Cracking WPA/WPA2 – PSK Encryption

Share if you likedShare on Facebook0Share on Google+10Tweet about this on TwitterShare on LinkedIn75

About a month ago, to my embarrassment, I learned that my Wi-Fi password was so weak that even my 10 year old neighbour could crack it…
No, not really.

  • A little Disclaimer – The contents of this post are solely for ethical and educational purposes. You may not use it for unethical purposes. The Author or the Website is not responsible for any damage to yourself, your network, or the computers in you network, should something go wrong. (Basically guys, be careful where you use this and please don’t do anything stupid.)

We’re going to start with a little introduction to Kali Linux, because that is the OS I prefer, is the easiest for this task and comes with all the tools we need. “Kali” is a Linux distribution and is the successor to the much acclaimed Backtrack, which many of you reading this article will probably know of. Now, there are many ways of installing and using Kali, if anyone needs any help, leave in the comments, and I will probably write another post about installing and its basics in the future.

In this tutorial, I’m going to hack into a Wi-Fi hotspot that I just set up, named – Anonymus.
Now, given that we have Kail Linux, open up a terminal window, type in “ifconfig “. This is going to list all the networking interfaces connected to your device.

Here, we only need (wlan0) which is our Wi-Fi card, so we can disable the others by doing “ifconfig <name of the interface> down”.
(“lo” does no matter)…

Selection_002

Now, we type “airmon-ng start wlan0”

(airmon-ng is just a tool for monitoring air traffic, “start” basically starts the tool, and “wlan0” specifies the interface we are using for monitoring)
It’ll probably show “some processes that could cause trouble”, we’ll simply kill those processes by entering “kill <process ID>”.

Now if we do “ifconfig”, it should show us the newly made monitoring interface “mon0”.

Then, put in, “airodump-ng mon0”.
In the screenshot below, the highlighted bssid is our target (and it is my own), named “Anonymus”, the channel is 13 as we can see under the “CH” column.

For our next step we type in, “airodump-ng –c <channel> -w <name> –bssid <bssid> mon0”.

Selection_007

Let me explain a few things here, “airodump-ng” is a tool for capturing Wi-Fi packets, “<channel>” means the channel your target is running on, “-w” basically writes a file by the name that succeeds it in “<name>”, (I did “handshake” just for the convenience of it) bssid is a string of numbers specific to a hotspot.

Now, open up a new terminal and type in “aireply-ng -0 0 –a <bssid> mon0”, this command send a deauthentication signal (usually called a deauth packet) to all the devices connected to that hotspot. Then after a few seconds we stop it by “Ctrl+C”. Now, as we can see, the other terminal shows that the WPA Handshake was successfully captured.

We can close both windows at this point, and open a new one. Type “ls”; that should list the files in the current directory. We can clearly see that the files from the above operation are present. But we only need the file ending with “-01.cap”.

Then we do, “aircrack-ng –w <full location of the wordlist> <the file name>”.

You may be asking what wordlist? What is that sh*t?
A Wordlist is a file containing thousands of known and possible passwords, which you can download from the internet (“specifying from the internet” – We ain’t dumb, boy! :P). The one I used can be found here. The list contains 982,963,904 words exactly all optimized for WPA/WPA2. Would also just like to point out that this is not my work, I got it from forums.hak5.org. It was a guy who compiled a whole load of useful lists, including his own to come up with 2 lists (one is 11gb and one is 2gb) I will be seeding this torrent indefinitely since it is shareware and awesome!

It will then start searching for matching keys in the word list. Now the time that this will take is solely dependent on the strength of the password. The stronger the password the more time will it take. For very strong passwords, check this out. For tips on creating your own strong password – Top 10 Tips to Create a Strong Password
After completion it looks something like the screenshot below. In it, you can see that it tested 45688 keys and my key was the 45689th. I purposely put futurama because frankly, futurama is awesome! Also it is a very weak password (People reading this, if your password is “futurama”, you’re cool! The Hell? Change it right now!)

Now that we know the password, lets test it…

Annnnd… Voila! it works!

Knowing this you will be…

But beware, don’t use it on a Lannister… (Because a Lannister always pays his debts :P)
For those of you who didn’t understand that reference, #GameOfThrones!


 

Share if you likedShare on Facebook0Share on Google+10Tweet about this on TwitterShare on LinkedIn75

217 thoughts on “Cracking WPA/WPA2 – PSK Encryption

  • April 30, 2016 at 3:27 pm
    Permalink

    What If the cough* target, myself had a password that isn’t just a dictionary crack able thing, such as, 699my64hiwo (my wifi pass is similar to that..) as I have issues finding a brute force list.. ideas?

    Reply
  • April 12, 2016 at 3:02 pm
    Permalink

    heyy…can u tell me how n where to install kali linux and its basic functions….thanks

    Reply
  • April 12, 2016 at 6:40 am
    Permalink

    When i try to install linux on Oraclw vortual box this error comes out. I rell meed help.

    VirtualBox – Error In SupR3HardenedWinReSpawn

    NtCreateFile(\Device\VBoxDrvStub)failed: 000000e SATUS_NO€SUCH_DEVICE(163 retries) (rc=-101)

    Reply
  • April 12, 2016 at 5:52 am
    Permalink

    do we need to connect to wifi first, so we can detect the wlan0 ??
    if cant, how the os can identify wlan0?

    Reply
  • April 11, 2016 at 10:26 pm
    Permalink

    i followed those step but when i open a new terminal and type “aireplay………… it needed a password and when i put it it tell me no replay…… what is the problem

    Reply
  • April 11, 2016 at 6:27 pm
    Permalink

    We just performed this exact attack in my Wireless class and I would like to point out a couple of items.

