Follow us on Twitter!
Imagination is more valuable than knowledge - Albert Einstein
Thursday, April 24, 2014
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
Learn
Communicate
Submit
Shop
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Other
Members Online
Total Online: 38
Guests Online: 31
Members Online: 7

Registered Members: 82903
Newest Member: Piriformis
Latest Articles
View Thread

HellBound Hackers | Computer General | Hacking in general

Author

Help With Wifi Hacking


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 03-07-08 21:23
I recently discovered wireless internet at my home, and whaddaya know. It is WEP protected. After some google searching I found a tutorial using the Aircrack suite and Backtrack 2. Everything seemed to be going well as for the tutorial, except I couldn't get a MAC address for one of the users of my target AP. Is there any other way other than using the aircrack suite (maybe kismet?) to get a MAC address of a user of my target AP? I have all the info needed other than that, I could probably still crack it but it would take weeks considering I dont have that MAC address for replaying the packets.
Author

RE: Help With Wifi Hacking

Infam0us
Member



Posts: 153
Location: 0x080484c6
Joined: 06.09.07
Rank:
Apprentice
Posted on 03-07-08 22:27
gamecheater wrote:
I recently discovered wireless internet at my home, and whaddaya know. It is WEP protected. After some google searching I found a tutorial using the Aircrack suite and Backtrack 2. Everything seemed to be going well as for the tutorial, except I couldn't get a MAC address for one of the users of my target AP. Is there any other way other than using the aircrack suite (maybe kismet?) to get a MAC address of a user of my target AP? I have all the info needed other than that, I could probably still crack it but it would take weeks considering I dont have that MAC address for replaying the packets.


You dont need a mac address for access point clients when cracking wep. You only need the SSID and the mac address of the access point. You only need the client mac addresses when cracking WPA and thats to disassociate them from the access point so you can sniff the key they are entering when re-authenticating with the AP (access point).

If your saying you can't get the mac address of the AP that doesn't make any sense, the mac addres is broadcast with every packet sent from the AP. Ive only seen people not broadcasting the SSID, and even that is really easy to get past..


"Never memorize what you can look up in books." -Albert Einstein
www.rohitab.com/discuss/style_emoticons/default/suicide_anim.gif
[img]http://www.hellboundhackers.org/fusion_infusions/buddy_panel/buddy_delete.php?id=2783[/img]


[img]javasc ript:alert(document.cookie);[/img]
Author

RE: Help With Wifi Hacking


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 03-07-08 22:43
Ok, for a start, what wireless card are you using? And if you know it, what chipset is it? There is a new version of backtrack out that ships with drivers patched for wireless injection, id recommend getting yourself a copy. So you want to know the mac address? Arn't you using airodump? it lists the mac addresses by default, as well as the ssids and channel. from theyre you just use aireplay to inject packets and get your delicious IV's.

If you have BT3 and are really stuck you could just try:

Code
wesside-ng -i <interface>





Author

RE: Help With Wifi Hacking


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 04-07-08 11:16
No, your right with injecting to get IV's. You have an atheros card, so you should be using madwifi-ng drivers, and will be good to go for cracking wep. Here are the basic steps you need to follow:

1) Putting your card in monitor mode. Do this with:

airmon-ng start wifi0

This should create a new VAP called ath1, next to it in brackets should be (Parent:wifi0)(Monitor mode enabled)

2) Start airodump-ng. This will display the MAC addresses of all AP's in range at the top, and clients for all the networks below, with what network (if any) they are connected to.

3) Use aireplay-ng to do a mass deauth, forcing everyone to reconnect and send IV's. Have a look at airodump while aireplay is running. If all is well, the number of IV's next to the targeted network should be rising steadily, hopefully quite fast.




Edited by on 04-07-08 11:17
Author

RE: Help With Wifi Hacking


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 05-07-08 20:50
Thanks for all the help, within one hour I had the recommended 1.5 million IV's for a 128 bit WEP Key. I started aircrack, and it found the key within two minutes.