Before even starting to read this make sure you have compatible wireless adapter!
For this tutorial you will need backtrack, you can download from here (I am using Backtrack 5 for this tutorial).
Once downloaded you can either burn the .ISO to a cd and boot it, or you can make a frugal install using UNetbootin.
Ok, when you successfully start backtrack go to Applications > Exploitation Tools > Wireless Exploitation Tools > Wlan Exploitation > gerix-wifi-cracker-ng.
![[Image: 86437852.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_tFXvWiEG4jZRObbhXECHdpJfPeMrr_GBP3K7E8tjmg2sKzSO764-Cyj23CJVCjsP2FKcngDsTgqqE8L5v_ixRdF-5MUwXg23KAcpMQhoT0zpukE1w=s0-d)
Once the program is started go to "Configuration" tab.
![[Image: 79399926.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_skF66HFc2LPNlua_ZHjIgsD-RhnyyLj-Dae13n5_bxdo9pygsnNP-vh2ryYQ2Ebmlad_Lr5ja_6657-30PXlJ8poEJLFZOy3dL_PBncvzM1TA0LzWp8pk=s0-d)
Press "Set random MAC address"
![[Image: 12150512.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_vN0475gLiKzPjxX5Ns1W0DvfL032T-r3Ons24PyMj4YI0THP5PJ_GNevg4QdTLJeWmVOxWHAgIjxj7bhx4XEa4i7Fgy6QFU-c2BWB3j3tCkFnE6K6Q=s0-d)
Then "Enable/Disable Monitor Mode"
![[Image: 21993618.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_skep0yXj0PxMcfhXQth7UaQUDYKVhlKQmGhsNIfbFuGZ5EBN2zq0VxYK1wFa10Lj8XukddTldRoGqE9BQzCQM02T2dL1f032XKO0JbLssvTb4EneSb7MU=s0-d)
Now press "Rescan networks" and choose the slave.
![[Image: 48030887.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_t7ZWWlou7-Z7vQVPAbn_KBlaxsl7l9Eie6DZteHMDT40fGxR8xvalK9-FaYQvRvt3MRtiPl9Yz778fc016qF1YvyXpVRs8WZ_N3wd2K3gO5dzgeu8=s0-d)
Then press the "WEP" tab, you will see the "Start Sniffing and logging" button, press that. A new window will pop-up that's airodump console. Look at the "Data" you will need 10000-20000 Data/IV's to crack the wep key (Sometimes more).
![[Image: 42338878.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_uWYVSrDeYRdmJsDxs4TmuC5kQunUE6_Qg-y58fY-Jmld8SSY2X9haOFEOsYsByYjnY7Kpb37qUVlOvkXplxoVfNIFhmRDa8CTqe4sF5ERGldzXDCvCvA=s0-d)
Now we are gonna speed up the proccess of getting necessary Data/IV's. Press the "WEP Attacks (No-Client)"
![[Image: 20865461.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_sPrf27nYj3F9XTo471F3xVAAgWsq9F0Sz-LcD6MQu_eCuVf6N4DA2ABX_JqH7rUqsQ_6Gvwxc5s60LNg4KjbhtCO06YoDZt5dwMrdHl0KujnHrhvfbBbY=s0-d)
Then press "Associate with AP using fake auth"
![[Image: 72909853.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_ubipfVHYfZHlICBrJwkQR3_OHVaLweFPoc5CzBcxkGoPo9fh_YSHEXXBFbqSUHrnZVNeWyaqUX03SHQVHDkXwr0kWjR1r0ltGdklZ0ze7uYMhHeVdk=s0-d)
A new shell console will pop-up, wait untill it asks you "Use this packet? Type "Y" and hit enter.
![[Image: 39811637.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_sEuWizHyXcLOIdmRYDz6rSO5qw8G6BizaWBrXJ4-lqqqbqkkav5dDI_8ttgqmFCt_GzXAs0fKerlPIgelXkZfGdvcLJOnjb4o5C_VYWbU0CwQYsjUl=s0-d)
Now press "Fragmented Attack" again a new shell console will pop-up and it will ask you "Use this packet? Type "Y" and hit enter.
![[Image: 66665680.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_v3NPgmdiMGRSJrXB01j7i3hucQrLNiONRwmWtUKKpRuXM9v5VJGKbWD9hL9VZmLBwPZRdShkaoOqnIsRVkHX4MxYz2TM-6wxBtYV7IWbT99wfsRq5FFrM=s0-d)
Wait 20-30 seconds until you get enough Data/IV's to crack the WEP key.
![[Image: 38943479.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_uHkQttlgKfNBiPEdLUshEfByu07Hw32Z4kLP3gWE35DTqsqLLKZad2ERXkCXkpEeZGsRmpD_LgN8OmpYtg9kK-yuBajfNg5kf0QGhhnBxmOA6F0Nr0_Ds=s0-d)
Once you get enough Data/IV's go to "Cracking" tab and press "Aircrack-ng Decrypt WEP Password" New shell console will pop-up, when finished decrypting it will look something like this.
![[Image: 77928950.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_ugb-rHE2888VuzlJPR-WcM6V107bkdh46EBt3eMJG1V_zLKLwHI0AnUzOZlI5chso9B9SbhkhFapeSAwbOduM-24Ap23ZdUXq2Ih96JqsGEw-6z2JStN8=s0-d)
For this tutorial you will need backtrack, you can download from here (I am using Backtrack 5 for this tutorial).
Once downloaded you can either burn the .ISO to a cd and boot it, or you can make a frugal install using UNetbootin.
Ok, when you successfully start backtrack go to Applications > Exploitation Tools > Wireless Exploitation Tools > Wlan Exploitation > gerix-wifi-cracker-ng.
Once the program is started go to "Configuration" tab.
Press "Set random MAC address"
Then "Enable/Disable Monitor Mode"
Now press "Rescan networks" and choose the slave.
Then press the "WEP" tab, you will see the "Start Sniffing and logging" button, press that. A new window will pop-up that's airodump console. Look at the "Data" you will need 10000-20000 Data/IV's to crack the wep key (Sometimes more).
Now we are gonna speed up the proccess of getting necessary Data/IV's. Press the "WEP Attacks (No-Client)"
Then press "Associate with AP using fake auth"
A new shell console will pop-up, wait untill it asks you "Use this packet? Type "Y" and hit enter.
Now press "Fragmented Attack" again a new shell console will pop-up and it will ask you "Use this packet? Type "Y" and hit enter.
Wait 20-30 seconds until you get enough Data/IV's to crack the WEP key.
Once you get enough Data/IV's go to "Cracking" tab and press "Aircrack-ng Decrypt WEP Password" New shell console will pop-up, when finished decrypting it will look something like this.
Video Tutorial:
Facebook
0 comments:
Post a Comment