    If you start out with the command:
    airmon-ng check kill
    This will kill off any PID’s that need to be killed off so you don’t have to do them manually. Do it before you do the start command.
    In our class we had a couple other commands prior to the check kill command but they were not necessary. Also wasn’t necessary to drop the wired connections. I believe this will kill all wireless connections and shuts down the network manager so if you are hooked up via wired and disconnect you may not have an IP address if you hook back up.

    Also on every device I have run it on I have received a new device of wlan0mon so it is important to check your interfaces and be aware of which one it sets up on. If you have more than one wireless adapter installed you may be able to setup additional monitoring interfaces since technically you can’t send and receive at the same time. (I have seen demonstrations with as many as 8 wireless USB dongles hooked up. Would be nice if you want to be “stealth” about your attack. )

    I noticed a more accurate attack too if I used the deauth with the -c command which allows you to attack a specific client mac. We literally just completed a lab where we did the exact same thing on the 7th of April.

    kali DOES come with a default wordlist if you look in the following folder:
    /usr/share/wordlists
    The one you want to use is the one that ends in tgz. However there are other word lists out there that are better such as the one listed here.

    One last note. Once you open the airodump-ng for the specific AP you don’t HAVE to do the aireplay-ng deauth attack. If you monitor the station you will eventually get a handshaking sequence when a computer hooks up. This would be more of a passive way to find the password without tipping off anyone that you are looking for it. Some enterprise or higher end AP devices can detect the deauth attack and disable it. But be aware that passively monitoring for the handshake can literally take days before you capture a handshake but there is no sign that you are looking for it. Using the aireplay attack forces the client to disconnect and reconnect. My experience so far has shown that windows reconnects without issue but the client may also notice a slowdown in their connection and as already mentioned many higher end AP’s will disable this type of attack.

    Rasberry PI and similar devices can run Kali now so it makes sense to use them when doing passive scans that can take days.

    Reply
  • April 11, 2016 at 6:26 pm
    Permalink

    Sir, how can I run these processes in Windows10.

    Reply
  • March 20, 2016 at 12:10 pm
    Permalink

    Is it a kind of bruteforce attack?

    Reply
    • April 12, 2016 at 12:39 pm
      Permalink

      yea, it is the wpa/wpa2 brute force key lol, probably one of the worst brute force attacks ever

      Reply
  • March 10, 2016 at 6:05 pm
    Permalink

    I tried but it’s not found any key 🙁

    Reply
  • December 27, 2015 at 4:48 pm
    Permalink

    Kali Linux in VirtualBox will not detect any wifi networks?
    Is it necessary to use an external usb wireless adapter to detect wifi in a Kali Linux running in VirtualBox.
    My host system is windows 10

    Reply
    • April 12, 2016 at 12:40 pm
      Permalink

      it is not necessary but if you ran kali in Virtual box you will get a lot of errors with network connection

      Reply
  • October 7, 2015 at 12:23 am
    Permalink

    Nothing new, we still need to use a wordlist. It’s always the same method with aircrack-ng.

    Reply
  • October 5, 2015 at 6:59 am
    Permalink

    good one but is it work in red hat

    Reply
  • October 4, 2015 at 11:25 am
    Permalink

    How to hack Wifi hotspot via SmartPhone?

    Reply
  • October 4, 2015 at 9:51 am
    Permalink

    Eh why Screen Shoot in up the Key with Indonesian Language?

    Reply
  • October 4, 2015 at 8:45 am
    Permalink

    How can I install Kali Linux? Or is there any way to make Kali Linux USB bootable? I am running Windows 10 on laptop.

    Reply
  • October 3, 2015 at 7:10 pm
    Permalink

    Thaks for this article, pls give me the path to place the word list after downloading it, and where to place it in the directory while using “aircrack-ng …. .. … ..” command.
    Thanks in advance.

    Reply
  • October 3, 2015 at 6:19 pm
    Permalink

    Hey author
    There is this problem I have been trying to solve about Kali. When I type ifconfig or airmon-ng command it does not displays wlan0. I tried googling about the problem and got to know that my systems WiFi card cannot be used over vmware and that I have to use external USB WiFi card. So I got one and installed its drivers some compact wireless. But it didn’t worked.i tired kali’s live usb and the problem persisted. It really started getting intimidating and left it over.
    I want you to help me over.
    Thanks.

    Reply
    • April 12, 2016 at 12:43 pm
      Permalink

      it depends how you run your kali , if you run it in a virtual box then you will have connection problems, also if your wifi card is shit you need to buy wifi adapter

      Reply
  • October 3, 2015 at 6:16 pm
    Permalink

    Hello Geeks,

    I am new to Linux and just learning.

    I have installed kali linux in vmware on Windows7.

    Now the problem,

    I have a wifi dongle.

    I am able to connect internet in kali using the wifi dongle.

    I using the airmon-ng start wlan0 and it was success.

    when i give airodump-ng mon0 —–> I am not getting anything in BSSID,PWR,Beacons,..etc… All are displayed empty.

    Btw, I downloaded kali linux from the site yesterday. So, its uptodate.

    I am not sure why it is not displaying any access points.
    Could you guys help me out.

    Thanks much !

    Reply
  • October 3, 2015 at 2:45 pm
    Permalink

    what does it means when the airodump-ng command in terminal shows a fluctuating channel no like “fixed channel *var#*”

    Reply
  • September 2, 2015 at 2:05 pm
    Permalink

    How can i install kali linux and what tools are already installed in kali linux.

    Reply
    • October 3, 2015 at 2:23 pm
      Permalink

      you don’t install kalil inux,Better to boot from live cd

      Reply
  • July 15, 2015 at 11:26 am
    Permalink

    any leads on cracking wlan/wlan2 on windows 7 ? please advice

    Reply
    • April 12, 2016 at 12:44 pm
      Permalink

      yea their should be a lot of program that brute force the wpa/wpa2 connection password

      Reply
  • May 29, 2015 at 12:51 pm
    Permalink

    Good, i am testing now my own network, i have a strong password and it`s searching for about 16 hours and still couldn`t crack it.. I want to see how long it will take to crack my wifi password. Thx for the tutorial.

