Gaming Cracking wifi networks

[Pyrmon]

Hi there tempers!
So, yesterday I got my birthday money in advance and bought an HP mini 110. It works great and I got Ubuntu NBR on the thing. I was wondering which software would be useful to me in cracking WEP and WPA keys. Anyone got something to share on that?

 

[bazamuffin]

Google it, theres lots out there on the subject

 

[Pyrmon]

I was considering aircrack-ng, but I wanted to know if there were any better alternatives.

 

[Elritha]

Try BackTrack live cd. Should have all the tools you need. Good luck trying to crack WPA. Unless the key is weak it'll be difficult. WEP on the other hand is easy. I'm assuming all this is for educational purposes and cracking your own wifi networks, as cracking other peoples networks is just wrong.

 

[Coto]

Also if you intend to crack WPA, you´ll need at least 50.000 available packets (those which contain data, or ivs ) besides a GOOD dictionary file. (I have a 2GB uncompressed somewhere!)


Just read about switching your wireless card into monitor mode, plus good drivers. Linux is way easier to do this, because of easier way to debug custom drivers. Windows on other hand is quite narrowed in monitor mode/chipset compatibility so just go for linux.

Also, backtrack live DVD has everything you need right now.

 

[Originality]

WEP takes seconds to crack, and I discovered my phone can do it in 4 seconds. WPA is also crackable with tools, but the methods are different so it will probably take a lil while. WPA2 is also crackable, but the method isn't known outside of certain research networks.

Either way, you can get into a lot of trouble if someone detects you stealing their internet.

 

[doyama]

Cracking WEP is pretty easy using backtrack. The only way to really crack WPA/WPA2 is to use rainbow tables or massive dictionary attacks.

 

[Coto]

Cracking WEP is pretty easy using backtrack. The only way to really crack WPA/WPA2 is to use rainbow tables or massive dictionary attacks.

I think you should speak more about that right now..

=p

 

[Berthenk]

Cracking WEP is pretty easy using backtrack. The only way to really crack WPA/WPA2 is to use rainbow tables or massive dictionary attacks.

I think you should speak more about that right now..

=p

Because it's really hard to look it up on Wikipedia.

 

[doyama]

Cracking WEP is pretty easy using backtrack. The only way to really crack WPA/WPA2 is to use rainbow tables or massive dictionary attacks.

I think you should speak more about that right now..

=p

Because it's really hard to look it up on Wikipedia.

Well here's the 10,000ft view for the illiterate. Rainbow tables are used to quickly hack keys that fit particular criteria. In this case, WPA/WPA2 keys that are

1) in a list of well known SSID
2) have a weak password that is in a dictionary

Rainbow tables compile lists of these so you can quickly (within a few minutes) determine the key. So the person setting up the WPA needs to be pretty stupid on 2 fronts, not changing the default SSID (linksys, dd-wrt, default, etc), and then subsequently chooses a crappy password that's in a dictionary. These tables are usually 10-15GB in size so definitely a big chunk to download.

Think of it this way, rainbow tables are like having the answers to a test, but only a very specific kind of test that is multiple choice(easy if the test fits the criteria, but you're screwed otherwise). Dictionary attacks are more like having a cheat sheet for an essay style test (more generic to fit many situations, but requires more work on your end).

--------------------

Now that we've discussed how to do this I think I really need to reiterate something

DO THIS AT YOUR OWN RISK!!!!!

I've done it and it took me a few days to figure it out the first time. It was a lot of fun to try and figure stuff out and understand what each script was doing and how it fed into each other. Also just the technical aspects were fascinating as well. It's fun and all.

But at the end of the day once I had 'hacked' a WEP point, I realized, hey do I really want to keep going here? I can see their computers, even how many DVR setups they had. It really felt wrong after that. I wasn't just hacking some soulless corporation. It was some family with some kids by the names on their computers.

The process was fun and all, but in the end I decided not to continue using the AP. I had learned what I needed to and really that was worth more than 'free wifi'

 

[Pyrmon]

--------------------

Now that we've discussed how to do this I think I really need to reiterate something

DO THIS AT YOUR OWN RISK!!!!!

I've done it and it took me a few days to figure it out the first time. It was a lot of fun to try and figure stuff out and understand what each script was doing and how it fed into each other. Also just the technical aspects were fascinating as well. It's fun and all.

But at the end of the day once I had 'hacked' a WEP point, I realized, hey do I really want to keep going here? I can see their computers, even how many DVR setups they had. It really felt wrong after that. I wasn't just hacking some soulless corporation. It was some family with some kids by the names on their computers.

The process was fun and all, but in the end I decided not to continue using the AP. I had learned what I needed to and really that was worth more than 'free wifi'

I don't want to mess around on some family's network. I want to get the internet at school

 

[doyama]

I don't want to mess around on some family's network. I want to get the internet at school

That's actually worse to be honest, at least in terms of consequences for yourself. Schools look very poorly on anyone hacking their systems. You could get suspended or whatever, and you'd have little recourse. Just realise there can be real consequences to your actions, that are very very serious. Don't fuck up your academic path just because you want to browse facebook. It ain't worth it trust me. Use your phone with Opera Mini so you don't obliterate your download cap and you can get most stuff you need if you're desperate or something.

