at 5,000 just in case they have a really weak password.

Now you need to open up a 3rd and final Konsole window. This will be where we actually crack the password.
Now type:
aircrack-ng -b (bssid) (filename)-01.cap

Remember the file name you made up earlier? Mine was "Ben". Don't put a space in between it and -01.cap here. Type it as you see it. So for me, I would type wepkey-01.cap
Once you have done this you will see aircrack fire up and begin to crack the password. typically you have to wait for more like 10,000 to 20,000 IV's before it will crack. If this is the case, aircrack will test what you've got so far and then it will say something like "not enough IV's. Retry at 10,000."
DON'T DO ANYTHING! It will stay running...it is just letting you know that it is on pause until more IV's are gathered. Once you pass the 10,000 mark it will automatically fire up again and try to crack it. If this fails it will say "not enough IV's. Retry at 15,000." and so on until it finally gets it.

If you do everything correctly up to this point, before too long you will have the password! now if the password looks goofy, dont worry, it will still work. some passwords are saved in ASCII format, in which case, aircrack will show you exactly what characters they typed in for their password. Sometimes, though, the password is saved in HEX format in which case the computer will show you the HEX encryption of the password. It doesn't matter either way, because you can type in either one and it will connect you to the network.

Take note, though, that the password will always be displayed in aircrack with a colon after every 2 characters. So for instance if the password was "secret", it would be displayed as:
se:cr:et

This would obviously be the ASCII format. If it was a HEX encrypted password that was something like "0FKW9427VF" then it would still display as:
0F:KW:94:27:VF


Just omit the colons from the password, boot back into whatever operating system you use, try to connect to the network and type in the password without the colons and presto! You are in!

It may seem like a lot to deal with if you have never done it, but after a few successful attempts, you will get very quick with it. If I am near a WEP encrypted router with a good signal, I can often crack the password in just a couple of minutes.[/color]






I am not responsible for what you do with this information. Any malicious/illegal activity that you do, falls completely on you because...technically...this is just for you to test the security of your own network.
guys hope ua like it..this is ma last tut Biggrin












THANKYOU
05-19-2011, 09:06 PM
Post: #2

Coded32 Offline
UNDERCOVER


Posts: 141
Joined: Aug 2012
Reputation: 21
Currency: 0.00 NSP
RE: How to Hack Wifi or Wireless Password
Stop Ripping tutorials. Post something new.
Download NetTools. <----- Google that.
You also get the same tools in Windows mode.

[Image: 9Kcm1.png]
To the Mind that is still, The Whole World Surrenders.
Exploiter on Team OpenFire
C,C++,Java and Perl source Developer.
05-20-2011, 12:10 AM
Post: #3

m3taxpl0it Offline
Junior Member


Posts: 9
Joined: Aug 2012
Reputation: 0
Currency: 0.00 NSP
RE: How to Hack Wifi or Wireless Password
You might want to point out that if ivs are not being re-injected to the ap you might have to deauthenticate a client that is already associated with that ap. But remember do it to many one time it will be a DoS to that client.

Code:
aireplay-ng --deauth 10 -a (bssid) -c (client) ath0

[Image: Sig.jpg]
09-06-2011, 08:41 PM
Post: #4

akitta Offline
Junior Member


Posts: 40
Joined: Aug 2012
Reputation: 0
Currency: 0.00 NSP
RE: How to Hack Wifi or Wireless Password
you didn't put your card into monitor mode, it's 'airmon-ng start eth0' not stop eth0...lol..!
or you could use
'ifconfig wlan0 down' or 'ifconfig eth0 down'
iwconfig wlan0 mode monitor'
macchanger -m xx.xx.xx.xx.xx
ifconfig wlan0 up

