I sucsesfuly break my wep key and I understand all but i can t get dammn station can u give me some advice.*

thanks for sharing guys

that's very simple

^^

i got no handshake what's the problem?

ok this is going to sound stupid but im new at backtrack and this stuff...im tires of openening new consoles after airodump-ng comand...so how u keep writing in same console ?? =)

Dude.. I've been scanning for 10 minutes and no stations is appearing.. I can't proceed to aireplay-ng.. what am I missing? or what is wrong? thank you for the reply.. :D

@albertvillafania nothing is wrong, nobody is on the network, its that simple

@Raventattoo I see. So you sayin that no one's using it?? hmmn, but when someone gets to use it and I do your tut, i could get a "handshake" thing. okay okay.. I hope this'll work. These is the only signal available in my place. :P

THANK YOU.

does this also work if the target has a passcode for their connection other than one that the wordlist has

(for instance 141j51klj51kj5159s00998 (this is just a random password someone might have))?

@ProTawN For this attack, the password has to be in the dictionary or wordlist. You may want to check out my latest video Reaver 1.4 + Backtrack 5R2 for a different method.

No downloads?

Hey, mad props to your video... very informational... when i type in airmon-ng it shows interface chipset driver but there is no names under them i am stuck on this step, any suggestions... please help... thank you...

how do I stop the airodump-ng scan?

@ssuperduperful To Stop Any Command Press " CTRL+C " ^__^

@asadkhan101 LOL thank you! I can never get a handshake on 10 plus connections...

How do you stop the airodump-Ng scan?

@alNness how many time can it take for bruteforcing?

So, here's a newb question, sorry: How do I go about extracting a rar file in BT5? I'm not sure how to open it, and don't know what command to put in the Konsole to extract it...

@alNness first: apt-get install unrar (if not yet installed) then you cd to the directory where you have the rar-file. E.g. cd /root/Downloads/

In this example, I'll use the filename: file.rar

just type: unrar e file.rar

No GUI-tool for linux yet.

good luck!

try john the ripper password cracker it will take some time to crack the password with aircrack

I'm using BT5 on VMware 8 and in the root folder no folders... :( :(

where can i find this word lists file? :(

How would I go about doing a bruteforce?

Do you need a an usb network adapter, or does it work fine with your regular internet connection?

@WyInH2VC how you bruteforce plz?

@11yiturma I use reaver to bruteforce. There are some videos on YouTube that show how. Just look up "reaver backtrack 5", or whatever version of backtrack you are using.

When I type in the console airmo-ng nothing pops up its just interface chipset driver

Help please?

Also what determines your k/s?? cpu/ram?? isn't there a way to do this with your gpu? I'm in a vm i think with 2 gb of ram and 1 cpu with 2 cores.. If i allocated more ram/cpu to my vm how much would it increase my k/s??

bruteforce is so ZzZ :(

Btw i can't get any handshake....because i can't find any ....

which file to download from filecrop.com/aircrack-wordlist­­.html?

GREAT! GREAT! GREAT!, There's one thing I want to ask you? how to download that program?

I have another question about wordlists. Is there another one I can use besides the darkc0de one? I've used it a few times and hasn't found the key.

@alNness filecrop.com/aircrack-wordlist­.html



I have a sort of off topic question...I have backtrack 5 dual booted with ubuntu 11.10 and when i choose to open backtrack it only takes up a portion of my screen...how do i fix this. Its really annoying

On retrieving the handshake part, is it necessary to get one, or can I skip that part, and go straight to aircrack to start the crack process? Because, I have tried to deauth a client on the access point numerous times, and I receive no handshake?

@alNness You must get the handshake. And also, you must have a beacon rate of at least 5-10 per second.

@alNness you MUST receive a handshake, which will get dumped into the ivs file, before you can go on to the next step with aircrack

if this videos doesn't work, try this ...

apt-get update

apt-get install reaver

use reaver, it's a WPS (wireless protected setup) hack, no need for hunting for passwords, look on U-tube on how to use it

wash -i mon0

this command will show you the networks u can penetrate with poor WPS setups, using reaver

other than backtrack what else do i need

@sohkseal lol, other than backtrack, u need a wireless card that is capable of 'monitor mode', good signals, patience, and the abilty to follow instructions carefully. Trust me, if you listen to Raven here, it'll work ..

