Hey Guys, I’m Back again with another blog.
This blog is not only for Cyber Security Professionals but also for those who really want to try it for fun. 🙂
Disclaimer: This blog is Exclusively for Educational Purposes, We are not Responsible for any Malicious Activity.
Do not try with Malicious intent, Stick with Ethics.
Many of us would have thought about how to hack Wi-Fi at least once in our lives. Come Let’s do it.
Here we have Abishek with us to demonstrate how to Hack Wi-Fi.
Let’s Have a Look at How Wi-Fi is Working in a 4-way Hand Shake between the router and the User.
I hope you can clearly understand what’s happening above. What we are going to do here is very simple.
We all use the connect automatically feature when we connect with any Wi-Fi don’t we? We are going to take advantage of that feature.
We will disconnect an already authenticated person from Wi-fi, when his device tries to reconnect with the Wi-Fi we can steal the handshake key to crack the password.
Cracking a WPA/WPA2 wireless Networking Using Aircrack-ng
From the hacker perspective, we can use brute force or dictionary attack and rainbow table to crack the WPA/WPA2 network. The best attack is a dictionary attack to takes less time but the success rate of the attack depends on the word list you use to crack the password. This attack totally relies on a four-way handshake of Wi-Fi.
Requirements
- PC with Kali Linux or Parrot or Ubuntu Operating System.
- A Wi-Fi card adapter that supports monitoring mode. (I suggest you buy a Leoxsys Adapter) Click to buy
- Updated Aircrack-ng Suite.
Let’s Hack
Step 1: Run Terminal as root by su command
Step 2: Type iwconfig in the terminal with the wifi card adapter plugged in.
Step 3: Note your wi-fi adapter name in my case (wlx502b73e5cd3b)
Step 4: change into monitoring mode.
# airmon-ng start wlx502b73e5cd3b
Step 5: Again type # iwconfig.
Step 6: airodump -ng wlan0mon
To Check the wireless access point around you and note down your target router’s Mac Address(BSSID).
In this scenario, my Target wifi name is WIFI hack
Use (ctrl+c) to stop scanning.
Step 7: Capture the handshake file and save the handshake into a file
airodump-ng – – bssid (bssid number ) -c (ch number) -w (path to save the handshake file) wlan0mon (wifi interface name).
Step 8: Send DE authentication packets to any one of the Victims connected with your target Wi-Fi (Do this in the new terminal Do Not Interrupt the Handshake)
#aireplay-ng –deauth 0 -a (bssid) -wlan0mon.
Step 9: Wait for a WPA handshake when one of the victims tries to reconnect with the target router.
Step 10: Then we can use the Captured Handshake WPA file using aircrack.
#aircrack-ng -w (path of word list ) (path of wpa .cap)
Medium-level, complicated passwords can be cracked with different Dictionary files. You can get lots of Dictionary files from the internet.
We have many tools like aircracking is available in the market like Fluxion etc. Stick to the tool which is reliable to the individual.
Countermeasures:
- Disable WPS key
- Change Passwords in regular intervals of time
- Always use Complex passwords, with password policies.
- Use lengthier Passwords.
- Change of SSID is also helpful
- Do not Use Default Credentials for the Wi-Fi Login Page.
Try this at home with concern.
Stick with us, and Learn Together.
Bye Bye…Â
Author
Abishek Prakash
Cyber Security Intern.