Very nice tutorial but I have one problem. every time i try to run the "sudo aireplay-ng -6 6000 -a E0:46:9A:C1:12:63 -h 00:11:22:33:44:55 mon0" line It says mon0 is running on -1 and th e AP channel use's 6. I've tried messing with the code to figure out if I could change mon0 to channel 6 but I can't figure it out. Can someone help me out?

it is a good tutorial, but what is the 6000 after -1, the 0841 after -2 and the FF:FF:FF:FF:FF:FF during the aireplay-ng commands?

great tutorial, thanks to @shibby22 i can wep crack my neighbour conection, the password was quite obvios, his two pets name titanlulus was the password.

@944Nima I could care less about getting into my neighbor's wifi. My only purpose in life is to reverse engineer compiled code for the purpose of exploit development or anti-virus. Do you know how difficult it is to bypass today's DEP and ASLR protections for the purpose of installing..say a rootkit into the MBR? Well Imagine trying to go in reverse and figuring out how they do it, for the purpose of detecting and protecting from it. It takes a lot more than downloading some program...

@944Nima lol u such a noob

@944Nima lol brute force hashes....wut....

@944Nima I somehow found that. @944Nima is there any other way?

Hi, first of all, nice guide.

I need help on this issue, would you know how to fix it?

I get odd notification/error when i run aireplay-ng

"wlan1 is on channel 1, but the AP uses channel 6"

i write this command:

sudo aireplay-ng -1 0 -e lolnet -a FF:FF:FF:FF:FF:FF -h MY:MA:CA:DD:RE:SS wlan1

My default wireless is wlan1, wlan0 isnt compatible

Is there a command to change the AP channel? I run airodump fine, it just takes a very long time without aireplay . Does this mean he has MAC filter?

@Blutquell iwconfig wlan1 channel 1

However... You may have conflicting processes that keep changing your device's channel. Try killing everything that may be conflicting with airomon-ng.

" ERROR while getting interface: No such device "

This what I get when I try to run

sudo ifconfig mon0 down

_______

At the same time, when I run

sudo airmon-ng start wlan0

My chipset say Unknown.

Does anyone have info which could help me?

Thank you.

this vid reminds me of 2001! thanks for clearing up that wep thingm now on to wpa....

any way i can download this ? the video is always low quality when i download it.

Cause all real hackers have green text on black backgrounds...

@1337shellc0der Originally i think it's just so people can read it easier, BUT IT LOOKS FUCKIN AWESOME ;D

Can anybody recommend me a book that will teach me how packets work? I want to eventually learn exactly what all of the aircrack-ng functions do but I have to start somewhere.

@ross817 An easy way is to just do: apt-get install aircrack-ng, then type aircrack-ng and it will list all the posible functions and give you defintions on what they do in the terminal

see OnyxCode

I'm sorry, but I have a problem, when I try to run the aireplay-ng it says mon2 is on channel -1, but the AP uses channel 6

what am I doing wrong?

@mortemdei Channel -1 means it isn't on a channel at all. You need to manually change it to channel six with airodump-ng --channel 6.

mon0 is on channel -1, but the AP uses channel 6

@andrewhpavei did you manage to fix it? i got the same problem like you

What would be nice, is if you actually told people which programs to download and how to install them and such..

@ladystarful if you're using ubuntu, get aircrack-ng, ettercap and macchanger by running sudo apt-get install package-name that's it

very good job and helpfull for begginners i found the key after 24 hours it does not matter i did not put the proper parameters but if you want shibby22 could you tell me what means the number 6000 at the aireplay-ng and the parameter -p 0841 why you choose 0841 , i write --help but i did not get it at all the only i understood is that is in hexadetical code thanks!

Good vid , know where a good password.lst is for Ubuntu 10.10 ?

What themes are you using?

@chroniccommandpois0n

I don't remember.. sorry :\

@chroniccommandpois0n He remembers, he's just a lazy fag.

@UberLifeTroll

Ehhh. a real troll you are. If I remembered, wouldn't it be much easier to just tell him?

If I'm so lazy, and you aren't, why don't you try to figure out which themes I was using, and tell chroniccommandpois0n.

@shibby22

Because Linux is for fags.

