Nice Vid

Hello! i want to as u if we are using defrence essid after we are create the first essid how to intergred same crackwpa with defrence pcap handshake file.

this only good for popular essids like a netgear , default ,linksys etc..cause computing even longer than bruteforcing,no need todo that for onetime hack.

when i type airolib-ng crack wpa --import passwd /root/wpalist.txt is reading......the a 64 milion dictionary list,how many time need to wait?

@TEO135 It depends on your cpu but it can be quite long.

Thanks for the tutorial. Seeing 30,000 keys per sec convinced me to spend most of my day learning this along side the wpa hacking technique for back track 3. I can say I'm a qualified script jockey now :-). Sadly though, at the end I found all this very redundant. Compiling and verifying the database takes about as long if not longer than regular aircrack-ng cracking. Only difference is this one does it all behind the curtains first. More work for same effect, skip this one fella's.

@norby16

is there a way to add a diferent ESSID to a previously created DB? or do i have to do the same proccess for every eSSID i deal with?

@lucent6408d In fact this is interesting for common ssids. You can precompute your PMK's and run the crack against multiple handshakes, so you save a lot of times.

i have a question. I downloaded wordlist file to my pc already but how i load it in backtrack?

I created file crackwpa but it show that crackwpa doesn't exist. And also where can i find test.txt file? i have backtrack4 now, what should i use? BT1,2 or 3?

i need a cluster :(

One annoying thing I found about airolib-ng is it doesn't support SMP! so you have to build a database with only one cpu @ 100% while the others are sleeping, would be nice to have them all working

Will this method work without having to capture a three way handshake? Will this method work without a client associated to the access point? If so pretty cool, thanks for the vid!

You always need a valid client to get the 4 way handshake, the handshake is a packet exchange between the ap and the station so you need both of them to get it...

easy for me:)

okay i got the WEP key that i cracked and its

AE:XXXXXXXXXXXXXXXXXXXXXXXXXX how do i connect to the host of this key?

Hello I wondered if you could help me. I have Linux Mint & I have installed "Aircrack-ng 1.0 Beta 2 (deb)

I can compile a Password/Essid database with "Airolib-ng" But after I've done this I go to do "Airocrack-ng --r (database file) (cap file)

BUT I don't have a --r option ? I only have a --w option (standard dictionary/wordlist) what's going on ????

I've checked that aircrack --ng as also bean upgraded to Beta 2, witch it as ....i don't understand ???

Hummm... You need sql database motor (3.4.0 or above) to run correctly airolib-ng. Maybe your problem is there. Anyway, Backtrack 3 is available for download now, and it includes updated aircrack-ng suite so you can run airolib-ng in a few seconds... Have a look at "Remote exploit" ;)

i guess my first comment didnt go through. Anyways, thanks for the vid man! got my k/s to go up to 25,000! Very nice.

One problem i ran into though is that aircrack stopped checking passwords at ~24,000 words. Why is that, did the airolib batch go wrong somewhere. 24,000 words was only around the letter "c" in my wordlist.

I noticed that when i did the batch after about 5 minutes it said 25000 PMK or something but i didnt get a prompt after that, was it still working on the batch? Thanks