Hack Wifi (WPA2-PSK) from Kali Linux

-



Hack Wifi (WPA2-PSK) from Kali Linux






Hack Wifi (WPA2-PSK) from Kali Linux




Recently i had learn how to crack Wifi (WPA2-PSK) from Kali Linux,thought to share with you guys,this is just manipulation of some commands using kali linux terminal.


> First what is Wifi (WPA2-PSK) & (WEP)

WPA stand for Wi-Fi Protected Access

WEP stand for wired Equivalent Privacy


Step 1: The first step is to verify the router configuration. Normally in a real penetration test we would not have this option, but since this is a home lab I have a little more flexibility.


In this case the lab access point is securing the wireless network Wireless Lab with WPA2-PSK. It using the passphrase Cisco123. You can use any wireless router to setup your wireless lab.

Setup a old router and log into it setting it up as WEP for wireless security to use as a test router. Have one other computer, tablet, or smartphone connected to it wirelessly since the encrypted data between the two will need to be captured.

The basic idea of this attack is to capture as much traffic as possible using airodump-ng. Each data packet has an associated three byte Initialization Vector called IV’s. After the attack is launched the goal is to get as many encrypted data packets or IV’s as possible then use aircrack-ng on the captured file and show the password.

Step 2: The iwconfig command will show any wireless cards in the system. I am using a RealTek wireless card.


Linux ships with the RealTek drivers, making it a Linux plug and play wireless card. The operating system recognizes a wireless interface named wlan0.

Step 3: My next step will be to enable the wireless interface. This is accomplished issuing the ifconfig wlan0 up command.

Step 4: I need to understand what wireless networks my wireless card sees. I issue the iwlist wlan0 scanning command.

This command forces the wireless card to scan and report on all wireless networks in the vicinity.

You can see from this example it found my target network: Wireless Lab. It also found the MAC address of my access point: 0E:18:1A:36:D6:22. This is important to note because I want to limit my attack to this specific access point (to ensure we are not attacking or breaking anyone else’s password).


Secondly, we see the AP is transmitting on channel 36.This is important because it allows us to be specific on what wireless channel we will want our wireless card to monitor and capture traffic from.

Step 5: The next step is to change the wireless card to monitoring mode.This will allow the wireless card to examine all the packets in the air.

We do this by creating a monitor interface using airmon-ng. Issue the airmon-ng command to verify airmon-ng sees your wireless card. From that point create the monitor interface by issuing the command: airmon-ng start wlan0

Next, run the ifconfig command to verify the monitor interface is created. We can see mon0 is created.


Now verify the interface mon0 has been created.

Step 6: Use airodump-ng to capture the WPA2 handshake. The attacker will have to catch someone in the act of authenticating to get a valid capture. Airodump-ng will display a valid handshake when it captures it. It will display the handshake confirmation in the upper right hand corner of the screen.

Note: We will manually connect to the wireless network to force a handshake. In a future post I will show you how to force a reauthorization to make a device automatically disconnect and reconnect without any manual intervention.

We used the following command:
airodump-ng mon0 – -bssid 20:aa:4b:1f:b0:10 (to capture packets from our AP) – –channel 6 (to limit channel hopping) – –write BreakingWPA2 (the name of the file we will save to)

airodump-ng mon0 – -bssid 0E:18:1A:36:D6:22 – –channel 36 – –write BreakingWPA2



(make sure there is no space between “- -“)

To capture the handshake you are dependent on monitoring a legitimate client authenticate to the network. However, it does not mean you have to wait for a client to legitimately authenticate. You can force a client to re-authenticate (which will happen automatically with most clients when you force a deauthorization). When you see the WPA Handshake Command you know you have captured an valid handshake example:


Step 7: We will use aircrack-ng with the dictionary file to crack the password. Your chances of breaking the password are dependent on the password file. The command on is: aircrack-ng “name of cap file you created” -w “name of your dictionary file” The Breaking WPA2-01.cap file was created when we ran the airodump-ng command. The valid WPA2 handshake airodump captured is stored in the BreakingWPA2-01.cap file. Backtrack 5 ships with a basic dictionary.


The dictionary file darkc0de.lst is a popular worldlist that ships with BackTrack5.


We added our password Cisco123 in this file to make the test run a little smoother

Many attackers use large dictionaries that increase their chances of cracking a passwords.


Many dictionaries contain passwords from real users and websites that have been cracked and posted on the Internet. Some sophisticated dictionaries combine multiple languages, permutations of each word, and key words and phrases from social media sites such as Twitter and Facebook. Kali does not come with the darkc0de.lst but you can download it from here



NOTE: Kali does have built-in worldlists in: /usr/share/worldlist In this blog we created a file named “sample.lst” and added the word Cisco123 in it.

Success:
If the password is found in the dictionary file then Aircrack-ng will crack it.