I have a problem with this, when i type (sudo airodump-ng -c 8 -w fbi.gov --bssid 00:1C:DF:8D:01:C0 mon1) Somewhere saying (Fixed Channel mon1: -1). Then i have another message, i type (sudo aireplay-ng -1 6000 -a 00:1C:DF:8D:01:C0 -h 00:11:22:33:44:55 mon1) and saying that

Waiting for beacon frame (BSSID: 00:1C:DF:8D:01:C0) on channel -1

mon1 is on channel -1, but the AP uses channel 8

can you help me with that.. thanks

@Lupito9999 the "8" is the ssid channel. Check 0:50 when he's highlighting the MAC address, go over 5 columns to "CH" column. See?

@redmatrix im having the same problem. except it says Waiting for beacon frame (BSSID: 00:1C:DF:8D:01:C0) on channel -1

mon1 is on channel -1, but the AP uses channel 6 and the ch was 6. so what ch am i suppose to be putting?

@redmatrix i fix the channel but still say (FIX CHANNEL Mon0 -1)... is there another way to fix this error?

cool video. ubuntu is fun :)

and what's the song called? it sounds awesome

well cant really rate it. from what i could see it looks good. but could u revise and make it a lil bigger.

@Linkinitn

You can click on the link in the description.. Much higher resolution. :)

Awsome!!!!!!!

hey can you tell me the name of that theme youre using??? thks!!!

@desertsto

Sorry, it was a long time ago... I don't remember :(

Tengo una duda, que hay que hacer para que deje de leer paquetes en el 2:00?? Y aparezca la siguiente pantalla?

//////

What is the step to change the 'screen' from 2:00 to 2:05 ??? ... I only read a lot of packets...

@majamudud I think it's automatic, once it finds a good packet.

this is what i get when i do the first step! Found 4 processes that could cause trouble. If airodump-ng, aireplay-ng or airtun-ng stops working after a short period of time, you may want to kill (some of) them! PID Name 889 avahi-daemon 891 avahi-daemon 17974 wpa_supplicant 19005 NetworkManager Process with PID 19874 (airodump-ng) is running on interface mon0 Interface Chipset Driver wlan0 Intel 4965/5xxx iwlagn - [phy0] (monitor mode enabled on mon1) mon0 Intel 4965/5xxx iwlagn - [phy0]

wait.. what i do with the 11:11:11:11:11:11 key? i want the wep not mac..

@dontdodrugs666 that is the key but in hex

the sudo macchanger -m command is not working for me

Even with bcm43xx Hehe... i do not think so.

Very powerfull vid... Thank you.

@davedicius

You don't think what?

Your welcome.

my wireless card is also a broadcom but when I start airmon-ng the chipset case syas "uknown" what should i do? PS: ubuntu 10.04

@MyGmailuser

Not all broadcom cards are supported. FInd out which model you have and if it can be placed in monitor mode.

Just run spoonwep on Backtrack 3 alot easier than all of this.

@neolexington SpoonWEP is great if you don't have the knowledge of how to do this. I like knowing what SpoonWEP does in the background and doing it manually. It's a quick solution but TBH, I usually crack networks faster manually :)

@neolexington yea I agree totally, the comment was meant for those that are not all that familiar with the cmds yet.

@neolexington

Those who aren't familiar with the cmds shouldn't really use automated programs _if_ they want to learn. If they just want to mess around with their own network, ya, it's perfect.

thanks m8 worked great, i made good use of compiz 3d desktop for this .

one desktop for the fullscreen video and another four for the terminals found it really easy :D im on my old school m8s wep hes a smug prick "im a cisco engineer" rofl what an arse knows sweet fuck all about computers.

ps. this is so easy with linux i was shocked, i tried this a while back with commview drivers and aircrack-ng on windows ages ago and its just would work

excellent , I'll do my trainig with your video. thanks from spain!

