Berthenk said:
Coto said:
doyama said:
Cracking WEP is pretty easy using backtrack. The only way to really crack WPA/WPA2 is to use rainbow tables or massive dictionary attacks.
I think you should speak more about that right now..
=p
Because it's really hard to look it up on
Wikipedia.
Well here's the 10,000ft view for the illiterate. Rainbow tables are used to quickly hack keys that fit particular criteria. In this case, WPA/WPA2 keys that are
1) in a list of well known SSID
2) have a weak password that is in a dictionary
Rainbow tables compile lists of these so you can quickly (within a few minutes) determine the key. So the person setting up the WPA needs to be pretty stupid on 2 fronts, not changing the default SSID (linksys, dd-wrt, default, etc), and then subsequently chooses a crappy password that's in a dictionary. These tables are usually 10-15GB in size so definitely a big chunk to download.
Think of it this way, rainbow tables are like having the answers to a test, but only a very specific kind of test that is multiple choice(easy if the test fits the criteria, but you're screwed otherwise). Dictionary attacks are more like having a cheat sheet for an essay style test (more generic to fit many situations, but requires more work on your end).
--------------------
Now that we've discussed how to do this I think I really need to reiterate something
DO THIS AT YOUR OWN RISK!!!!!
I've done it and it took me a few days to figure it out the first time. It was a lot of fun to try and figure stuff out and understand what each script was doing and how it fed into each other. Also just the technical aspects were fascinating as well. It's fun and all.
But at the end of the day once I had 'hacked' a WEP point, I realized, hey do I really want to keep going here? I can see their computers, even how many DVR setups they had. It really felt wrong after that. I wasn't just hacking some soulless corporation. It was some family with some kids by the names on their computers.
The process was fun and all, but in the end I decided not to continue using the AP. I had learned what I needed to and really that was worth more than 'free wifi'