Guys i have the same problem as UndeadKuntiz and i tried to connect using this passwork u know in windows but it cant connect so i dont know is the problem that the pass i worng or its just a wrong method or i dont know so plz help me thnx alot :D

haha...He did it the long way:) i know a short way to do..

soo close!! my only problem is that my #data is taking for ever, after 21 minutes i only got 160 of them but i got over 400k packets and 12k beacons. plz help!!

Hey man .. Great video, i learned alot from this : )

Im just wondering, when i enable the monitor mode, then it should say "monitor mode enabled in mon0".. In my case is only stands "Monitor mode enabled" without the mon0. I does¨nt got Wlan0, i got Eth1 ... Hmm? Any ideas to fix this ? Cause i cant use Mon0 :O

- HASC MatZ

I cracked " my own" wep ap and now I have free internet! :)

Hello. Thanks for tutorial video. But I need to ask How can i convert this numbers to understandable password?

I meant this "[94:17:DC:C8:90:17:24:A7:4C:0­E:65:C7:E0]" and I guess this is not hex.

Or even if, when i convert these numbers to decimal i got this "[148:23:220:200:144:23:36:167­:76:14:101:199:224]"

Still no meaning to me.

@UndeadKuntiz

Its the password take out the :'s he clearly states that be sure to watch videos all the way through

@UndeadKuntiz if tat is the key result you do not need to convert to decimal. just enter the key as the wep password but do not include the colons

I know this question has been repeated many many times, but I have also come to the point where I don't know what to do or what I am doing wrong, I do everything right up to packetforge-ng It gives me "invalid source IP" I don't know why its doing it, I'm trying to take a WEP from a neighbors router, "Gogetyourown" and its annoying me, does anyone know why its doing it? Btw I'm using a wireless adapter, connected to another open network, if that matters. Please reply, thanks.

@ProxySpiderHacks I am trying to do thath to and I have prob did you fix and know password of it pls replay I want do do this and I dont have time to do it if it dont works!!! PLS REPLAY!!1

Hey I just want to say great tutorial man! Best of all the backtrack youtube vids Ive seen yet, I like the WPA one too. Very clear and easy to follow. and thank you for not having obnoxious music playing, seriously, great job. Thanks

could u make a mac spoofing method please?

@fwed88 Simple,

ifconfig mon0 down

macchanger -m 00:00:00:00:00:00 mon0

ifconfig mon0 up

@crazyfrogg12 thanks!

wow jail time are you serious in what state or all america.how do you get cought watiching videos on you tube that involve hacking wep or the victoms internet provider tracks the person down how does it work ??

I am getting error message where I have to put aircracking fusion...please help

When I get to the step "aircrank-ng Fusi0n" it keeps saying file does not exist. I'm booting from a cd. Does this make a difference? What option should I use when booting?

@laos240s *aircrack

@laos240s @MrMythbuster1 Did either one of you actually type "fusion" ?

is this called packet injection?

very well done tutorial.we need more people like you explaining things! thank you so much for posting !!!

FYI to viewers; make sure you got another computer connected to the Wi-Fi network generating lots of traffic in order to capture a lot of initialization vectors quickly. Then you'll be able to capture enough data with the IVs you need for aircrack to crack the WEP key. More traffic = more data = more IVs = more better.

@SysAdmin86851

This is the case if your wireless network adapter doesn't support packet injection; usually the case if you're not using an Atheros chipset.

Then the arp request attack won't generate any data packets, because you're not able to actually inject the packets. The arp injection is to flood the AP w/ arp requests to generate traffic so you can capture enough IVs to perform the crack.

You can still do the crack, you must just rely on other clients to generate traffic for you.

well. I just got invalid destination ip addess

Hey, I have done this for 25 minutes, and after that I quit, I got:

45 #Data things (packages or so?)

I COULD NOT get a relayed packet,,,,

So I couldn't continue....