How come when i type in 'airmon-ng' nothing comes up! It just says: interface, chipset, driver

Im using VirtualBox

@metalskateboarder965 airmon-ng start wlan0 or wlan1 or wlan2 etc ..

@metalskateboarder965 VirtualBox will not recognize your WiFi card. You either need to set up a dual boot or get a USB wifi card.

@lumin750 a WIFi adapter? I have one how do i set it up?

does the txt. files work as the lst. files for the dictionaries??

@lllBoRUSSlll yes it does, txt files are fine, a are .lst, same thing

this is why you should mac filter, enable WPA2, and disable SSID broadcast not hack proof but helps ;)

@miasmablk totally correct, enable mac filtering for your own mac and others that use the router, bravo

what is back track?

@15tgore it is a Linux based OS, stuffed full of network analysis software. Easily downloadable, install to a seperate HD or run from the DVD, its bootable. Recommend backtrack 5

whaaaaaaaaaaaaaaaaaaaaaaaaaaaa­aaaaaaaaaaaaattttt ?????

the maximum is is 512/2158 kbps ?????

O-o

That dictionary file "darkc0de.lst" contains thousand of hundreds duplicated words. That file is 17 MB large and after I removed all of duplicated it is only about 10 MB. Using duplicated phrases must have a great impact on how long does the cracking process take.

@tamias1982 well, at 1000 or 2000 words per second, does it matter? no

GREAT vid! I have a quick question though, when I enter airmon-ng nothing shows up, I am running backtrack through vmware and am assuming the virtual wifi adapter doesn't work, is there a way around this inside vmware?

@kdwolf77 Yeah im having the same problem!

y m i stick on handshaking process , Sending DeAuth to broadcast is successful but i m still waiting for handshake .

@microjimpower keep sending de-auths, sometimes works, sometimes not, its just luck at the end of the day, many variables

how to stop it

@TheSnake0011 Don't use wireless. Or watch this video, get smart enough to find out what these guys are up to, become smarter than them and defend yourself. :) Simple.

@JRCrowley lol, until they invent WPA3, you're not safe. Yes, don't use wireless, use wires ..

@geddylee501 It's all about layers. The more layers of security you have, the harder it is to break in. If you use The Club on the steering wheel in your car it reduces the odds of it getting stolen by 80% because the thief will simply not bother and move along to the next car which does not have a steering wheel lock. It doesn't mean he can't get around the Club. He doesn't need to with other cars out there. Geddy is an amazing dude, by the way. I've seen Rush 25 times. ;)

@JRCrowley ..... and the meek shall inherit the earth ...... :D

how do you get a word list into the desktop of backtrack 5 from windows 7 desktop

@Raventattoo how do u change color of text in BT5 ive looked for like an hour and cant find the command all i can find is the windows command can u plz sent me it or a link to where commands like that can be found

Hello, I am facing a problem. No matter how much I wait or how strong is my signal, I don't have station!! What should I do? I have tried many different methods but nothing worked. Thank you.

@BaSiLeMrP you need a new wireless areal

@ExJWPedo Thank you for your answer! I'm using a laptop, should I buy a new external wireless aerial? Is there any other solutions? Thank you again.

Hey, um. I did this process and had to stop mid way. The next day, when I decide to run airodump-ng, it didn't display any networks, and I left it to scan for several minutes to no avail. Can anyone help? Thanks.

@alNness airodump-ng mon0 should show you networks, otherwise you're not in monitor mode, or haven't started ur card up:

airmon-ng start wlan0, wlan1, wlan2 etc

@geddylee501 Well, I did all that and nothing still showed up that day. But, it fixed itself now. Thanks anyway for your input.

@alNness gr8, its all a bit hit and miss this black art, glad you have it going ..

Does this work with ubuntu and if so can you add the apt installes for commands thanks!

...or you can simply walk to your neighbour,pull out a gun and gently say, can i please have your fucking password or you go down.



@pacderollex lol, offer some beer or wine, promise not to tell everyone they are looking for porn and bombs, i'm sure they give you their wireless key :D

You should also mention that not all wifi cards will work, only ones that are able to inject ARP packets injection...I bought the most compatible one that the backtrack website recommended..So for all the ppl that this doesn't work for don't blame the distro blame your lack of hardware..