Technical Xender Popular posts

Hacking courses for free download including technical sagar all hacking courses for free

-
Image
     Technical Sagar all Hacking courses for free Quick Hack Hacking Course Free  Technical Sagar Money Making Course For Free Shozab Hacking course for free Technical Sagar Deleted Videos Download .   Technical Sagar Tech Master Course For Free Technical Sagar Tech Master Course 2nd link Master In Ethical Hacking Course of A.M Pounchuri For Free . MEH PYTHON HACKING COURSE FOR FREE Password:- www.eblackwiki.tk         Master In Ethical Hacking In  Android                  Advance Android Hacking Course Hackstar Hacking Course For Free Password:- vabstutorials.com IInd link:-  Hackstar Hacking course free without password Tech Chip all courses free download Password. :->  vabstutorials.com IInd link:-  Techchip paid courses without password II link Zaid Sabhi Hacking course download Learn Python and Ethical Hacking from Scratch FULL free download [Updated] free tricks for Linux . I link Download
Read more

Seo Mafia v1.2 Course By Technical Ripon Free Download

-
Image
Seo Mafia version 1.2 Course By Ripon Free Download Seo Mafia version 1.2 Course By Ripon Free Download  You have seen  many website providing  Seo Mafia course v1.2 by technical Ripon for free With the download button. The download button just redirect you to URL shorter website from where you will be shown lots of fake buttons to download and many fake notification occurs. But by mistake you click one of an button they  just redirect you to another page where they will show you a pop up to download different apps. We are giving you a direct link button to the google drive where you can just download.    Seo Mafia version 1.2 Course By Ripon Free Download 2nd link to download SEOmafia 1.2 version download
Read more

How to create fake email address for login or otp ?

-
Image
How to create fake email address for login or otp ? How to create fake email address for login or OTP ? These fake email inboxes used for login or signup are called disposable email address or disposable email or simply temporary email. These email inboxes automatically get destroyed or you can delete the inbox after use. You can also customise the names of emails as well as time of getting destroyed. Some disposable email address provider give opportunity of spoofing or to send fake email with any address . GuerrillaMail Mailinator #4 MailDrop 10 Minute Mail Temp-Mail ThrowAwayMail MyTrashMail
Read more

Pubg modded apk

-
Image
                   PUBG MODDED APK                Pubg modded apk Pubg modded apk You doesn't need root access to install this but if link doesn't work please use  VPN OR PROXY .
Read more

Free Cracked VPN APPS.

-
Image
Free Cracked VPN APPS Free Cracked VPN APPS The full form of VPN is Virtual Private Network. In simple words, it means a virtual network in which the user remains anonymous and remains untraceable from the website trackers. Using VPN, you can change your ip address to any other ip address . By default, an ip address can be used to determine the location of the user he is browsing from. Hence, the ability to change ip address enables you to change your location to virtually any place in the world. That is why this is called Virtual Private Network. You may be browsing from your home but you can choose any location around the world as your browsing location. It has many important uses due to it’s advantages.
Read more

How to view instagram profile photo ?

-
Image
How to view instagram profile photo? How to View instagram profile photo ? There are several ways to view profile picture of anyone, but it depends on the owner of the profile whether it has make it public or private. I am mentioning tricks of viewing dp of profile in both conditions. You can see Instagram posts without logging and anonymously. But in some tricks you have to wait for some minutes if you want good quality images verses for low quality images with quick loading. Public Profile or Normal Profile Method 1:- This strategy will work with both private and public profiles, yet in this method images will be blur and of lower quality compared to method 2 . Here we will use chrome browser and instagram. Follow the instructions given below. Just copy the profile URL from Instagram profile Open URL in the chrome browser Tap for 2 seconds on the image then dialog box will appear. Just click o
Read more

call of duty mod apk

-
Image
     call of duty mod apk       call of duty mod apk To download call of duty mod apk 2 GB space is needed. Using call of duty mod apk is at your own risk because it has risk of banning  your account . I am not sure about the compatibility of call of duty mod apk on your android device. It is much better than call of duty modded accounts . If any trouble occur while downloading call of duty mod apk please use VPN OR PROXY . call of duty mod apk  call of duty mod OBB file
Read more

PREMIUM SPOTIFY MOD APK

-
Image
SPOTIFY PREMIUM FOR FREE Premium Spotify apk Getting bored in holidays enjoy unlimited songs of International Singers without any advertisement with unlocked premium membership. SPOTIFY FREE DOWNLOAD SPOTIFY OLD VERSION You doesn't need root access in mobile. How to mod apk or make cracked app Please use  VPN  to avoid any network error.
Read more

Technical Xender

-
Image
Technical Xender XENDER is one of the world's leading application for file transfer and sharing. It offers users the convenience to transfer files of different types and sizes between mobile devices, either Android or iOS based, with no need for cables or Wi-Fi or cellular internet connection, and with absolutely no mobile data usage for transfer and the best thing about xender you can earn with Xender For More Information Visit How to earn with Xender . TECHNICAL XENDER 100+ Million Downloads On Play Store The company was established in 2011 with the vision to provide better connectivity to the world through technology innovation and devotion to users. TECHNICAL XENDER Powered by a truly global team we are committed to highest quality standards and user experiences of our applications. With high growth rate in the past few years, we have now more than 700 million activated users globally covering all time zones and more than 30 d
Read more

Hack A Mac Device Remotely

-
Hack A Mac Device Remotely Control a Mac remotely There are dozens of ways of controlling a cross the internet, which you might want to do to schedule a recording, start a download and so on. You could try LogMeIn, or share a desktop using Google Hangouts and Skype; you could try port forwarding the built-in VNC client in OS X, but our favourite - and the easiest - is Back to My managed through iCloud. So long as the remote s on, logged into an account tied to your iCloud login (through System Preferences) and connected to the internet, it should appear under Shared in your Finder sidebar. (If it doesn't, hover over Shared and click Show; if Shared isn't there, look in the Finder's preferences.) Click Share Screen... to control the ver the internet, as if you were sitting in front of it. (It might make more sense to go Full Screen to stop yourself getting confused!) Check out the options in the menus and toolbar. Alternatively, click Co
Read more