    Reply
    • August 24, 2015 at 1:06 pm
      Permalink

      Thanks for your comments

      Reply
    • October 4, 2015 at 4:59 am
      Permalink

      Its just like brute force and can only be used for hacking very weak password…. Forget it…

      Reply
  • April 19, 2015 at 7:53 am
    Permalink

    thank you very much such…..
    i m waiting your upcoming post to learn kali linux for hacking purpose.

    Reply
    • August 3, 2015 at 11:05 am
      Permalink

      Offensive Security will teach you more than you need to know

      Reply
  • April 8, 2015 at 7:04 pm
    Permalink

    Just had a QQ, that if we try to perform this try on a VM then, will we be able to get the WLAN0 network, If yes Please let me know the settings Bridge mode and Adapter settings of the VM that need to be implemented in order to try this??

    Reply
    • August 10, 2015 at 6:34 am
      Permalink

      You need to get the Linux and windows? Drivers installed on both the vm and your visor. This requires an alfa radio usb attached to the vm.

      Reply
  • April 8, 2015 at 12:13 pm
    Permalink

    hi IAmDelirious i am win user and i have installed debian using vmware. When i use ifconfig command three interfaces namely eth0, eth1, lo are there there is no interface named wlan0. And when i use iw dev command to list wifi hotspots available around me it says ‘nl80211 not found.’ plzz help.

    Reply
    • June 9, 2015 at 12:10 pm
      Permalink

      How to go ifconfig ?? In Windows 8.1 Pls tel

      Reply
      • August 20, 2015 at 8:38 am
        Permalink

        in win 8 there is ipconfig and not ifconfig to get IP Address above tutorial is for KALI Linux and not for win 8.1

        Reply
  • April 8, 2015 at 12:12 pm
    Permalink

    hi IAmDelirious i am win user and i have installed debian using vmware. When i use ifconfig command three interfaces namely eth0, eth1, lo are there there is no interface named wlan0. And when i use iw dev command to list wifi hotspots available around me it says ‘nl80211 not found.’ plzz help. thankyou.

    Reply
  • March 29, 2015 at 9:56 am
    Permalink

    Exactly where can i get the Kali OS??
    and Can u put the steps installing the OS?

    Reply
    • April 8, 2015 at 11:25 am
      Permalink

      If you don’t know how or where to get hold of the Kali Linux distribution, or how to install it, you should start learning other stuff than cracking / hacking first. Like basic use of internet and computers. IMHO

      Reply
      • October 3, 2015 at 4:25 pm
        Permalink

        Typical linux user. Almos all linux guys would rather waste your time to trash talk to someone rather than say something worth reading. Tou my friend need the linuxasshole badge.

        Reply
    • April 25, 2015 at 10:02 am
      Permalink

      you can get the kali os @ kali.com and all necessary info could be found @ the same site.. I hope this info is helpful.

      Reply
  • March 27, 2015 at 6:54 pm
    Permalink

    my pc cnt find any hotspot, i think my wifi card is not applicable.

    Reply
  • March 27, 2015 at 6:59 am
    Permalink

    aku sayang nirvana banget = i love nirvana so much

    Reply
  • March 27, 2015 at 6:07 am
    Permalink

    please give post regarding installing and configuring and basics of KALI Linux sir –I am a windows administrator and want to learn KALI soon help me in this regards thanks

    Reply
  • March 27, 2015 at 3:10 am
    Permalink

    Wil it work without connecting any wifi devices or else the lan cables with that wifi modem….??

    Reply
  • March 26, 2015 at 6:19 pm
    Permalink

    how i install this kali linux please help me!

    Reply
  • March 26, 2015 at 10:37 am
    Permalink

    all things goes well but i am waited for 3hr no matchs are found
    so can you please tell me what max time it take to complete a password search /crack ?

    Reply
  • March 22, 2015 at 8:35 pm
    Permalink

    i can not get the CH
    i waited 21 minutes
    please help me anybody please

    Reply
    • June 15, 2015 at 3:38 am
      Permalink

      Even I didn’t get the CH… 🙁

      Reply
  • March 22, 2015 at 6:28 pm
    Permalink

    Thanks for the tutorial

    But i have one problem
    All is going well untill i type aireply -ng command after i type the cammand for deautentication i.e airreply……… It saya “bash: aireply-ng: command not found”

    Reply
    • March 25, 2015 at 11:06 pm
      Permalink

      I have a problem in this command…

      “aireply-ng -0 0 –a mon0”

      17:02:42 Waiting for beacon frame (BSSID: 00:1D:D4:3E:C0:80) on channel -1
      17:02:42 Couldn’t determine current channel for mon0, you should either force the operation with –ignore-negative-one or apply a kernel patch
      Please specify an ESSID (-e).

      Reply
    • April 8, 2015 at 11:27 am
      Permalink

      u need to (re)install the aircrack-ng package.

      Reply
    • April 18, 2015 at 2:42 pm
      Permalink

      Kali has some of the aircrack-ng executables in a separate directory from aircrack-ng itself. I believe that I found airodump-ng in /usr/sbin the other day if that helps. You might try ‘find /usr -name aireply’ to see whether it is installed on your machine.

      Reply
    • April 25, 2015 at 10:05 am
      Permalink

      the command is aireplay-ng not aireply-ng.

      Reply
  • March 17, 2015 at 9:18 am
    Permalink

    why do I get input/output error when I type aireply-ng command? Please help

    Reply
  • March 16, 2015 at 6:16 pm
    Permalink

    Hi

    Thanks for the tutorial. But when I kill all the process. ifconfig doesn’t show mon0.

    Please help.

