Before even starting to read this make sure you have compatible wireless adapter!
For this tutorial you will need backtrack, you can download from here (I am using Backtrack 5 for this tutorial).
Once downloaded you can either burn the .ISO to a cd and boot it, or you can make a frugal install using UNetbootin.
Ok, when you successfully start backtrack go to Applications > Exploitation Tools > Wireless Exploitation Tools > Wlan Exploitation > gerix-wifi-cracker-ng.
![[Image: 86437852.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_sPrxAj4E0n7qhKuvqJwcQSfJXgHScBATK46jp9C4OvbDyCzPmooFp_hGPtMo6OL1pZAzBahUENT8W61AeE6YoAVdzIIv6KyjMuvW4HbVQzOXYnfYU=s0-d)
Once the program is started go to "Configuration" tab.
![[Image: 79399926.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_tJlzOd_5IQKZRX2F0Q4j0xJBPj_Av3UPfXEJ4QsgyGnup6g0r0IPDBih5nNVHkgBLYbhZ814zATxJ_G_zqRHtjWw6Abeu8YSiIETbItz6m7BZZnTMgpy0=s0-d)
Press "Set random MAC address"
![[Image: 12150512.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_vYNkYrKXqaMRZ_GkDNar8lE0H-3qJdgUAbAhqZ-LVTWiluo0oCxOOFvTPkJGZ7LLWqdjElysi8-dKqy1_JYGdqXmWdxNMQIS83Ichw94X67yOQ0nAZ=s0-d)
Then "Enable/Disable Monitor Mode"
![[Image: 21993618.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_u_Bc4QBIzrOxckjNpo_6tUZIreFWln4BcyvIhvnJkKngcZGMjXmbSU3CFMu3tHrMN4ra4910ZCcutACNYof9UCOXkd8uu4IA5PaSW02Lc51RHt1NFhvFE=s0-d)
Now press "Rescan networks" and choose the slave.
![[Image: 48030887.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_vvXCwH3YN_QheqIBYFoVVZKnG40Yy-tfMRSsbumYUNWIBsFyW0WvXNfJt8u8RQLfqs5pzkw7SthFlhfy95c0WaIll6jy9zBJeuVmXGn8disbmt9VA=s0-d)
Then press the "WEP" tab, you will see the "Start Sniffing and logging" button, press that. A new window will pop-up that's airodump console. Look at the "Data" you will need 10000-20000 Data/IV's to crack the wep key (Sometimes more).
![[Image: 42338878.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_t1Y3YKSzQiI-GIb5WVhV6p8INelGcCMCb7jD9svZCyJYLZ25zrkQ5lcCgDmgO1efMGv8JH0umOAn2HNTjog3ZgLiG1AP0aSBKilvD_5DC6xtv7kqCLwg=s0-d)
Now we are gonna speed up the proccess of getting necessary Data/IV's. Press the "WEP Attacks (No-Client)"
![[Image: 20865461.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_v66msLJAbD_QWQMpctEgJHxayY14SvFG57qUuF-wMgJlXNgi-DinpJvyq2XlbgsFxWieKnn9mhJQI4OfPaIJj1RYW7jr5tpeHczFFx10Urx7lJFcd_1yo=s0-d)
Then press "Associate with AP using fake auth"
![[Image: 72909853.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_vWbbhXkxeYs58E5oy3DEWlDYnuUcqSTM82LPvXs0xt1NAmlJ5wOAlIuwjrlnewGKrKtXupx9o-Iu7vYJEPFMczzp-LhdYOy614BuWgd9rMDxM9v3eQ=s0-d)
A new shell console will pop-up, wait untill it asks you "Use this packet? Type "Y" and hit enter.
![[Image: 39811637.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_unWcEeeUnB034Enq4C2bbl2Z-nRAz_qo9kjqUCBGyUjAX9lE0kr86saayrqLfTDbXIwXf819NDwdhUmFxiZPBEVgsvtQ291fQyon4SNyajmIIcgIiB=s0-d)
Now press "Fragmented Attack" again a new shell console will pop-up and it will ask you "Use this packet? Type "Y" and hit enter.
![[Image: 66665680.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_tJHeNlxrxVzmhGWvcCZMWj6XDGItVcKQ4vcwZeAZ1Za-PWSFjJvX6jxhRZu8UnSGgzuOX3yuqO5j5XBwGQR5lAyfzubWWntdarYgKhVqNncfBzkeZIYmk=s0-d)
Wait 20-30 seconds until you get enough Data/IV's to crack the WEP key.
![[Image: 38943479.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_ugmsLFma1gieKuN3NzmrZeOcBpj6CTwFpoUAzMrFE814qg0luSw5nXJJOrC1IDxtKYtPiaobLTc8D9wT-71VrGU-o_MikaBdnm8V5qjvFrmsFoS5UbLlo=s0-d)
Once you get enough Data/IV's go to "Cracking" tab and press "Aircrack-ng Decrypt WEP Password" New shell console will pop-up, when finished decrypting it will look something like this.
For this tutorial you will need backtrack, you can download from here (I am using Backtrack 5 for this tutorial).
Once downloaded you can either burn the .ISO to a cd and boot it, or you can make a frugal install using UNetbootin.
Ok, when you successfully start backtrack go to Applications > Exploitation Tools > Wireless Exploitation Tools > Wlan Exploitation > gerix-wifi-cracker-ng.
Once the program is started go to "Configuration" tab.
Press "Set random MAC address"
Then "Enable/Disable Monitor Mode"
Now press "Rescan networks" and choose the slave.
Then press the "WEP" tab, you will see the "Start Sniffing and logging" button, press that. A new window will pop-up that's airodump console. Look at the "Data" you will need 10000-20000 Data/IV's to crack the wep key (Sometimes more).
Now we are gonna speed up the proccess of getting necessary Data/IV's. Press the "WEP Attacks (No-Client)"
Then press "Associate with AP using fake auth"
A new shell console will pop-up, wait untill it asks you "Use this packet? Type "Y" and hit enter.
Now press "Fragmented Attack" again a new shell console will pop-up and it will ask you "Use this packet? Type "Y" and hit enter.
Wait 20-30 seconds until you get enough Data/IV's to crack the WEP key.
Once you get enough Data/IV's go to "Cracking" tab and press "Aircrack-ng Decrypt WEP Password" New shell console will pop-up, when finished decrypting it will look something like this.
Video Tutorial:

0 comments:
Post a Comment