无线网络破解（Wireless network cracking）.docVIP

无线网络破解（Wireless network cracking） WEP crack 1. equipment: IMBX60 notebook (built-in Intel3945 wireless card), BT3 (U disk system use the syslinux command to specify start BT3 drive) 2. user name: root password: toor, enter the graphical interface: startx. After starting BT3 (start blackscreen input startx: xconf) Drive 3. loading 3945 card. Open a shell Note: different cards have different loading ways 4. to find the target: Use the Airoscript command (Backtrack/radio network analysis/80211/all/Aioscript) scanning function Three times 1 found 5, 4 encryption, data 0, Netgear open the AP have a client. PWR See the general value of signal strength. You can also use airodump-ng wifi0 to search We choose the first as a target, 11 channel (CH represents the channel in the picture above). Note: modify your network card MAC address command. Enter the macchanger 00:11:22:33:44:55 wifi0 - M 5. activate the card Monitor mode and work in the 11 channel. (loading card, active listening mode, working in the 11 channel) Enter the airmon-ng start wifi0 iwconfi wifi0 11 can also be used to check the card working mode and working channel. Aireplay-ng --test wifi0 can be used to test whether can inject 6. input data packet interception command (IVS data interception 11 channel packet, and save as name.ivs) Airodump-ng --ivs -w name -c command input 11 wifi0, (--ivs: only intercept IVS packets, -w: -c: IVS file, Interception Channel) (of which name is to get the IVS save the file name, the 11 is the channel value, according to the actual change you) A client WEP crack. 1. the client, and legitimate clients produce a large number of effective data, direct access to a large number of IVS. Method: 1-6 step. 7. the direct use of aircrack-ng crack The seventh step: aircrack-ng -n 64 -b ap mac name-01.ivs 2. the client, the client can only legally produce a small amount of IVS data, you need to speed up a large amount of IVS injection attacks. As long as there is a small amount of data it i