Great Video and Extremely great indeth talk about the topic..most ppl just play music and explain nothing to new comers..Props..

where can i download the wordlist?

How come my terminal says root@root instead of root@bt

@metalskateboarder965 cause you don't have it installed yet..u have to install it in order for it to have a hostname

THANKYOU! It took a while but WPA2 success! I have 9 gigs of wordlists and it wasn't found in darkc0de. In fact, I was searching at about 2500 words per second and it was found after 40 million tried. Thanks for the simple to understand recipe. A little trial and error, and patience is all you need. Thanks again.

@lumin750 loll your'e soooo lucky. If the word isnt in the list, it wont work. You can spend weeks trying every dictionary available with no success. Try WPS crack first, is my advice

@geddylee501 I have been trying to figure out how to use an external (outside of ram) way to delete the duplicates in my massive text file. I wish the backtrack forums were a little more helpful to newbies. Other programming forums are more helpful but bash you for trying to do what we're doing. Do you know how to sort or awk a 9gb text file? My ram kills the task when the new file reaches 2gb.

@lumin750 wow, you have your work cut out there with a 9 gig txt file. So sorry, don't know a way around your problem, hope someone else will pitch in a help you, gl lumin :D

Thanks so much

Have to say, this is the VERY BEST and easiest to understand step-by-step explanation of cracking WPA /2 with Backtrack 5 on the internet. Period. Believe me, i've looked around.

This video works perfectly. If you're getting problems, you haven't got a compatable wireless card. Simple. (I used a Netgear WG111v2 USB dongle btw, which works 100%) .. Because if you do, Raventattoo's video here and steps work perfectly. Nice Job pal. Rave on !

This may sound stupid but how do u stop the scan mine just keeps

Going

@crazyairsoftman press Ctrl c

can't get the handshake part wat do i do?

@Invaderd nothing. thats the way it goes, sometimes good, mostly bad

what if you don't have a way to access the internet at your place? or you're just using the slow wifi from the coffee shop downstairs?

also does "brute force attack" used for cracking passwords such as 453454356fsdf ?

Sorry, I've never tried this before and will this work with PC?

you are pro

!!!!!



why come my b5 doesnt look like yours?

@SensuiShinobu He customized the look of his desktop but everything remains the same Programs,features etc.

do u need some kind of proxy? or does the mac address cover that??

could u plz tell me how to stop while capturing

means after monitoring

How do u get more wordlists. Please send me a message back on how to get some more

@Raventattoo hey i tried airmon-ng but when i press enter there is no interface or something showed up :S? can you please help me?

Wont i need a massive wordlist to crack a passphrase of numbers and letters eg. 4eee0f7gfd like we have in the UK ? And also a lot of time ? May have to stick to WEP :(

@Blueone3452123 Yep ! Loads of time and huge wordlists. The way to do it is to get cracking (minimize aircrack to background) then when you leave your pc, hibernate it instead of shutting it down so aircrack can carry on where you left off when you come back:D

when i single out a bssid or a wireless connections so it could only show info on that specific

connections, do you know why it keeps showing multiple stations and instead of showing hangshake it shows fixed channel on the corner where it suppost to say handshake.. help

hey i was woundering i get an erro 132 can yuh help me with that

command to make aircrack-ng (brute force) ???

NOT wordlist.

i cant get the handshake going :P

at 06:00, how do I stop it?

@luddigus try CTRL + C ;)

My cousin left me with this Cisco WRT120N Router and the problem is he cant remember the username and password for it and the default password is also not accepting it. i really need to get into this thing and reset the to factory defaults.

thumps up if you are watching this video on your neighbor`s wifi/internet

@asadkhan101 :D :D

@asadkhan101 haha you made me laugh because i am actually doing it XD

@Carlovfx This is a cool hacking tool isnt it?? ^___^

@asadkhan101 I don't know, i used a simpler system to get the WPA2 key of my neighbours, but i am downloading BT 5 R1 to see what it can do on bruteforce.

The file u created to store data in, where is that folder?

Does anybody know  what's the name and make of the wireless card/USB? Please answer thanks xD

thank you for the video.

Need a little understanding.

when scanning networks, i see a lot of (not associated) bssid's as show in pic:

imgur dot com/ 6tsOZ

what exactly does that mean?

Great video, man. You really do a good job of walking us noobs through. Thanks!

superb =D

very nice tut thanks for this!!!!!

