Cracking wifi networks

Discussion in 'Computer Games and General Discussion' started by Pyrmon, Apr 8, 2011.

  1. Pyrmon
    OP

    Pyrmon Burnin' Monkey Love

    Member
    1,086
    14
    Sep 25, 2010
    Canada
    Montreal
    Hi there tempers!
    So, yesterday I got my birthday money in advance and bought an HP mini 110. It works great and I got Ubuntu NBR on the thing. I was wondering which software would be useful to me in cracking WEP and WPA keys. Anyone got something to share on that?
     


  2. bazamuffin

    bazamuffin RESIDENT DILF

    Member
    2,036
    63
    Feb 1, 2009
    Shmashmortion Clinic
    Google it, theres lots out there on the subject
     
  3. Pyrmon
    OP

    Pyrmon Burnin' Monkey Love

    Member
    1,086
    14
    Sep 25, 2010
    Canada
    Montreal
    I was considering aircrack-ng, but I wanted to know if there were any better alternatives.
     
  4. Elritha

    Elritha GBAtemp Addict

    Member
    2,037
    1
    Jan 24, 2006
    Canada
    Try BackTrack live cd. Should have all the tools you need. Good luck trying to crack WPA. Unless the key is weak it'll be difficult. WEP on the other hand is easy. I'm assuming all this is for educational purposes and cracking your own wifi networks, as cracking other peoples networks is just wrong. [​IMG]
     
  5. Coto

    Coto GBAtemp Addict

    Member
    2,338
    391
    Jun 4, 2010
    Chile
    Also if you intend to crack WPA, you´ll need at least 50.000 available packets (those which contain data, or ivs ) besides a GOOD dictionary file. (I have a 2GB uncompressed somewhere!)


    Just read about switching your wireless card into monitor mode, plus good drivers. Linux is way easier to do this, because of easier way to debug custom drivers. Windows on other hand is quite narrowed in monitor mode/chipset compatibility so just go for linux.

    Also, backtrack live DVD has everything you need right now.
     
  6. Originality

    Originality Chibi-neko

    Member
    5,326
    776
    Apr 21, 2008
    London, UK
    WEP takes seconds to crack, and I discovered my phone can do it in 4 seconds. WPA is also crackable with tools, but the methods are different so it will probably take a lil while. WPA2 is also crackable, but the method isn't known outside of certain research networks.

    Either way, you can get into a lot of trouble if someone detects you stealing their internet.
     
  7. doyama

    doyama GBAtemp Maniac

    Member
    1,288
    3
    Nov 30, 2006
    United States
    Cracking WEP is pretty easy using backtrack. The only way to really crack WPA/WPA2 is to use rainbow tables or massive dictionary attacks.
     
  8. Coto

    Coto GBAtemp Addict

    Member
    2,338
    391
    Jun 4, 2010
    Chile
    I think you should speak more about that right now..

    =p
     
  9. Berthenk

    Berthenk Epitome of Awesomeness

    Member
    1,314
    8
    May 16, 2008
    Netherlands
    Because it's really hard to look it up on Wikipedia.
     
  10. doyama

    doyama GBAtemp Maniac

    Member
    1,288
    3
    Nov 30, 2006
    United States
    Well here's the 10,000ft view for the illiterate. Rainbow tables are used to quickly hack keys that fit particular criteria. In this case, WPA/WPA2 keys that are

    1) in a list of well known SSID
    2) have a weak password that is in a dictionary

    Rainbow tables compile lists of these so you can quickly (within a few minutes) determine the key. So the person setting up the WPA needs to be pretty stupid on 2 fronts, not changing the default SSID (linksys, dd-wrt, default, etc), and then subsequently chooses a crappy password that's in a dictionary. These tables are usually 10-15GB in size so definitely a big chunk to download.

    Think of it this way, rainbow tables are like having the answers to a test, but only a very specific kind of test that is multiple choice(easy if the test fits the criteria, but you're screwed otherwise). Dictionary attacks are more like having a cheat sheet for an essay style test (more generic to fit many situations, but requires more work on your end).

    --------------------

    Now that we've discussed how to do this I think I really need to reiterate something

    DO THIS AT YOUR OWN RISK!!!!!

    I've done it and it took me a few days to figure it out the first time. It was a lot of fun to try and figure stuff out and understand what each script was doing and how it fed into each other. Also just the technical aspects were fascinating as well. It's fun and all.