Could you tell me how I can solve this?

@9Lucario9 To speed it up i used wireshark to send ARP packets across my network

it´s true , you can get in deep shit if U even think about smacking someone´s web key

Hello, after the packetforge-ng arpy part, im getting "Invalid source IP address"

Nice video so far, except for this little problem.

thanks for the help

@matthewgutz hi i have the same problem am new in this .... did you find any solution ?

@drosass Sorry, i never figured this part out. I just used another method

Hey Houston -

Is there a reason I can never seem to get a keystream from the fragment attack?

very good tutorial, very well explined, but can you make another video showing other functions for backtrack, cuz all the tutorials for backtrack are for networks keys, i thing backtrack is more than that, i don't know, i'm new with backtrack.

hello, do you have Linux? or Virtual Machine VMWare station working now?

I have the alfa AWUS036H, VMware workstatin plus the Backtrack 3, and 4. I have all the programs, but say me. No wireless extensions. Need a help.

Sorry, this might sound stupid, but do you have to be connected to the network to do this or can you still do it offline?

@Apolakkiatis Non you don't need to be connected to the network to do this, backtrack "steal" the password of the network that you want to connect to use internet.

@Apolakkiatis To do this you need a supportted wifi card or a usb adapter (backtrack is a litle bit special with some wifi card or usb adapters, backtrack don't have supporte for all wifi cards or usb adapters).

Vary nice guide I walked my self through using it. While it may not be the best way to do it. It's still a vary useful way to go about it. I don't think it will work on my network I'm at 280,500 and it's still unable to crack the lowest WEP setting on my router. Keeps telling me it will keep trying every 5000 IVS.

why is it that everytime i type in aircrack-ng it display on the bottom killer. why would that be? can you please help me out!!!!!!

do you know how to do the same thing with wpa? by the way it was a good tutorial

do you know how to do the same thing with wpa?

AT THE END PART WHEN YOU USE AIRCRACK I GET A MESSAGE ON THE BOTTOM KILLED. WHY IS THAT? IM RUNNING BACKTRACK 4 ON IMAGE NOT THE CD. WOULD THAT BE A PROBLEM? CAN YOU HELP ME.

Wow Dude. Seriously. BEST Tutorial about this bro. Excellent work. Thank you! :D

i cant get 30000 data package what can i do?

LOL did anyone try this on their neighbour..?

Thanks a lot dude. I think what your doing here is great and you are making the best tutorials about this stuff. I really like how you explain everything and not just give commands. Great tutorials and keep 'em comin!!!

This is work for me! I'm using ubuntu and Realtek RTL8187 wi-fi card! :D



Its work for me! TY! :)

after packetforge-ng -0 -a *macaddress* -h *macaddress* -l *ipadress* -k *ipaddress* i get

bash: /usr/bin/packetforge-ng: input/output error

how did i fail?

@catamount21packetforge-ng -0 -a *macaddress* -h *macaddress* -l *ipadress* -k *ipaddress*

it should be > packetforge-ng -0 -a *macaddress* -h *macaddress* -l *ipadress* -k *ipaddress* -y fragment-xxxx-xxxxxx.xor -w filename [ENTER] :)

i have a channel conflict its says my card is on channel (some number) and the ap is on channel (some number). i can just keep resending the command untill it deauths but any other way around this?

Nice Video Man!

Watch My New Video Hacking wep With The New Version Of Backtarck!

The BackTrack 4 R1

/watch?v=BsEFieVUfFc

Excellent. Worked like a charm. Maybe next you could make a tutorial about spoofing MAC addresses in the case where a router has MAC filtering.