Do you have to buy one or it is already built in your computer?

i was waiting for 2 hrs and 20 mins while aircracking, i lost patience so i stopped it. maybe it was only going at 120-140 kps? i used wordlist instead of darkcode, should i dowload darkcode for wpa2? and secondly, the wpa codes in the UK are mixtures of numbers and letters e.g f5g384kp6. would i be able to crack these kind of codes?

btw brilliant video man, straight foward especially the handshake part

@FuckDaMedia well, because WPA can be any password, it makes cracking difficult. If it is a very unique password, it may not be found in a dictionary or wordlist. You may be better off brute forcing. There is a different method for that.

@Raventattoo can u tell me how to crack using brute force? i wud really appreciate it bro

@Raventattoo Hey! I have tried to find how to bruteforce WPA, but I can't find any useful commands or any step by step tutorials which explains how it works... Maybe you could help?

Thanks anyway! :)

1 plz help is this window desktop screen or of where i can find this screen on back track 5

2 is this start in windows

3 is this start on vmware work station PLz help

When I type in airmon-ng nothing is listed under interface, chipset, & driver. I just insalled back track, any suggestions?

Hi, it is possible to find a password that is not in the dicionary? how do you do to unlock? Thanks

@utilizador478 you can use a brute force method.

@Raventattoo what is the brute force method???

@Raventattoo

is there a brute forcing video using BT5?

@Raventattoo What's the program for that? Brutus or Hydra?

Thanks man, I have watched many many videos and was kinda drawing a blank. This video explained everything fine.

@bvanvorst1587 you are welcome!

What if the password is not in the wordlist? which is usually the scenario.

@AlwaheedKOD you can attempt a brute force attack.

Hi 1st of all great vid.. I have a question if you wouldent mind answering it 4 me its just when i type airmon-ng it gives me my interface as wlan0 chipset as unknown and a driver name which i cant remember lol then when i type airmon-ng start wlan0 it comes up my interface name again wlan0 but unlike your vid i dont get a mon0 interface in its place it says interface flags no such device. does this mean my wireless network adopter is not compatible with bt5. Thanks very much in advance

@MrPetemur if you can send me a screen shot or copy and paste what it says ...send me an email.

Isn't there a more efficient method? even if it's more complex, anything?.

@AlessandroTheCynical Yes, you can use rainbow tables, and you can use brute force methods.

it doesnt show any wlan0 or something plzz help

help??

what i most download?? i wil hack a wpa2 security and i have a 32bit what is this programs meaning??

Backtrack 5R1 GNOME 32bit

Backtrack 5R1 GNOME 64bit

Backtrack 5R1 KDE 32bit

Backtrack 5R1 KDE 64bit

@turkieboyhakan I would download the Backtrack 5R1 Gnome 32bit.

@turkieboyhakan Gnome and KDE are just visual differences. In this video he is using KDE. Gnome is generally the more user friendly one for some reason.

its not showing my interface name........ what should i do?

@BilalBilu420 you may need to purchase a cheap 10 dollar compatible wireless interface.

How do you get you text green in the Konsole?

WTF is backtrack?

@undeadkid123 an operating system used for "hacking"

@undeadkid123 h x x p: / / lmgtfy. com/?q=backtrack

After I type "airmon-ng" and click ENTER

I do not have anything info. under "interface", "chipset" or "driver"... that info is blank or missing. Can you help me with the issue? I have a Toshiba P205-S7804 Laptop. My network adapter is a Atheros AR5007EG and I have a Realtek RTL8101E. What is the solution to why I do not have info after type "airmon-ng"? Thank you for your help...

@dukeofsmooth did you get a reply for this question as i have the same problem

where do you download your password list? what specific website?

thx Raventattoo 

how long should aircrack-ng take for a wpa2 ? I got the wpa handshake but it has been going 3 days and still no match. My word list is like 2gbs. In my airodump-ng window i only collected about 47 of data , is that where i messed up ? Not enough data in my wpacrack.ivs file collected ?

@prissweb The data does not matter, 2gigs, you should be getting towards the end of the list after 3 days. It may not crack it if it has taken this long. Is the router name a common name?

@Raventattoo

hello, the router name is " sway " . thank you for your help and this awesome walk through. You have the best backtrack 5 video for newbies.