Results 1 to 9 of 9

Thread: Cracked wep in 20 min,need help to go faster

  1. #1
    Just burned his ISO
    Join Date
    Nov 2007
    Posts
    6

    Question Cracked wep in 20 min,need help to go faster

    so ive crack "my" linksys router's wep encoding in about 20 min,but i see alot of people are doing it in about 10 min or less so can anyone tell me how to obtain or generate more data faster

    im using a compaq armada m700 series laptop with a net gear notebook card WG511T

    my comands are these

    airmon-ng start wifi0-------starts madwifi and puts the card into monitor mode ath1

    airodump-ng --channel 6 --bssid **:**:**:**:**(mac of target) -w capture ath1

    aireplay-ng -3 -b **:**:**:**:**(target mac) -h **:**:**:**:**(my mac) ath1

    aireplay-ng -1 6000 -e Joe(name of my router) -a **:**:**:**:**(target mac) -h **:**:**:**:**(my mac)

    aireplay-ng -0 10 -a **:**:**:**:**(target mac) -h **:**:**:**:**(my mac)


    aircrack-ng -n 64 capture-01.cap


    so can anyone help are there any tweaks with the command line i could do ???

    sorry but im kinda new at this

  2. #2
    Developer balding_parrot's Avatar
    Join Date
    May 2007
    Posts
    3,399

    Default

    How far away from the router are you, what kind of signal level do you have and what is the signal quality.

    All of those will affect the speed.

    There are other things, but it is best to start with us knowing the basics first.

  3. #3
    Just burned his ISO
    Join Date
    Nov 2007
    Posts
    6

    Post =-_-=

    ok well like i said its my router so im relatively close to it.....soo um about 8 feet

  4. #4
    Just burned his ISO
    Join Date
    Nov 2007
    Posts
    6

    Default opps

    Quote Originally Posted by Pyro_kitten View Post
    ok well like i said its my router so im relatively close to it.....soo um about 8 feet
    sorry

    and i get around a 48 pwr rating from it

  5. #5
    Senior Member shamanvirtuel's Avatar
    Join Date
    Mar 2010
    Location
    Somewhere in the "Ex" human right country
    Posts
    2,988

    Default

    try this

    do a bitrate injtest

    aireplay-ng --test 'CARDNAME' -B

    find the higher rate wich give 100 % or the highest value you can get......

    change your card to this rate before attack

    and add this switch to your aireplay-ng arp replay attack
    -x 1024

    this changes the default packet number wich is send by the attack (def = 500)

    after the next thing i can advise is if you got also a client ...... is ARP AMPLIFICATION

    chopchop a packet
    read the decrypted packet (xxx-dec.cap ) in tcpdump or wireshark in order to get the client ip

    build a forged packet with client ip as destination and 255.255.255.10 as source ip

    replay the new arp .......

    enjoy rates up to 1200 IVs /secs ......
    Watch your back, your packetz will belong to me soon... xD

    BackTrack :
    Giving Machine Guns to Monkeys since 2006

  6. #6
    Member
    Join Date
    Aug 2007
    Posts
    231

    Default

    You also need to tell us what version of the software that you are using.

    How fast are the IVs coming in?

    How many IVs did it take to crack the key?

  7. #7
    Just burned his ISO
    Join Date
    Nov 2007
    Posts
    6

    Talking Thanks

    ok thanks guys for responding so fast

    but umm i ran the atack again today and i switched the order i did them (because i read somewhere today,that sometimes it depends on your order too)

    and i got the 64-bit key in a little less then 6 min

    thanks though

    i will rerun the attack with the options you provided and lets see if i can get it faster XD

  8. #8
    Member
    Join Date
    Mar 2007
    Posts
    204

    Default

    When you inject how many IV's/second is Airodump collecting?

  9. #9
    Junior Member bwise's Avatar
    Join Date
    Nov 2007
    Posts
    69

    Default

    Quote Originally Posted by Pyro_kitten View Post
    ok thanks guys for responding so fast

    but umm i ran the atack again today and i switched the order i did them (because i read somewhere today,that sometimes it depends on your order too)

    and i got the 64-bit key in a little less then 6 min

    thanks though

    i will rerun the attack with the options you provided and lets see if i can get it faster XD
    so in what order did you do them ?

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •