aircrack ng suite
TRANSCRIPT
-
8/12/2019 Aircrack Ng Suite
1/5
How to Hack Wi-Fi: Getting Started with the Aircrack-Ng Suite of Wi-Fi
Hacking Tools
In the first part of my series on Wi-Fi hacking, we discussed thebasic terms and technologies
associated with Wi-Fi. Now that you have a firm grip on what Wi-Fi is exactly and how it works,we can start diving into more advance topics on how to hack Wi-Fi.
In this article, well take a look at the worlds best Wi-Fi hacking software, aircrack-ng, which we
previously used tobump your annoying neighbor off their own Wi-Fi network. Well be using
aircrack-ng in nearly all of the subse!uent hacks, so I think its wise to start with some basics on
what is included and how to use everything.
First of all, aircrack-ng is not a single tool, but rather a suite of tools for manipulating and cracking
Wi-Fi networks. Within this suite, there is a tool called aircrackfor cracking passwords, but to get
to the cracking we need to do several steps using other tools. In addition, aircrack-ng is capable of
doing "#$ attacks as well rogue access points, caffe latte, evil twin, and many others.
$o, lets get started with the aircrack-ng suite%
Quick Note
&he ngstands for new generation, as aircrack-ng replaces an older suite called aircrackthat is no
longer supported.
Step 1: wconfig
'efore we get started with aircrcak-ng, we need to make certain that 'ack&rackrecogni(es your
wireless adapter. We can do this within any )inux system by typing*
!t " iwconfig
http://null-byte.wonderhowto.com/how-to/wi-fi-hacking/http://null-byte.wonderhowto.com/how-to/hack-wi-fi-getting-started-with-terms-and-technologies-0147659/http://mods-n-hacks.wonderhowto.com/how-to/crack-wi-fi-passwords-for-beginners-0139793/http://null-byte.wonderhowto.com/how-to/hack-like-pro-get-even-with-your-annoying-neighbor-by-bumping-them-off-their-wifi-network-undetected-0147206/http://null-byte.wonderhowto.com/how-to/hack-like-pro-getting-started-with-backtrack-your-new-hacking-system-0146889/http://null-byte.wonderhowto.com/how-to/hack-wi-fi-getting-started-with-terms-and-technologies-0147659/http://null-byte.wonderhowto.com/how-to/hack-wi-fi-getting-started-with-terms-and-technologies-0147659/http://img.wonderhowto.com/img/original/26/95/63509570456506/0/635095704565062695.jpghttp://null-byte.wonderhowto.com/how-to/wi-fi-hacking/http://null-byte.wonderhowto.com/how-to/hack-wi-fi-getting-started-with-terms-and-technologies-0147659/http://mods-n-hacks.wonderhowto.com/how-to/crack-wi-fi-passwords-for-beginners-0139793/http://null-byte.wonderhowto.com/how-to/hack-like-pro-get-even-with-your-annoying-neighbor-by-bumping-them-off-their-wifi-network-undetected-0147206/http://null-byte.wonderhowto.com/how-to/hack-like-pro-getting-started-with-backtrack-your-new-hacking-system-0146889/http://null-byte.wonderhowto.com/how-to/hack-wi-fi-getting-started-with-terms-and-technologies-0147659/http://null-byte.wonderhowto.com/how-to/hack-wi-fi-getting-started-with-terms-and-technologies-0147659/ -
8/12/2019 Aircrack Ng Suite
2/5
-
8/12/2019 Aircrack Ng Suite
3/5
driver. 4ost importantly, note that it has changed the designation for our wireless adapter from
wlan/ to mon.
Step %: Airodu$p-Ng
&he next tool in the aircrack-ng suite that we will need is airodu$p-ng, which enables us to
capture packets of our specification. Its particularly useful in password cracking.
We activate this tool by typing the airodu$p-ngcommand and the rena$ed $onitor interface
3mon7*
!t "airodu$p-ng $on&
5s we can see in the screenshot above, airodump-ng displays all of the 59s 3access points7 within
range with their '$$I" 3456 address7, their power, the number of beacon frames, the number of
data packets, the channel, the speed, the encryption method, the type of cipher used, the
authentication method used, and finally, the 0$$I".