    [email protected]:~# airmon-ng start wlan0

    Found 4 processes that could cause trouble.
    If airodump-ng, aireplay-ng or airtun-ng stops working after
    a short period of time, you may want to kill (some of) them!
    -e
    PID Name
    3032 NetworkManager
    4430 wpa_supplicant
    4446 dhclient
    4504 dhclient
    Process with PID 4446 (dhclient) is running on interface wlan0
    Process with PID 4504 (dhclient) is running on interface wlan0

    Interface Chipset Driver

    wlan0 Unknown r8188eu (monitor mode enabled)

    [email protected]:~# kill 3032
    [email protected]:~# kill 4430
    [email protected]:~# kill 4436
    bash: kill: (4436) – No such process
    [email protected]:~# kill 4446
    bash: kill: (4446) – No such process
    [email protected]:~# kill 4504
    bash: kill: (4504) – No such process
    [email protected]:~# ifconfig
    lo Link encap:Local Loopback
    inet addr:127.0.0.1 Mask:255.0.0.0
    inet6 addr: ::1/128 Scope:Host
    UP LOOPBACK RUNNING MTU:65536 Metric:1
    RX packets:12 errors:0 dropped:0 overruns:0 frame:0
    TX packets:12 errors:0 dropped:0 overruns:0 carrier:0
    collisions:0 txqueuelen:0
    RX bytes:720 (720.0 B) TX bytes:720 (720.0 B)

    [email protected]:~#

    Reply
  • March 16, 2015 at 10:17 am
    Permalink

    DUDE . ONE PROBLEM. THE WORDLIST DOES NOT HAVE THE PASSWORD MY ROUTER HAS.
    ANY WAY TO HACK THIS SUPER ULTIMATELY CUSTOMED PASSWORD?
    PLS.

    Reply
    • April 8, 2015 at 8:35 pm
      Permalink

      Bruteforce. Run john the ripper, and let it generate random words, based on the WPA2 passphrase policy, and pipe it into e.g. aircrack or pyrit or something like that.

      Reply
  • March 14, 2015 at 6:18 pm
    Permalink

    How Many time In Wifi Password Hacking.

    Reply
  • March 14, 2015 at 1:56 pm
    Permalink

    The questions and comments are giving me a headache!

    Reply
    • March 14, 2015 at 4:18 pm
      Permalink

      hehe yeah this topic is rather popular

      Reply
    • April 8, 2015 at 11:29 am
      Permalink

      Me too. I don’t get why people wanna start cracking WPA or learn general hacking, when they don’t know computer basics like installing OS, or internet basics like search. If you don’t know where to get, or how to install Kali Linux, you are already way out of your league when u run airodump-ng the first time.

      Reply
  • March 11, 2015 at 8:14 pm
    Permalink

    what are the difference between backtrack 5 and Kali Linux???
    can this tutorial works on backtrack 5..???

    Reply
    • April 8, 2015 at 11:32 am
      Permalink

      They are different linux distributions, but both released and maintained by Offensive Security.
      Backtrack is based on Ubuntu, while Kali is a newer release based upon Debian linux.
      This tutorial is not an OS tutorial, but an application tutorial. It will work on most linux-distributions, as long as you have the aircrack-ng package installed, and a compatible wifi-card. So the answer is yes, this tutorial can be used on backtrack 5, since aircrack is installed by default in both Kali and backtrack.

      Reply
  • March 11, 2015 at 1:53 pm
    Permalink

    Hey man !
    Thanks for your awesome tutorial but I’ve a problem in the handshaking !

    I monitor using the airodump-ng -c –bssid …
    and i use aireplay-ng tool to disconnect the nodes from the Access Point !

    but after several second of this disconnection I stop the command using Ctrl + C as you said and when the nodes reconnect to the AP again , No Handshaking happens

    I mean i don’t see the “WPA handshake : …… ” message !

    P.S : The aireplay-ng tool doesn’t found my mon0, it says it can’t find mon0 on channel -1, so i use –ignore-negative-one in the command and it works fine ! I don’t think this cause the handshaking problem !

    Thanks

    Reply
  • March 11, 2015 at 6:50 am
    Permalink

    Please tell me the method of installing kali linux

    Reply
  • March 11, 2015 at 2:10 am
    Permalink

    what are the difference between backtrack 5 and kali linux??

    Reply
    • April 8, 2015 at 11:33 am
      Permalink

      They are different linux distributions, but both released and maintained by Offensive Security.
      Backtrack is based on Ubuntu, while Kali is a newer release based upon Debian linux.

      Reply
  • March 10, 2015 at 3:02 pm
    Permalink

    hello sir can u please tell me how i directly used the linux by the pen drive is it possible or not

    if
    then please give some tuto… for that

    Reply
  • March 10, 2015 at 2:13 pm
    Permalink

    I am using it on windows 8 virtualbox but I am not getting Wlan0

    Reply
    • March 27, 2015 at 10:07 am
      Permalink

      Your inbuilt WiFi wont work in virtual box. You will have to buy USB WiFi adapter to get it working on virtual box

      Reply
  • March 10, 2015 at 2:10 pm
    Permalink

    i am not getting wlan0 in terminal I am only getting eth0 and lo please help

    Reply
  • March 6, 2015 at 11:29 am
    Permalink

    how to use random mac address , and when to change . before monitor mode ?

    Reply
  • March 5, 2015 at 10:22 am
    Permalink

    Sir plz share a post to do it with the help of Windows 7 OS Coz I don’t know much about Kali..

    Reply
  • March 2, 2015 at 11:37 am
    Permalink

    Will it test a passphrase of any combination of letter or and numbers?

    Reply
    • March 3, 2015 at 5:56 am
      Permalink

      no just the ones in the wordlist…

      Reply
    • March 10, 2015 at 11:41 am
      Permalink

      no it will need a good wordlist.txt the best attack i would recomend would be reaver

      Reply
  • March 2, 2015 at 10:08 am
    Permalink

    Hello,

    thanks for a very good tutorial. I tried to visit the link to download the “wordlist” but I cannot find it. Too many information. Can you send me the specific link where to download the “wordslist” of passwords.