@raulgarfer

You are welcome ;)

@shibby22 Hey thanks for sharing this things with us, I have a little problem once I hit airodump and it starts searching the wifi net it actually never find anything...... I have my own wifi net and broadcasting is on and I'm not out of reach, but it never finds the BSSID, it finds the second one (BSSID which stays below) but says (not associated)..... pls reply and thx!! Nix

@dorkfix111123

Are you using the correct drivers? Is your wireless adapter capable of monitor mode?

how do you stop airodump without closing that window?

to get the command line under the stopped info;

i have gotten everything to work, but i have to just paste the info somewhere and close airodump, then airodump a specific ap

ctrl+c

:)

@shibby22

thanks, a ton for the work, vid looks good in full screen, i like the use of multiple shells on the same screen;

i watched really closely when you stopped the airodump and saw the "c" so i got it after a while;

thanks, anyway i couldnt find the info short of breaking out a whole chapter on the command line

I'm glad you enjoyed it and hope you watched the high quality version :)

I give up, what music is it?

Sorry.. I don't remember it's name :|

where is the key located? it says "KEY FOUND! [ 11:11:11:11:11 ]" but what can you use that for?

It is located right in front of you.

[ 11:11:11:11:11 ] is the key with out the brackets and colons. You can use that to connect to the WEP secured network.

@WTFp0s

And I understand the English language became useless to you?

According to remote-expoit, 50% of people still use "da fuking" WEP encryption.

Well unlike Mexico Here in the United states we use DES or WPA.

So GTFO

@WTFp0s

You'd be surprised how many people still use WEP even in the US.

Anyways, this is an educational video. It by no means is here to educate you on how to crack your neighbors WEP, rather to demonstrate how WEP cracking is done.

@WTFp0s

Mexico? Try again.

Wow. This is great! definitely 5 stars! Actually Im waiting for my new internet (the provider said it will took 1 month O_O). Now maybe I can get into the internet anyway. =) Thanks!!!

this video is not suppose to be one of these...its embarrasing,...by the way...try to view guys in HD,..see what changes???,..if there has any changes...wahahahaha...non sense tutorial...

@yonikomontojo

Wow, you are just plain old stupid. People like you shouldn't have access to a computer.

Under more info, is a link to a high quality version.

Hey shibby.. when trying this.. you get the key in format XX:XX:XX:XX:XX. What do you do with this? Tried using it with and without the : , no luck. Is this hexidec? does it need to be converted?

@806luck003

It could be hex or just plain text. Just remove the colon's an try it. If it doesn't work then yes it's hex and no it does not need to be converted.

fuck sake!!!how cam we follow the instruction,..too small letter on screen,,,..dumb hacker!!!

@yonikomontojo

For fuck(s) sake, you CAN follow the instruction(s) if you cared enough to either read the info, or even hit full screen.

Now that you've made a complete and utter clown of yourself, go use the information you've gathered and shove it up your 17 year old, RNB pot smoking ass.

@shibby22

ohhh really...so what now?try 2 hack my system...let see what u got REAL SUCKER of wep...even in ur HD its too small to see four eyes!!!yeah,..its 17years old,..in my profile...wahahahhah...im waitin u to hack my system here.....see u at the real world young blood!!!

did this work for you people? plz answer

great job man i have been trying this for ever and could do it till i came across your awsome job and thank very much

I'm glad it helped ;)

can you tell me ho you patched your wifi card? coz mine only goes to monitor mode. it wont inject anything, my card is the same ass yours, thanks man more power to you!!! :)

Is this Carmic coala?

Jaunty.

I hate it when people can't read the description

Read the ****ing description. *failtroll*

this is not high quality, man!

You need to read under more info IF YOU'VE MISSED THE BIG RED BOX THAT SAYS TO _READ UNDER MORE INFO AND CLICK THE LINK TO THE HIGH QUALITY VERSION, man!

Nice tutorial it works great but slow aireplay, sends around 100 packets/minute :(, Otherwise it works great!

That's not too slow. There are a few factors that influence injection rate such as but not limited to: Signal strength, RXQ, the driver and card being used.

If your injection is at a steady speed, it's probably fine and you are maxing out its capabilities.

You can try to update your driver and kernel.

Check out the aircrack-ng website, and download the latest version of BackTrack (4PR), which probably has the latest drivers for your card.

Good advice :) Thx i downloaded BT 4 PR, Works great!

How many IV/sec are you getting?

Which card are you using?

I don't really remember witch card I used that time :P, I have three different laptops and one usb card,

First one : Toshiba Satellite A300-1SR

Second : Asus X50SL

Third : HP 6510B

USB Card: D-Link DWA-111

I Think the Asus is the fastest with the IV's, I'm getting around 150-200 iv's/sec with the Asus witch has a Atheroes card!