My first attempt at this seemed to have failed; until I reviewed your video again. The aireplay-ng fragment attack was VERY unsuccessful. I kept getting "no response" or "DeAuthentication" packets. However I was able to receive 137500 ARP packets by sending a CLIENT DeAuth packets from the WAP's MAC address and vise versa. Then I attempted to connect to the WAP AS the CLIENTS MAC. All while running the --arpreplay as the CLIENTS MAC attack. BUT then what? thank jerfguy@gmail.com

hi

great video.

can you show how to do packet injection?

hi i have the Netgear WG111v3 will this work with backtrack 4 final or beta cause i have like 5 diffrent backtracks but i cant seem to hack my wireless network

great tutorial, work perfectly =D

LOL... You need a clipboard history manager program. I'd recommend Parcellite.

followed instructions to a tee, but the #data is going very slow, it didn't shoot way up like on your video. been running for a few mins and it's only at 219?

hey i always get Invalid source MAC address "packetforge-ng --help" for help, after typing in packetforge-ng -0 -a 00:26:50:C4:EB:E9 -h 11:22:33:44:55 -l 255.255.255.255 -k 255.255.255.255 -y fragment-0421-192050.xor -w arpy

Can you tell me whats wrong?

@jackmihaf the MAC address after '-h' should be 00:11:22:33:44:55 instead of 11:22:33:44:55

Damn i always end up able to crack my pass. imagine someone else...

what do you do with the hex code?

baaaahhhhh ... damn .... i cracked my wireless :/

i love you- this is a such a great video

thanks for having a CLEAR VIDEO with VOICE- and not some moron with heavy metal music playing ---those videos SUCK-SUCK-SUCK! ~keep up the great work..your friend -Twogunnz

arf i got #Data 100 000 and (got 50 000 ARP requests 0 ACKS), sent 40 000 packets... 1000 pps) and after

aircrack-ng ESSID-0 Read 0 packtes.

:( why

Very very nice

your detail on what exactly what your doing and why makes your videos one of the best.

make more vids man your so easy to follow. we need more backtrack 4 vids..keep up the good work...

aircrack cannot decrypt .ivs file...i´ve more then 300000 data packges but it still nedds more... wat should i do???

@gogujatt go ahead and wait for more, but if it never cracks, then you may need to try a different WEP cracking method. Or it won't work at all.

@gogujatt need help? contact me or watch my video

The BackTrack 4 R1 watch?v=BsEFieVUfFc

anyone know if bt4 supports linksys Wusb54gs?

what about password list. where do i put that in use

great in detail work I'll subscribe and hopefully have a better understanding about how to better secure myself against hackers.

SUBSCRIBING.

Very, very good step by step video explaining what each command does (all other videos don't have that detail). Keep up the good work!

um, just wondering, the data is going up very slowly when i do this, any reason y?

Excellent Video

it keeps saying No answer, repeating...

20:29:12 Sending fragmented packet

20:29:14 No answer, repeating...

20:29:14 Trying a LLC NULL packet

20:29:14  Sending fragmented packet

20:29:16 No answer, repeating...

What should i do?

@pyroman2336 I had this same problem too, all you do is when youre asked if you want to use this packet, look at the size of the file. if its not around 200 or 300, but instead is like 70 or lower, press n for no instead of y, until you get a packet of a bigger size. then youll get the fragment .xor file. it might take a couple of tries, but it wont take nearly as long as before.

@pyroman2336 do the aireplay AP command :)

Best tutorial I've seen, great job man.

thanks......good job!!!

Hi!

Does the Alfa Network AWUS036H card work for that kind of programms? For 100%?

Yes it does, very well.

But this one is only 23 dollar:

dealextreme(.)com / details.dx / sku.20158

and workes perfectly as well.

@1234backtrack thats the best card to use. you can even increase the range if you wanted to (iwregset BO, iwconfig wlan0 txpower 30)

IF it takes forever and ur gettin

19:00:30 Data packet found!

19:00:30 Sending fragmented packet

19:00:30 Not enough acks, repeating...