    Thanks

    Reply
  • March 2, 2015 at 7:46 am
    Permalink

    How to run backtrack Kali Linux tools in window

    Reply
    • March 3, 2015 at 5:54 am
      Permalink

      wut? i think you mean windows… u cant.

      Reply
    • March 5, 2015 at 11:40 am
      Permalink

      You can use it with some virtualbox software – but when using for wifi operations you will also need external USB wifi card with compatible chipset.

      Reply
  • February 27, 2015 at 5:01 pm
    Permalink

    Its is compulsory to install Kali Linux,,,,
    We can use bootable Kali Linux Cd or not????????

    Reply
  • February 27, 2015 at 1:28 am
    Permalink

    Dear AUTHOR IamDelirious

    Thank you for creating this great tutorial. Well thought out and has helped me alot in using Kali Linux itself and becoming familiar with the interface. Also, your other tutorial on how to install Kali Linux onto a virtual drive was of great help so thanks once again.

    I have a question regarding the wlan0 device in Kali Linux. I’m currently using a wireless networking card TP-LINK TL-WD4800 for my desktop. I suspect it could be the reason why I can’t get wlan0 device the terminal window.

    Could you please tell me what networking card(s) must I get that are supported by Kali Linux?

    Thanks once again for the great tutorials.

    Reply
    • February 27, 2015 at 11:20 am
      Permalink

      Thanks, glad it helped you!
      For, compatibility with your wireless card, check here.

      Reply
  • February 24, 2015 at 6:04 pm
    Permalink

    tell me some answers ..
    1. Does it necessary to install kali linux on hard disk , or it can be done through live usb or CD.
    because I am trying with live usb , and when i tried to copy the file on desktop it is not copied. may be it does not have space on usb drive,

    2. after extracting the file , Super-WPA it is 11.9 gb smthing is your file is also of same size.
    3. or there is any other word list.

    please email me if you have little time.. or add me on whatsapp +919413337610

    plzz plzz plzzzz……………. just want some help bro..

    thanks in advance..

    Reply
    • February 25, 2015 at 6:43 am
      Permalink

      it can be done through live cd, usb. it didnt work without copying the wordlist? cuz i keep my wordlists in a seperate usb drive, and plug in when needed, it works perfectly.
      yes, super-WPA is of 11.9 gigs,
      yes, there are other wordlists available, just google. this one my fav, so i use it and linked it here.

      Reply
  • February 24, 2015 at 3:04 pm
    Permalink

    How would I bypass a portal? I hate the restrictions.

    Reply
      • February 24, 2015 at 7:36 pm
        Permalink

        As in when you sign into a network and it has a portal. Usually if you arent I.T. or some CEO they give you a very limited account, like at work I cant access youtube and thats where I get lots of my tutorials.

        Reply
        • February 25, 2015 at 6:47 am
          Permalink

          use a VPN dude, like Hotspot Shield . Click on the name to download PC version. For phones, just search for Hotspot Shield VPN on your respective app stores.

          Reply
    • April 8, 2015 at 8:51 pm
      Permalink

      By Portal, do you mean captive portals found on open wifi’s with login?
      In that case, u might wanna look up tcp/ip over DNS. (it’s slow, but it works as a emergency solution if u need to get online)
      http://blog.rootshell.be/2007/03/22/dns2tcp-how-to-bypass-firewalls-or-captive-portals/

      You could also do session hijacking, if other people are logged in.
      http://karn-bttools.blogspot.no/2011/09/bypass-captive-portal-authentication.html

      When it comes to VPN, I’m not sure. I think it depends on the configuration of the portal. I see some people mention TOR as an option, but I’ve never tried that.

      Reply
  • February 24, 2015 at 2:04 pm
    Permalink

    hi..
    this is very good tutorial.. but unfortunately i am stuck in the last step.
    when i mention the path of the word list,

    [email protected]:-# aircrack-ng -w /media/my passport/Super-WPA handshake-01.cap
    fopen(directory) failed: No such file or directory
    fopen(directory) failed: No such file or directory
    Read 16744 packets.

    # BSSID ESSID Encryption
    1 00: 1E:A6:32:B1:40 Anonymous wpa (1 handshake)
    choosing first network as target.
    opeaning handshake-01.cap
    please specify a dictionary (option -w).
    puiting aircrack-ng…

    please help me.. or can you give me your mobile no. so that i can ask you..

    Reply
    • February 24, 2015 at 3:13 pm
      Permalink

      you must have typed the directory wrong or wrong filename… recheck, if that dosen’t work try moving the wordlist to your destop..

      Reply
    • March 10, 2015 at 12:36 pm
      Permalink

      There is a space in your folder name, you need to escape it with a backslash, like this: aircrack-ng -w /media/my passport/Super-WPA handshake-01.cap

      Reply
    • April 9, 2015 at 1:57 pm
      Permalink

      U are using the aircrack-ng command wrong.
      If we asume that both wordlistfile and capfile is in homefolder, It should be something like this

      if you already are in the folder where the files are:
      aircrack-ng -w nameofwordlistfile nameofcapfile.cap

      If in any other folder:
      aircrack-ng -w /home/(yourname)/nameofwordlistfile /home/(yourname)/nameofcapfile.cap

      You can also specify the BSSID if you have captured several handshakes in one cap.

      Then it would be something like:
      aircrack-ng -w nameofwordlistfile -b ##:##:##:##:##:## nameofcapfile.cap

      Reply
  • February 24, 2015 at 5:46 am
    Permalink

    Please upload a Feed on install of Kali.

    Reply
  • February 24, 2015 at 4:43 am
    Permalink

    Can i user this method on Windows as well?

    Reply
  • February 23, 2015 at 12:05 pm
    Permalink

    [email protected]:~# aireply-ng -0 0 -a mon0
    bash: airoply-ng: command not found

    Reply
    • February 23, 2015 at 5:27 pm
      Permalink

      haha its aireplay-ng not aireply-ng nor is it airoply-ng #typo bro!