Witch one of all four is the best do u think?

The effort is appreciated, but it's hard to see, and the music doesn't explain much of the process.

Comment appreciated.

The music is because Youtube screwed up the sound while processing the video (also screwed up the video itself).

If you take a look on the right, you will see a link to a high quality version of it.

Cool !!!!!

no middle-click pasting?

WoW! i have now my brother wep key! omg

read post above.

one more unreadable video - write down the commands clearly!.

If you had basic eye vision you would see the BIG RED BOX from 0:00 to 0:12 that says CLICK THE LINK UNDER MORE INFO FOR HIGH QUALITY VERSION.

People like should be shot when they are born.

shibby22 - you must be mentally instabil if you want to shot me for not having seen your message...men cool down or seek help right now!

Dear sir,

With all due respect, if you had read the title and information, you would see a link to a high quality version. Also, it clearly says YouTube screwed up the narration, so I had to cover it with crappy music that YouTube had to offer.

Please, if you can't read some simple text under more info, again, please don't try WEP hacking. I think with your amount of intelligence, you will most likely screw up your WiFi adapter.

People like you should still be using Windows 3.11.

HAHAHHA True they don't read :P

Hi, I have this msg in the end "Faile, Try 5000 ivs" why?

P

Not enough IV's... wait for more to collect.. 128bit wep requires about 100k

Thanks dude! ;)

Problem solve..

what theme are u using ?

I think it was Ubuntu's default theme, with emeralds default, and compiz... I set the opacity in terminal to like 10%

what card are you using?, you are capturing ivs really fast, more than 100 per second, my capture packet rate is about 75 per second using stock wifi adapter, how can I improve this?

how do i install aircrack on ubuntu

sudo apt-get install aircrack

sudo apt-get install aircrack-ng

Just like tgfasmo said.

Only thing is, you need to make sure you have the correct drivers for injection. Check out madwifi.

You can install madwifi by typing in console:

sudo apt-get install madwifi-tools

hey you need better quality on your video try downloading Desktop Video Recorder as a torrent. i use it on my videos check them out.

Dikky, it's youtube's fault. check out the link under more info for a high quality version.

watch?v=3seUWVK_Tb0

ADD

&fmt=18

watch?v=3seUWVK_Tb0&fmt=18

hey, you could very well be my next greatest hero. I have the exact card and i can not find for the life of me drivers for this wireless device. I really need your help as you have done it. Any piece of information would be greatly appreciated. Thanks in advanced. This is actually somewhat urgent as i and doing UNI and am studying the advanced diploma of computer engineering i cant afford another wireless card. Thanks again.

Install the latest version of ubuntu.

Update it using the update tool.

DISABLE the driver that comes with ubuntu

Install madwifi-tools (sudo apt-get install madwifi-tools)

Reboot

when i type in sudo airodump-ng i get a message saying invalid argument, what do i do

Invalid argument?

Can you supply some more information?

Also, please type: sudo lspci | grep Wireless

Paste the output here.

i figured it out, my internal wifi card isnt compatable with sending attacks so i got a usb wifi adaptier and it worked perfectly.

Good to hear you got it figured out.

06:00.0 Network controller: Intel Corporation PRO/Wireless 4965 AG or AGN [Kedron] Network Connection (rev 61)

is my wifi supported?

i installed aircrack-ng on synaptic package manager, but it doesn't show up in the Internet list?

how can i install it?

sudo apt-get install macchanger

sudo apt-get install aircrack-ng

this you to install onl one time...or to tipe.

if you use ubuntu 9.04, you don't have to patch it. if it is lower version, you have to patch your network controller. i'm using intel wifi 5100 and it works good with ubuntu 9.04

hello there... i use ubuntu 8.10 on my msi wind...

i get No such BSSID available when i give aireplay-ng -1 30 -q 1 -e [ap] -a [mac adress ap] -h [my mac adress] wlan0

Where are you getting the mac address from?

Camtasia 5.0 I geuss

what program did you use to record this?

krecordmydesktop

does it work better with compoz than normal

recordmydesktop

it's about the same.

ok..

but how did you make the music stick to the video?

make the music stick to the video? eh?

u rocks dude ! :D