For our purposes of hacking WiFi, the most important fields will be the '$$I" and the channel.
Step ': Aircrack-Ng
Aircrack-ngis the primary application with the aircrack-ng suite, which is used for password
cracking. Its capable of using statistical techni!ues to crack W09 and dictionary cracks for W95and W95 after capturing the W95 handshake.
Step (: Airepla)-Ng
Airepla)-ngis another powerful tool in our aircrack-ng arsenal, and it can be used to generate or
accelerate traffic on the 59. &his can be especially useful in attacks like a deauth attack that bumps
everyone off the access point, W09 and W95 password attacks, as well as 5:9 in;ection and
replay attacks.
5ireplay-ng can obtain packets from two sources*
/. 5 live stream of packets, or. 5 pre-captured pcap file
&he pcap file is the standard file type associated with packet capture tools like libpcap and winpcap.
http://img.wonderhowto.com/img/original/25/91/63509567831583/0/635095678315832591.jpg -
8/12/2019 Aircrack Ng Suite
4/5
If youve ever used Wireshark, youve most likely worked with pcap files.
We can see in the screenshot above of the first half of the aireplay-ng help screen, that aireplay can
filter by the '$$I" of the access point, the 456 address of either source or destination, the
minimum and maximum packet length, etc. If we scroll down the help screen, we can see some of
the attack options using aireplay-ng*
&hese include deauth, fake deauth, interactive, arpreplay 3necessary for fast W09 cracking7,
chopchop 3a form of statistical techni!ue for W09 packet decrypting without cracking the
password7, fragment, caffe latte 3attacking the client side7, and others.
&hese four tools in the aircrack-ng suite are our Wi-Fi hacking work horses. Well use each of these
in nearly every Wi-Fi hack. $ome of our more hack-specific tools include airdecap-ng, airtun-ng,
airolib-ng and airbase-ng. )ets take a brief look at each of these.
Step *: Airdecap-Ng
Airdecap-ngenables us to decrypt wireless traffic once we have cracked the key. In other words,once we have the key on the wireless access point, not only can we use the bandwidth on the access
point, but with airdecap-ng we can decrypt everyones traffic on the 59 and watch everything
http://img.wonderhowto.com/img/original/49/53/63509567852206/0/635095678522064953.jpghttp://img.wonderhowto.com/img/original/07/86/63509567842706/0/635095678427060786.jpg -
8/12/2019 Aircrack Ng Suite
5/5
theyre doing 3the key is used for both access and for encryption7.
Step +: Airtun-Ng
Airtun-ngis a virtual tunnel interface creator. We can use airtun-ng to set up an I"$ on the wireless
traffic to detect malicious or other traffic on the wireless access point. $o, if were looking to get an
alert of a particular type of traffic 3see my tutorial on creating a 9:I$4-like spy tool7, we can useairtun-ng to set up a virtual tunnel that connects to an I"$ like $nort to send us alerts.
Step ,: Airoli!-Ng
Airoli!-ngstores or manages 0$$I"s 3the name of the access point7 and password lists that will
help speed up W958W95 password cracking.
Step : Air!ase-Ng
Air!ase-ngenables us to turn our laptop and wireless card into an 59. &his can be especially usefulwhen doing a rogue access point or evil twin attacks. 'asically, airbase-ng allows us to attack the
clients, rather than the 59, and encourages the clients to associate with us rather than the real 59.
That.s t for Now
&hese are the primary tools in the aircrack-ng suite that well be using as we explore Wi-F hacking.
&here are other tools, but these are the ones well be focusing on.
In our next guide, well start our exploration of wireless hacking techni!ues with creating a evil twin
access point, so make sure to keep coming back. If you have any !uestions, please comment below
or start a discussion in theNull 'yte forumand well try to help you out.
http://null-byte.wonderhowto.com/how-to/hack-like-pro-create-your-own-prism-like-spy-tool-0147583/http://null-byte.wonderhowto.com/forum/http://null-byte.wonderhowto.com/how-to/hack-like-pro-create-your-own-prism-like-spy-tool-0147583/http://null-byte.wonderhowto.com/forum/