      Reply
      • March 5, 2015 at 11:46 am
        Permalink

        you rather check your whole article for typos 🙂

        Reply
  • February 23, 2015 at 11:25 am
    Permalink

    Hello author,

    I have lenovo G530 series. Is it nessesery to buy TP-LINK TL-WN721N and TP-LINK TL-WN722N for my laptop.next question.can I insatall kali linux on my widows 7?so.which version can I download.plz.help me.i m junior one

    Reply
    • February 23, 2015 at 5:25 pm
      Permalink

      yes you have to buy that. how can you install kali on windows dude? kali is an operating system just like windows… post on how to comming up

      Reply
  • February 23, 2015 at 6:03 am
    Permalink

    Hello, Thanx for information. I have one doubt. when i ll type ifconfig commands and after typing if i ll hit enter In terminal ifonfig won’t show any interface and wlan0. i tried in kali , in brck track and in even in backbox also.

    please help me ,How i can find wlan0?

    Reply
    • February 23, 2015 at 10:27 am
      Permalink

      you must have a external wifi card (or adapter) like TP – LINK TL-WN721N or TP – LINK TL-WN722N

      Reply
  • February 23, 2015 at 3:43 am
    Permalink

    First off, great article! Also, I love the Game of Thrones reference. Quick question; I have a Macbook Pro running Kali through VMBox, do you know if this will work? When I run ifconfig, wlan0 doesn’t come up. I just have eth0 and lo. Also, if it won’t work, I have a small USB Netgear WiFi adapter, will this work? Thank you so much!

    Reply
  • February 22, 2015 at 4:12 pm
    Permalink

    Brother I saw in the comments that we need some specific kind of hardware for this trick to work..
    I am using a HP laptop with regular WLAN card and I am in India.
    Will this trick work on my laptop.
    Please reply as I don’t wanna waste my so much time on downloading and trying and dump everything at the end

    Reply
    • February 23, 2015 at 1:33 am
      Permalink

      no probably wont, buy any of these, – TP-LINK TL-WN721N or TP-LINK TL-WN722N

      Reply
      • March 10, 2015 at 3:13 pm
        Permalink

        these cards are for windows. do they work with kali ?

        Reply
  • February 22, 2015 at 3:45 pm
    Permalink

    What is this kali?How to install this to do that??????

    Reply
    • February 24, 2015 at 2:35 am
      Permalink

      Kali is one of the Distributions available in Linux. Just like Ubuntu or Fedora. However, this is HACKER SPECIAL. It is created from the ground up for the HACKERS, by the Hackers.

      Reply
      • February 24, 2015 at 6:24 am
        Permalink

        “this is HACKER SPECIAL. It is created from the ground up for the HACKERS, by the Hackers.” < sounds like democracy

        Reply
  • February 22, 2015 at 11:53 am
    Permalink

    can i install kali on vmware..?

    Reply
    • February 23, 2015 at 12:27 am
      Permalink

      Yes you can. There are some good tutorials on YouTube.

      Reply
  • February 22, 2015 at 11:03 am
    Permalink

    Thanks for your tutorial , but what about passwords which is not in dictionary ,may be contains upper cases or numbers ? what if it is not in the dictionary file ? could you please post some post regarding that ? and as some of user commented that i am getting WiFi hotspot open . but when i connected to it ,it asks for username and password .pls post for cracking that too

    Reply
    • February 22, 2015 at 2:05 pm
      Permalink

      Will post something…

      Reply
      • February 24, 2015 at 3:47 pm
        Permalink

        Thanks for your reply awaiting your post soon regarding that open hotspot and asks for username & password to get internet connection .

        Reply
        • February 24, 2015 at 4:07 pm
          Permalink

          that one will take some time.. our readers are getting annoyed by all Linux stuff, so some windows now… 🙂

          Reply
    • February 22, 2015 at 2:39 pm
      Permalink

      i can show ya how thats done

      Reply
      • February 22, 2015 at 3:23 pm
        Permalink

        please do…. @happyhacker Thanks for helping out!

        Reply
  • February 22, 2015 at 9:40 am
    Permalink

    Thanks for your wonderful tutorial ,

    but it uses discretionary attack , how can crack passwords which is not in dictionary ?i tried to crack my WiFi, in which password contains full of numbers, can you post anything regarding that ?

    Reply
    • February 27, 2015 at 9:51 pm
      Permalink

      If you’re having trouble, and have a set of heavy duty AMD gpu’s try hashcat GUI, it allows you to mix wordlists and run them far faster than aircrack. Plus you can use a variety of custom splicing rules to outline your attack

      Reply
  • February 22, 2015 at 6:55 am
    Permalink

    Bro, can install 2 operating system on one pc if yes please I need a tutorial on that

    Reply
    • February 22, 2015 at 2:41 pm
      Permalink

      thats easy setup 2 partitions on your hdd make sure the partition has the format for the desired os… and install to individual partitions

      Reply
  • February 22, 2015 at 5:47 am
    Permalink

    hy i need lunxi kali

    Reply
  • February 22, 2015 at 5:07 am
    Permalink

    Most important is ur wireless support for do this or not…
    Second, ur dictionary must complete..
    I’ll try to install Linux via virtual machine..
    So I can run 2 os together..
    And this is work..
    Nice share bro..
    #thumbsup #badEnglish

    Reply
    • February 22, 2015 at 10:10 am
      Permalink

      I love how you’re criticizing him, but you’re English is quite terrible.

      Reply
    • February 22, 2015 at 12:19 pm
      Permalink

      HY Can any one tell me that which adopter is supported with backtrack in tp link series

      Reply
  • February 22, 2015 at 3:46 am
    Permalink

    I’m using kali linux in vm workstation(v11).
    In terminal when I type ifonfig it won’t show any interface and wlan0.
    I tried a lot to find the solution, but I haven’t got.
    Plz give me the solution.