19:00:30 Sending fragmented packet

Stop and check which packets ur after. John Houston is it from any host or is it packets from a specific mac address e.g. FF:FF:FF:FF:FF:FF - cos it was working, I had a key, and then my laptop froze. Now, when I retry the ACK, it takes over 2 hours, and no key - am I hammering server too hard?

Cheers, Monstah

So I was gonna try this on my own network but my own BSSID doesn't show up. lol what do I do? And I was playin around on my buddies but he's got the mac addressing on. Were you still gonna do a video on that?

you can just use the tool macchanger on bt4 and bt4 and so on. very simple stuff.

does this work for WPA as well?

Worked A Charm =) i salute You Sir =)

Key Found! [94:17:...]

what i must do with that?

is that a hex code??

You dope. That's your key!

Thanks a ton for the tutorial. It works great.

I wonder if there is an easier way to do this...

Do you know how I can get it to paste within a script? That way, I can just copy (right click, copy) the mac I need, and run a script which pastes the mac address where needed in the command instead of typing out the entire command. Again, THANKS for the great tutorial!

yh there is, a program on backtrack 3 called spoonwep

Great video excellent clear instruction and screen, can you do one on a clientless attack and show how to move a dictionary file from my windows machine into the vm ware backtrack 4 for wpa crack

HELP this is what i keep getting sat there for hours.THANKS Saving chosen packet in replay_src-0802-185936.cap 19:00:30 Data packet found! 19:00:30 Sending fragmented packet 19:00:30 Not enough acks, repeating... 19:00:30 Sending fragmented packet 19:00:32 No answer, repeating...... 19:00:47 Sending fragmented packet 19:00:48 No answer, repeating... 19:00:48 Still nothing, trying another packet... Read 536 packets....Couldnt fit it all in

you need t read mor packes...

536 will not be enough. try 50-100 thousand

I get to the very end, to the aircrack part, and it tells me open failed, no such directory, like its not writing my file to the right place or something... would this have something to do with me using backtrack 3? everything else was the same up to this point

WOW...IT TOO SO LONG..THERE EASIER WAYS TO DO THIS...AND LESS TIME CONSUMING xD...

it is true there is an easier way, but he did a really comprehensive and complete explanation

Hello, I am interested in learning networking and security starting from a basic level. If anyone have any links to basic and intermediate tutorials, please let me know.

I look forward to your videos on MAC filtering and using word lists for WPA. The information on these topics is very spread out through the internet, outdated, and not nearly as well done as your video. Thank you.

This tutorial is the best I've seen on the internet regarding this topic. All of the information is always disjointed or broken apart in outdated forum posts, thank you for combining it into this informative video. :-) Are you planning to do one on MAC filters or using word lists for WPA?

I have to say I rather liked Backtrack 2... never really liked 3. What are you thoughts on 4. (yes I am aware its beta). Also I've noticed that the methods for the same procedures are different for each distro. Where do you get your documentation, on the wiki site?

Oh and GREAT tutorial! Your recoding comes across the clearest I've seen yet. I don't even have to switch to high-def... Keep em comming! I'm sure people will catch on once you get your vid numbers up!

Personally, I rather just keep up with their current distro, as it usually contains better tools and more hardware support. You can add it all to BT2, but for most users out there, it's just easier to download something already done for them. Most of the documentation, I just research. Google is your friend is something I tell everyone. I do use the wiki for some sources though.

Well thank you, appreciate the feedback on the quality of the video, so I know what i need to do. :)

Google is my friend? Maybe at one point but I've used it so hard its now my b!tch. :)

Thanks for the opinion. Yeah, the hardware support is a big one. To be honest finding the right stuff for BT2 was more trouble than it was worth. Also theoretically, couldn't you use all the hardware support from Ubuntu 9?

Yes, you very well could. You would just have to install the tools yourself instead.

wow good job it is a fine tutorial here..... salutes from Puerto Rico my friend u rock!!!!! btw if i want to do this what tools i should install? aircrack..... and what more?