Coded32 i'm going to google NETTOOLS i've never heard of it before Smile

IF IGNORANCE IS BLISS, I'D PREFER TO SUFFER
09-06-2011, 08:41 PM
Post: #5

akitta Offline
Junior Member


Posts: 40
Joined: Aug 2012
Reputation: 0
Currency: 0.00 NSP
RE: How to Hack Wifi or Wireless Password
you didn't put your card into monitor mode, it's 'airmon-ng start eth0' not stop eth0...lol..!
or you could use
'ifconfig wlan0 down' or 'ifconfig eth0 down'
iwconfig wlan0 mode monitor'
macchanger -m xx.xx.xx.xx.xx
ifconfig wlan0 up

Coded32 i'm going to google NETTOOLS i've never heard of it before Smile

IF IGNORANCE IS BLISS, I'D PREFER TO SUFFER
04-30-2012, 10:07 PM
Post: #6

fibercrewz Offline
Junior Member


Posts: 2
Joined: Aug 2012
Reputation: 0
Currency: 0.00 NSP
RE: How to Hack Wifi or Wireless Password
http://www.mediafire.com/download.php?yses2z3xb4ua0ay
use this mac changer.that tool for mac changer when u attack.
08-29-2012, 11:50 PM
Post: #7

unknown_user Offline
Junior Member


Posts: 5
Joined: Aug 2012
Reputation: 0
Currency: 0.00 NSP
RE: How to Hack Wifi or Wireless Password
[root@localhost unknownuser]# airmon-ng

Interface Chipset Driver

wlan0 Atheros ath5k - [phy0]
wlan1 Ralink 2573 USB rt73usb - [phy1]

[root@localhost unknownuser]# airmon-ng stop wlan1


Interface Chipset Driver

wlan0 Atheros ath5k - [phy0]
wlan1 Ralink 2573 USB rt73usb - [phy1]
(monitor mode disabled)

[root@localhost unknownuser]# airmon-ng start wlan1


Found 5 processes that could cause trouble.
If airodump-ng, aireplay-ng or airtun-ng stops working after
a short period of time, you may want to kill (some of) them!

PID Name
980 avahi-daemon
990 NetworkManager
1000 avahi-daemon
1136 wpa_supplicant
14876 dhclient
Process with PID 14876 (dhclient) is running on interface wlan0


Interface Chipset Driver

wlan0 Atheros ath5k - [phy0]
wlan1 Ralink 2573 USB rt73usb - [phy1]
(monitor mode enabled on mon0)

[root@localhost unknownuser]# airodump-ng mon0

CH 8 ][ Elapsed: 8 s ][ 2012-08-29 22:49

CH 8 ][ Elapsed: 8 s ][ 2012-08-29 22:49

BSSID PWR Beacons #Data, #/s CH MB ENC CIPHER AUTH ESSID

28:10:7B:E8:CC:54 -76 10 0 0 13 54e. WPA2 CCMP PSK rekateemorputra1

BSSID STATION PWR Rate Lost Packets Probes

[root@localhost unknownuser]# aireplay-ng -0 1 -a 28:10:7B:E8:CC:54 -c 94:0C:6D:E1:83:0E mon0
08:58:01 Waiting for beacon frame (BSSID: 28:10:7B:E8:CC:54) on channel 1
08:58:11 No such BSSID available.
Please specify an ESSID (-e).

where i did wrong??
09-06-2012, 04:34 PM
Post: #8

Linus21 Offline
Junior Member


Posts: 18
Joined: Sep 2012
Reputation: 0
Currency: 0.00 NSP
RE: How to Hack Wifi or Wireless Password
Damn, i dont want to download a whole operating system..
09-20-2012, 03:35 AM
Post: #9

blackrosevn Offline
Junior Member


Posts: 20
Joined: Sep 2012
Reputation: 0
Currency: 0.00 NSP
RE: How to Hack Wifi or Wireless Password
get a lot of things from this topic.
Thanks everyone!
10-01-2012, 05:59 PM
Post: #10

IsaacNewton Offline
Junior Member


Posts: 4
Joined: Oct 2012
Reputation: 0
Currency: 0.00 NSP
RE: How to Hack Wifi or Wireless Password
Use BackTrack for this.....flash it on a pendrive and wear it on a chain *gg


Thread Options


User(s) browsing this thread: 2 Guest(s)