    Reply
    • February 22, 2015 at 3:49 am
      Permalink

      wait for today’s article, your doubts will be cleared

      Reply
  • February 21, 2015 at 8:42 pm
    Permalink

    how can i hack wifi by using windows 8

    Reply
  • February 21, 2015 at 8:31 pm
    Permalink

    how to get external wifi card to read wifi networks….please.i like ur artile….

    Reply
    • February 22, 2015 at 3:48 am
      Permalink

      wait for today’s article, your doubts will be cleared

      Reply
  • February 21, 2015 at 8:27 pm
    Permalink

    in vmare player its not showing wlan0.how to get it…please…..answer???

    Reply
  • February 21, 2015 at 7:03 pm
    Permalink

    bro…..can u please help me how to hack open access point wifi hotspot with a login page please bro…….!
    i daily 24/7 get a wifi hotspot with BSSID:ATAIGM3 and if i try to connect to it connect but if i try to open my browser and try to search anything then i will get a login page from blueweb asking to authenticate for username and passphrase so please help me bro……please!

    Reply
    • February 22, 2015 at 3:47 am
      Permalink

      its very similar to this, will write a post on that…

      Reply
  • February 21, 2015 at 4:17 pm
    Permalink

    Holy shit, the noobs around here are overwhelming. This has been around forever, what about a tutorial on cracking WPA2 with RADIUS Auth.

    Reply
    • February 21, 2015 at 5:45 pm
      Permalink

      dude, just because you know this doesn’t mean you can call others noobs…
      so you want to crack enterprise WPA, maybe will write, if more people ask for that…

      Reply
  • February 21, 2015 at 3:54 pm
    Permalink

    Hi …..I tried dis tutorial……..but its not capturing packets(frames)……even I started aireplay-ng……..it reads 30000 packets…..but its not capturing…..even it s wps unlocked router

    Reply
    • February 21, 2015 at 5:31 pm
      Permalink

      send me screenshots, I will try my best to help.

      Reply
  • February 21, 2015 at 3:23 pm
    Permalink

    Can this trick be done with using terminal emulator in android ???

    Reply
    • February 21, 2015 at 5:30 pm
      Permalink

      umm… no. no hardware for packet brodcasting, and the terminal is probably windows cmd based.(probably)

      Reply
    • February 22, 2015 at 2:52 pm
      Permalink

      chck out rfa, and airmon for android … you need root and a capable wireless device… you can look up a compatibility list…. ip link to spoof mac

      Reply
  • February 21, 2015 at 3:20 pm
    Permalink

    Where and how to install kali…???

    Reply
  • February 21, 2015 at 3:09 pm
    Permalink

    How To install kali linux in pc
    any one say me how to install kali linux in PC

    Reply
    • February 21, 2015 at 5:20 pm
      Permalink

      I’ll be posting a tutorial for that tomorrow.

      Reply
  • February 21, 2015 at 2:38 pm
    Permalink

    Where I should get Kali Linux.. …..Pls help me

    Reply
    • February 21, 2015 at 2:46 pm
      Permalink

      This article is awesome

      Reply
      • February 21, 2015 at 5:19 pm
        Permalink

        Thanks very much.

        Reply
    • February 21, 2015 at 3:16 pm
      Permalink

      dude if u vll get kalil linux .. u cannot hacker wifi u need to learn airodump and airmong-ng and u need external wifi card of alfa to find wifi nwtwrk

      Reply
      • February 21, 2015 at 5:26 pm
        Permalink

        and your point is…?
        everything needed in airmon and airodump to hack wpa/wpa2, i’ve already explained in the article.
        as Alfa cards are not available in India, you can use TP-LINK TL-WN722N, which is pretty cheap too…

        Reply
        • February 22, 2015 at 2:54 pm
          Permalink

          you forgot macchanger, but gess thats not needed if its your own network

          Reply
  • February 21, 2015 at 2:21 pm
    Permalink

    Hey that’s a nice article u have wrote keep doing that

    Reply
    • February 21, 2015 at 5:18 pm
      Permalink

      hi, thanks buddy! hope it helped you

      Reply
  • February 21, 2015 at 2:11 pm
    Permalink

    Hi! im trying to hack a free (no PSK) access point, which can connect with just one user (other MACs are not allowed by the router). I change the MAC adress putting down the wlan1 interface and using macchanger. but after changing my Wi-Fi adapter’s MAC to the client’s MAC i cant connect anyway… the signal strenght of the point is about -60-75 dBm. is it normal? what can i do for connecting to this point?

    Reply
    • February 21, 2015 at 5:17 pm
      Permalink

      i don’t see how that didn’t work, after you use macchanger, check if your mac address is changed.
      if its an open access point, there may also be a login page.

      Reply
  • February 21, 2015 at 2:02 pm
    Permalink

    Sir tutorial how to install kali linux and the requirement for this, im only teenager who want to learn all tips and tricks in hacking. from philipines

    Reply
    • February 21, 2015 at 5:06 pm
      Permalink

      that tutorial will be coming tomorrow for sure… look out for it

      Reply
  • February 21, 2015 at 1:55 pm
    Permalink

    how to update kali linux?….without installing kali on my computer.

    Reply
    • February 21, 2015 at 5:05 pm
      Permalink

      is this a troll? how can you update something that isnt even installed?
      just download the latest version from Offensive Security’s website

      Reply
  • February 21, 2015 at 1:34 pm
    Permalink

    Plzz let me know for
    windows

    Reply
  • February 21, 2015 at 1:34 pm
    Permalink

    y cannt u teach with windows i know hacking with kali but i am a noob in field of windows hacking

    Reply
    • February 21, 2015 at 5:03 pm
      Permalink

      if you know hacking in kali, the you also will know the tools or their equivalents aren’t available in windows…

      Reply
  • February 21, 2015 at 1:33 pm
    Permalink

    hey tell me how to hack wifi through windows

    Reply
  • February 21, 2015 at 12:53 pm
    Permalink

    its really a nice tutorial….i need wordlist…please can u help me…

    Reply
  • February 21, 2015 at 12:48 pm
    Permalink

    Oldest news ever…

    Reply
    • February 21, 2015 at 4:53 pm
      Permalink

      if you didnt notice, its under the “How to” section. Its no news!