 

[Fishaman P]

Not just suspended, expelled AND criminally charged.

Although they probably have VERY nice download speeds...
My school is in my state's 99th percentile, and the U.S.'s 98th percentile.

 

[Pyrmon]

Not just suspended, expelled AND criminally charged.

Although they probably have VERY nice download speeds...
My school is in my state's 99th percentile, and the U.S.'s 98th percentile.

I don't think they will be able to trace me if they don't know I have a laptop...

 

[Rydian]

Almost everybody in court did something because they thought they wouldn't get caught.

 

[doyama]

Not just suspended, expelled AND criminally charged.

Although they probably have VERY nice download speeds...
My school is in my state's 99th percentile, and the U.S.'s 98th percentile.

I don't think they will be able to trace me if they don't know I have a laptop...

If you're the only one with a laptop then it would be fairly easy to find you just via visual inspection.

I'm an admin and if you're on my wifi and think I can't find you, you're in for a big surprise when my AirMagnet software can pin point your location to within a few meters by triangulating your wifi signal between several APs. There's stuff out there custom designed to find rouge APs and unauthorized people connecting to the network. Whether anyone is LOOKING at that stuff is a different story

 

[Originality]

I don't think they will be able to trace me if they don't know I have a laptop...
Try to think up 5 ways they can trace you if they knew in advance you were going to try. Be imaginative/creative. Now assume they really do know in advance you're going to try. Chances are they do, because there are lots of kids in every school that want to hack their school computers for various reasons (mostly to access facebook, some to try and find answers to upcoming tests, some because they want to steal the internet to download their porn).

Do you really want to risk getting a permanent demark on your record detailing your criminal activities (and hacking into school computers is a criminal activity)? Not every school will suspend/expell students for such things (it depends on school policy) but it will always be put down on your record for future schools/employers to know. And your parents will be told about it too.
QUOTEI'm an admin and if you're on my wifi and think I can't find you, you're in for a big surprise when my AirMagnet software can pin point your location to within a few meters by triangulating your wifi signal between several APs. There's stuff out there custom designed to find rouge APs and unauthorized people connecting to the network. Whether anyone is LOOKING at that stuff is a different story

My phone can do that too, although my school had the added benefit of having CCTV in every corridor, so it would be easier to track down exactly who was doing it even after the event.

 

[doyama]

I'm an admin and if you're on my wifi and think I can't find you, you're in for a big surprise when my AirMagnet software can pin point your location to within a few meters by triangulating your wifi signal between several APs. There's stuff out there custom designed to find rouge APs and unauthorized people connecting to the network. Whether anyone is LOOKING at that stuff is a different story

My phone can do that too, although my school had the added benefit of having CCTV in every corridor, so it would be easier to track down exactly who was doing it even after the event.

I prefer to do the tracking from the comfort of my office. Then send my hired goons to beat you up in the washroom once I track you down. I just wish this stuff didn't cost an arm and a leg to buy and implement. Though with the spate of wifi security breaches its a bit easier to justify the cost these days.

 

[Pyrmon]

Not just suspended, expelled AND criminally charged.

Although they probably have VERY nice download speeds...
My school is in my state's 99th percentile, and the U.S.'s 98th percentile.

I don't think they will be able to trace me if they don't know I have a laptop...

If you're the only one with a laptop then it would be fairly easy to find you just via visual inspection.

I'm an admin and if you're on my wifi and think I can't find you, you're in for a big surprise when my AirMagnet software can pin point your location to within a few meters by triangulating your wifi signal between several APs. There's stuff out there custom designed to find rouge APs and unauthorized people connecting to the network. Whether anyone is LOOKING at that stuff is a different story

The admins at my school aren't really competent. And they don't know in advance I'm going to try because no one in school is capable of installing Linux. It's never happened before, they aren't prepared. Besides, I'm only going to be connected long enough to get the key and get out. Then I'll probably release the key to friends and we'll use ipod touches to connect. There is no way they can know which ipod the connection is coming from, as nearly all students have one.

 

[Originality]

Spoiler

I'm an admin and if you're on my wifi and think I can't find you, you're in for a big surprise when my AirMagnet software can pin point your location to within a few meters by triangulating your wifi signal between several APs. There's stuff out there custom designed to find rouge APs and unauthorized people connecting to the network. Whether anyone is LOOKING at that stuff is a different story

My phone can do that too, although my school had the added benefit of having CCTV in every corridor, so it would be easier to track down exactly who was doing it even after the event.

I prefer to do the tracking from the comfort of my office. Then send my hired goons to beat you up in the washroom once I track you down. I just wish this stuff didn't cost an arm and a leg to buy and implement. Though with the spate of wifi security breaches its a bit easier to justify the cost these days.

Who'd need goons? I would hack the school computers right in front of your eyes, then show you all the computers/accounts on the system with clear evidence of them downloading illegal music/videos/games/porn. Sure, hacking school networks is a criminal act, but I think I would be forgiven if it brings to light worse criminal activity taking place in the school (kids should not be downloading porn at school).

Then again, since growing up into an adult there's no need to hack anything anymore. I've got internet on my phone that I can share to any device I wish (soft hotspot/AP), and the kids around me are old enough to get porn legally now so my skills are useless.