    But at the end of the day once I had 'hacked' a WEP point, I realized, hey do I really want to keep going here? I can see their computers, even how many DVR setups they had. It really felt wrong after that. I wasn't just hacking some soulless corporation. It was some family with some kids by the names on their computers.

    The process was fun and all, but in the end I decided not to continue using the AP. I had learned what I needed to and really that was worth more than 'free wifi'
     
  11. Pyrmon
    OP

    Pyrmon Burnin' Monkey Love

    Member
    1,086
    14
    Sep 25, 2010
    Canada
    Montreal
    I don't want to mess around on some family's network. I want to get the internet at school [​IMG]
     
  12. doyama

    doyama GBAtemp Maniac

    Member
    1,288
    3
    Nov 30, 2006
    United States
    That's actually worse to be honest, at least in terms of consequences for yourself. Schools look very poorly on anyone hacking their systems. You could get suspended or whatever, and you'd have little recourse. Just realise there can be real consequences to your actions, that are very very serious. Don't fuck up your academic path just because you want to browse facebook. It ain't worth it trust me. Use your phone with Opera Mini so you don't obliterate your download cap and you can get most stuff you need if you're desperate or something.
     
  13. Fishaman P

    Fishaman P Speedrunner

    Member
    3,239
    505
    Jan 2, 2010
    United States
    Wisconsin
    Not just suspended, expelled AND criminally charged.

    Although they probably have VERY nice download speeds...
    My school is in my state's 99th percentile, and the U.S.'s 98th percentile.
     
  14. Pyrmon
    OP

    Pyrmon Burnin' Monkey Love

    Member
    1,086
    14
    Sep 25, 2010
    Canada
    Montreal
    I don't think they will be able to trace me if they don't know I have a laptop...
     
  15. Rydian

    Rydian Resident Furvert™

    Member
    27,883
    8,105
    Feb 4, 2010
    United States
    Cave Entrance, Watching Cyan Write Letters
    Almost everybody in court did something because they thought they wouldn't get caught.
     
  16. doyama

    doyama GBAtemp Maniac

    Member
    1,288
    3
    Nov 30, 2006
    United States
    If you're the only one with a laptop then it would be fairly easy to find you just via visual inspection. [​IMG]

    I'm an admin and if you're on my wifi and think I can't find you, you're in for a big surprise when my AirMagnet software can pin point your location to within a few meters by triangulating your wifi signal between several APs. There's stuff out there custom designed to find rouge APs and unauthorized people connecting to the network. Whether anyone is LOOKING at that stuff is a different story [​IMG]
     
  17. Originality

    Originality Chibi-neko

    Member
    5,326
    776
    Apr 21, 2008
    London, UK
    My phone can do that too, although my school had the added benefit of having CCTV in every corridor, so it would be easier to track down exactly who was doing it even after the event.
     
  18. doyama

    doyama GBAtemp Maniac

    Member
    1,288
    3
    Nov 30, 2006
    United States
    I prefer to do the tracking from the comfort of my office. Then send my hired goons to beat you up in the washroom once I track you down. I just wish this stuff didn't cost an arm and a leg to buy and implement. Though with the spate of wifi security breaches its a bit easier to justify the cost these days.
     
  19. Pyrmon
    OP

    Pyrmon Burnin' Monkey Love

    Member
    1,086
    14
    Sep 25, 2010
    Canada
    Montreal
    The admins at my school aren't really competent. And they don't know in advance I'm going to try because no one in school is capable of installing Linux. It's never happened before, they aren't prepared. Besides, I'm only going to be connected long enough to get the key and get out. Then I'll probably release the key to friends and we'll use ipod touches to connect. There is no way they can know which ipod the connection is coming from, as nearly all students have one.
     
  20. Originality

    Originality Chibi-neko

    Member
    5,326
    776
    Apr 21, 2008
    London, UK
    Who'd need goons? I would hack the school computers right in front of your eyes, then show you all the computers/accounts on the system with clear evidence of them downloading illegal music/videos/games/porn. Sure, hacking school networks is a criminal act, but I think I would be forgiven if it brings to light worse criminal activity taking place in the school (kids should not be downloading porn at school).

    Then again, since growing up into an adult there's no need to hack anything anymore. I've got internet on my phone that I can share to any device I wish (soft hotspot/AP), and the kids around me are old enough to get porn legally now so my skills are useless.