Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
SlideShare a Scribd company logo

A tutorial showing you how to crack wifi passwords using kali linux!

edwardo
edwardo

1. The document provides instructions for cracking WiFi passwords through the command line interface (CMD) on a Kali Linux system. It outlines 5 steps: starting the wireless card in monitor mode, capturing wireless traffic with airodump-ng, identifying the target access point, checking if it has WPS enabled with wash, and cracking the password with reaver if WPS is enabled. 2. It explains some key information displayed during the capturing process like the BSSID, signal strength, encryption, and ESSID. 3. The full process took around 5 hours to crack a 19 character WPA2 password on a virtual machine, but the time can vary depending on hardware. Turning off WPS is

1 of 6
Cracking WiFi Passwords Through CMD CRACKING WIFI PASSWORDS THROUGH CMD How to Hack WiFi Passwords Through CMD – Hello hackers this time we are going to tell you how you can hack wifi passwords through CMD. It is a simple and easy tutorial. According to Wikipedia : Wi-Fi Protected Access (WPA) and Wi-Fi Protected Access II (WPA2) are two security protocols and security certification programs developed by the Wi-Fi Alliance to secure wireless computer networks. The Alliance defined these in response to serious weaknesses researchers had found in the previous system, WEP (Wired Equivalent Privacy) A flaw in a feature added to Wi-Fi, called Wi-Fi Protected Setup (WPS), allows WPA and WPA2 security to be bypassed and effectively broken in many situations. Many access point they have a Wifi Protected Setup enabled by default (even after we hard reset the access point). Requirements: 1. Wireless card (support promiscuous mode) In this tutorial I use ALFA AWUS036H from Amazon.
2. Access point with WPA2 and WPS enables 5 STEPS WIFI HACKING – CRACKING WPA2 PASSWORD: 1. Open our terminal (CTRL+ALT+T) and type airmon-ng (view tips and tricks how to create keyboard shortcut on kali linux)
this command will lists our wireless card that attached with our system. 2. The next step we need to stop our wireless monitor mode by running airmon-ng stop wlan0 3. Now we ready to capture the wireless traffic around us. By running airodump-ng wlan0 our wireless interface will start capturing the data.
From the picture above, we can see many available access point with all the information. In the green box is our victim access point which is my own access point Information: BSSID (Basic Service Set Identification): the MAC address of access point PWR: Signal level reported by the card. Beacons: Number of announcements packets sent by the AP #Data: Number of captured data packets (if WEP, unique IV count), including data broadcast packets. #/s: Number of data packets per second measure over the last 10 seconds. CH: Channel number (taken from beacon packets). MB: Maximum speed supported by the AP. If MB = 11, it’s 802.11b, if MB = 22 it’s 802.11b+ and higher rates are 802.11g. ENC: Encryption algorithm in use. CIPHER: The cipher detected. TKIP is typically used with WPA and CCMP is typically used with WPA2. AUTH: The authentication protocol used. ESSID: Shows the wireless network name. The so-called “SSID”, which can be empty if SSID hiding is activated.
4. From the step 3 above, we can find access point with encryption algorithm WPA2 and note the AP channel number. Now we will find out whether target AP has WPS enabled or not. wash -i wlan0 -c 8 -C -s if the WPS Locked status is No, then we ready to crack and move to step 5. 5. The last step is cracking the WPA2 password using reaver. reaver -i <your_interface> -b <wi-fi victim MAC address> –fail-wait=360 Because we already get the information from step 3 above, so my command look like this: reaver -i wlan0 -b E0:05:C5:5A:26:94 –fail-wait=360
it took about 5 hours to crack 19 characters WPA2 password (vishnuvalentino.com) from my Kali virtualBox, but it depend with our hardware and wireless card. Conclusions: 1. WPA and WPA2 security implemented without using the Wi-Fi Protected Setup (WPS) feature are unaffected by the security vulnerability. 2. To prevent this attack, just turn off our WPS/QSS feature on our access point. See picture below (I only have the Chinese version )  

More Related Content

A tutorial showing you how to crack wifi passwords using kali linux!

  • 1. Cracking WiFi Passwords Through CMD CRACKING WIFI PASSWORDS THROUGH CMD How to Hack WiFi Passwords Through CMD – Hello hackers this time we are going to tell you how you can hack wifi passwords through CMD. It is a simple and easy tutorial. According to Wikipedia : Wi-Fi Protected Access (WPA) and Wi-Fi Protected Access II (WPA2) are two security protocols and security certification programs developed by the Wi-Fi Alliance to secure wireless computer networks. The Alliance defined these in response to serious weaknesses researchers had found in the previous system, WEP (Wired Equivalent Privacy) A flaw in a feature added to Wi-Fi, called Wi-Fi Protected Setup (WPS), allows WPA and WPA2 security to be bypassed and effectively broken in many situations. Many access point they have a Wifi Protected Setup enabled by default (even after we hard reset the access point). Requirements: 1. Wireless card (support promiscuous mode) In this tutorial I use ALFA AWUS036H from Amazon.
  • 2. 2. Access point with WPA2 and WPS enables 5 STEPS WIFI HACKING – CRACKING WPA2 PASSWORD: 1. Open our terminal (CTRL+ALT+T) and type airmon-ng (view tips and tricks how to create keyboard shortcut on kali linux)
  • 3. this command will lists our wireless card that attached with our system. 2. The next step we need to stop our wireless monitor mode by running airmon-ng stop wlan0 3. Now we ready to capture the wireless traffic around us. By running airodump-ng wlan0 our wireless interface will start capturing the data.
  • 4. From the picture above, we can see many available access point with all the information. In the green box is our victim access point which is my own access point Information: BSSID (Basic Service Set Identification): the MAC address of access point PWR: Signal level reported by the card. Beacons: Number of announcements packets sent by the AP #Data: Number of captured data packets (if WEP, unique IV count), including data broadcast packets. #/s: Number of data packets per second measure over the last 10 seconds. CH: Channel number (taken from beacon packets). MB: Maximum speed supported by the AP. If MB = 11, it’s 802.11b, if MB = 22 it’s 802.11b+ and higher rates are 802.11g. ENC: Encryption algorithm in use. CIPHER: The cipher detected. TKIP is typically used with WPA and CCMP is typically used with WPA2. AUTH: The authentication protocol used. ESSID: Shows the wireless network name. The so-called “SSID”, which can be empty if SSID hiding is activated.
  • 5. 4. From the step 3 above, we can find access point with encryption algorithm WPA2 and note the AP channel number. Now we will find out whether target AP has WPS enabled or not. wash -i wlan0 -c 8 -C -s if the WPS Locked status is No, then we ready to crack and move to step 5. 5. The last step is cracking the WPA2 password using reaver. reaver -i <your_interface> -b <wi-fi victim MAC address> –fail-wait=360 Because we already get the information from step 3 above, so my command look like this: reaver -i wlan0 -b E0:05:C5:5A:26:94 –fail-wait=360
  • 6. it took about 5 hours to crack 19 characters WPA2 password (vishnuvalentino.com) from my Kali virtualBox, but it depend with our hardware and wireless card. Conclusions: 1. WPA and WPA2 security implemented without using the Wi-Fi Protected Setup (WPS) feature are unaffected by the security vulnerability. 2. To prevent this attack, just turn off our WPS/QSS feature on our access point. See picture below (I only have the Chinese version )