      Reply
  • February 21, 2015 at 12:33 pm
    Permalink

    I tried this tutorial, and it worked like a charm. Thank you for enlightening us. But if you don’t mind, could you please guide us by similar techniques(cracking rar files and WPA2 keys etc etc) on a Windows OS? I tried in a linux installed in vmware, the tutorial showed many errors, but somehow worked perfectly in a clean installed linux OS. Just like me, there are many users who prefer Windows, mainly because of its capability to play games like NFS, Sleeping Dogs etc etc. Also i use Windows for its user friendly interface. These are some reasons for me using Windows.

    Reply
    • February 21, 2015 at 4:49 pm
      Permalink

      dude, even i know that windows is more user friendly than linux, but the tools required aren’t simply available on windows, and then, once you start using linux, you’ll see that its better to use overall than windows. my nest post is about installing and the basics of using linux… so look out for that…

      Reply
  • February 21, 2015 at 12:30 pm
    Permalink

    how to crack wi fi hot spot in windows 7 operating system

    Reply
    • April 19, 2015 at 7:53 am
      Permalink

      thank you very much such…..
      i m waiting your upcoming post to learn kali linux for hacking purpose.

      Reply
  • February 21, 2015 at 12:21 pm
    Permalink

    bro if dictoinary does not contain the specific word then how to crack handshake with other method

    Reply
    • February 21, 2015 at 4:45 pm
      Permalink

      if the dict does not contain the passwords, you can try the many other ways to crack passwords, which i will write posts on in the future

      Reply
  • February 21, 2015 at 12:05 pm
    Permalink

    How to use fern wifi cracker ?

    Reply
    • March 5, 2015 at 6:51 pm
      Permalink

      Fern is just a gui that does what this tutorial says to do. But doing it thru terminal gives higher rate of success for me. It also keeps one “in the loop” while the the gui hides everything, and with the amount of time it can take the gui can leave you wondering if its still trying.

      Reply
  • February 21, 2015 at 11:58 am
    Permalink

    can u send me the link of word list ..bcoz ur link is nt working…and ur tutorial is just so awesome to understand

    Reply
  • February 21, 2015 at 11:46 am
    Permalink

    Hey can you tell me how much time it require to hack. in backtrack 5 it requires 5-6 hours

    Reply
    • February 21, 2015 at 4:36 pm
      Permalink

      There cannot be a fixed time. Even in Backtrack. I already mentioned in the post, the stronger the password the more time will it take.

      Reply
  • February 21, 2015 at 8:06 am
    Permalink

    Awesome job dude! <3

    Reply
  • February 21, 2015 at 4:23 am
    Permalink

    Seriously bro,
    This is the best ethical hacking article I have seen ….its just more practical one and is independent of all those software which all other tell to download like hack my password , crack the password and don’t know wat all bullish*t………..I appreciate ur attitude of spreading knowledge …..but bro u just gave away my previous password…….
    .and for noobs….pls do some research about wat is Kali and the other sort of thinks
    And BTW I understud the reference of lannister …;)
    Cheers bro

    Reply
    • February 21, 2015 at 7:53 am
      Permalink

      I’m pleased to know you enjoyed it!; haha try “zoidberg” next time.. and i mentioned in the post that i will be doing a kali basics article…

      Reply
      • February 22, 2015 at 1:41 am
        Permalink

        Don’t worry bro…..u didn’t completely revealed my password…….its all in mixed cases …..

        Reply
  • February 21, 2015 at 3:25 am
    Permalink

    But unfortunately..it works only for linux usrs..nxt tym try for windows too.. 😉 :p

    Reply
    • February 21, 2015 at 7:54 am
      Permalink

      but its easier on linux, also … if you want, you can run kali on a virtual box in windows…

      Reply
      • February 21, 2015 at 12:53 pm
        Permalink

        I think its easier in linux but I use windows.
        But as you say that “you can run kali on a virtual box in windows…” I want to do this thing.
        So give me link to do this on virtual box plz…

        Reply
          • June 7, 2016 at 3:21 am
            Permalink

            vitrual box it is not good enough vmare best 🙂

        • April 12, 2016 at 1:39 pm
          Permalink

          Search Virtual box on google

          Reply
      • February 21, 2015 at 12:54 pm
        Permalink

        Dear Author IAmDelirious,

        I think its easier in linux but I use windows.
        But as you say that “you can run kali on a virtual box in windows…” I want to do this thing.
        So give me link to do this on virtual box plz…

        Reply
        • June 7, 2016 at 3:23 am
          Permalink

          dear
          not sad it is very easy to do that download vmare station and install kali in it and learn and work only it is easy,fun 🙂 🙂

          Reply
  • February 21, 2015 at 3:25 am
    Permalink

    Awesome Job @IAMELIRIOUS =D Thnx 🙂

    Reply
  • February 21, 2015 at 3:24 am
    Permalink

    Ek no..vry usful info dude..unfortunate l

    Reply
  • February 21, 2015 at 3:18 am
    Permalink

    This article is awsm i enjoyed it i must try this

    Reply
    • April 11, 2016 at 6:42 pm
      Permalink

      Yea but this is Dict… attack… If Don’t have password in wordlist shit… very good is grimwepa py*it+crun*h it will be cracking long very long but when You have time You will crack target

      We are 824CK_K11!6HT5

      Reply

Leave a Reply

Advertisment ad adsense adlogger