Before even starting to read this make sure you have compatible wireless adapter!
For this tutorial you will need backtrack, you can download from here (I am using Backtrack 5 for this tutorial).
Once downloaded you can either burn the .ISO to a cd and boot it, or you can make a frugal install using UNetbootin.
Ok, when you successfully start backtrack go to Applications > Exploitation Tools > Wireless Exploitation Tools > Wlan Exploitation > gerix-wifi-cracker-ng.
![[Image: 86437852.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_twfDYfve5LUROTvdxK4YonRoj06hmbVuL2A963zSG4QMKJl3JEUUTygHtx1C5NV5lsOVrvdVOvDtlzvXgR2PwgShTkRR26EF50wqml0epXRKJuqfw=s0-d)
Once the program is started go to "Configuration" tab.
![[Image: 79399926.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_ueWUqcwrq7U3E_92xK15rhc9GvwXPtx6CqSWugcyBw0-2W2Vruxi3AESx2tebJGmfjj-ttuiu4S0xb20K4DzRVsF3d4JtBrEPQD1M7vI6H_rQZKgT7FHM=s0-d)
Press "Set random MAC address"
![[Image: 12150512.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_vKAwJszLbyj73HJ_kCrcA7HB2Pd2kylJAPaCaZQqbu9awu_4JbNgqkvqaPnrRI36ZendDKviuaC2qLdtctS6bp740P32v3q1JKwAzB5N1o7EZvYF0H=s0-d)
Then "Enable/Disable Monitor Mode"
![[Image: 21993618.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_uhZB4KvPUTJjAa5fzwfwlFrEsJEy-kgL0w6VU4sRACh-uTvcZtK-LImCxx8P6FfMBxiEl6F_NSzP5KI55vyeSMfXvJwM_MD5a_ZVlumFxvnuzFt1bW1Ng=s0-d)
Now press "Rescan networks" and choose the slave.
![[Image: 48030887.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_tYyjydyckXDygxXByk18uDUFyiClARGpbS58c1xDlV77q5EofoMCYBJvu6QVoeOt5Fxz5FwasaAN5WHoCPAPIG9e2191qJBjXZptlrzzZtgTyre40=s0-d)
Then press the "WEP" tab, you will see the "Start Sniffing and logging" button, press that. A new window will pop-up that's airodump console. Look at the "Data" you will need 10000-20000 Data/IV's to crack the wep key (Sometimes more).
![[Image: 42338878.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_sHNuyUlKjgoUbmJlgsu4AnuDUG93D_4Y-6-oI6nitIBnnvk4Qmqu0VRNXv3U7ofiqPtgcu4mCCWZN34uCcRA_vVmKJqN-ICr4XPc9pLVKkbyJoxoBajA=s0-d)
Now we are gonna speed up the proccess of getting necessary Data/IV's. Press the "WEP Attacks (No-Client)"
![[Image: 20865461.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_uaJrOeEgwCxb20BLCNI5-bIkJu5wYhq_LgQNGb_aZeEONtj2OHiSorm72DeE8awPAKaQElzD0UZ17-rgpsghYKx8BXYfdp5xC2nga5SjCvl_XHm6dW_G8=s0-d)
Then press "Associate with AP using fake auth"
![[Image: 72909853.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_vaOPcTRznTm4-Y4F9RG2noXSPmoUgjZ6RXUHTqwMw425dA3nnuf66B3TmAQkuT8toq52meYLcgObG3EIZex3y6nMgYQF84JvBZpjLqy-kOk0biMKHn=s0-d)
A new shell console will pop-up, wait untill it asks you "Use this packet? Type "Y" and hit enter.
![[Image: 39811637.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_vsJ1hKCjDg3FT9uLID6J8x0o6rh1gsUU-YiRzpAiEWi7rGtZctxz_XoPPK35_tideLunH489PkpXktDsJwkbkPbJT6d5MyA9O6D5c3aJjEjQ4RAEGZ=s0-d)
Now press "Fragmented Attack" again a new shell console will pop-up and it will ask you "Use this packet? Type "Y" and hit enter.
![[Image: 66665680.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_s1YWxynBDgV1Yp6x3hCzQJqvWWlSXBRNioyszpb_Mp_FGthlUckHdEEng6wh7DMRCOJDlikHwwMbS5twK7MqutZl5S47fI6UJQCuqZRy0JBiDpAsBOhMg=s0-d)
Wait 20-30 seconds until you get enough Data/IV's to crack the WEP key.
![[Image: 38943479.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_sPPY5R-7N5StSAUzGpr8JIauCXHREt9Eu1jKAAbQJ_XyU9zsJFnLjoXAdBKIrdI55ZFezUoM0W_av8PeC2amnU5ap_UOpFwmVJngYAVe-WTIBbHWSNJcg=s0-d)
Once you get enough Data/IV's go to "Cracking" tab and press "Aircrack-ng Decrypt WEP Password" New shell console will pop-up, when finished decrypting it will look something like this.
![[Image: 77928950.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_udwB3HUTiJKteV_oQa6xlzEIvUb-TUUIP6uWZEVvMUSNJFetdtmyG9EAdX20UEiNiI8m_IHS7cWx9KRyL3JvUwpy08FFuH__E_6UgCWdCGeS_9Hhd0lxM=s0-d)
For this tutorial you will need backtrack, you can download from here (I am using Backtrack 5 for this tutorial).
Once downloaded you can either burn the .ISO to a cd and boot it, or you can make a frugal install using UNetbootin.
Ok, when you successfully start backtrack go to Applications > Exploitation Tools > Wireless Exploitation Tools > Wlan Exploitation > gerix-wifi-cracker-ng.
Once the program is started go to "Configuration" tab.
Press "Set random MAC address"
Then "Enable/Disable Monitor Mode"
Now press "Rescan networks" and choose the slave.
Then press the "WEP" tab, you will see the "Start Sniffing and logging" button, press that. A new window will pop-up that's airodump console. Look at the "Data" you will need 10000-20000 Data/IV's to crack the wep key (Sometimes more).
Now we are gonna speed up the proccess of getting necessary Data/IV's. Press the "WEP Attacks (No-Client)"
Then press "Associate with AP using fake auth"
A new shell console will pop-up, wait untill it asks you "Use this packet? Type "Y" and hit enter.
Now press "Fragmented Attack" again a new shell console will pop-up and it will ask you "Use this packet? Type "Y" and hit enter.
Wait 20-30 seconds until you get enough Data/IV's to crack the WEP key.
Once you get enough Data/IV's go to "Cracking" tab and press "Aircrack-ng Decrypt WEP Password" New shell console will pop-up, when finished decrypting it will look something like this.
Video Tutorial:
Facebook
0 comments:
Post a Comment