Passwords generated by WEP is longer, safe and complicated enough? If you think so you are making a big mistake. With the system Linux BT3(Back Track 3), we could crack the possword in about 10 minutes. So, it is best to do some safety measures at once.
Below are the command line format, it is estimated that a lot of friends don’t understand, but leave for friends who need.If you can not wait, please pull down.
The command line to crack wireless passwords with Ubuntu:
http://security.ctocio.com.cn/tips/108/6477108.shtmlThe command line to crack wireless passwords with BT3:
http://www.hackbase.com/tech/2008-10-21/41998.htmlCrack wireless passwords with WinAirCrack under Windows XP:
http://security.ctocio.com.cn/tips/108/6477108.shtml
1, Preparation
- A computer or a Laptop
- A wireless card (or built-in wireless LAN notebook)
- 1G U-disk, Vmware, CD-burner. Can has one of the three (recommend using U disk)
Two lists are separately tested with BT3 can be used to crack wireless passwords, please click to check yours, but it doesn’t matter if you can’t find yours in this 2 lists.
Notebook Models
http://backtrack.offensive-security.com/index.php/HCL:LaptopsNIC Models
http://backtrack.offensive-security.com/index.php/HCL:Wireless
2, download BT3 or BT4
The BT3, full name is Back Track 3, This is a linux portable system that can be put into a U disk or CD-ROM to start on the harddisk by itself, no need in the local installation, (by now have the BETA version of BT4, and friends can have a try).
Official Website
http://www.remote-exploit.org/BT3, BT4 download link
http://www.remote-exploit.org/backtrack_download.htmlHas ISO, U disk and Vmware virtual machine formats, everyone take what we need, here we chose U disk version (with whole comparison tools), why? Edid not see “xtended”?
3, download Spoonwep2
With spoonwep2, users can more easily carry out the wireless network scan, capture or injection of capture, crack the password. No need to enter the MAC again, crack IV is automatic, no need to enter cumbersome command-line commands. Wonderful isn’t it?
spoonwep2 download link:
http://www.butian.org/security/software/protect/707.html
4. the installation
Format your U disk, unzip bt3final_usb.iso and put them into U disk, about 780MB with two directories BOOT and BT3. Put spoonwep2.lzm extracted to U disk under the directory / BT3/modules/
Open BOOT directory, run bootinst.bat
If you computer recognised U Disk as a “local disk” instead of “Removable Disk.” you should run bootinst.bat with parameter -f.
5, start
We finished boot disk. let’s insert the U disk, restart, the BIOS must be set up to U disk, enter the BT3 system.
Chose the first, You can see beautiful black BACK TRACK of the Linux desktop system.
6, crack
As shown, in the menu bar click to start spoonwep2, or in the terminal window enter “spoonwep”, it can be activated.
Choose your wireless card model, driver selected as normal, because of the attack side, we do not know the number of WEP password on the other side, so choose unknown victim. After selecting, click the next button.
Enter the “Victims Discovery”. Point the LAUNCH on your right, the system is scanning surrounding wireless networks.
After searching signal is completed, we will see some wireless networks, Select on and we can see this AP client, select one with many DATA, (We are based on an analysis of data packets to crack the password, so the more packets, crack faster).
After the selection, as shown, we have four kinds of attacks, two kinds of analytical data modes (64 or 128), chose the right things then click on LANCH.
The graph below at the right bottom corner is a successful example, the red code is the WEP password.
Warning: This tutorial is only for research & study
via Forece
博文
0 评论:
发表评论