Page 1 of 2 12 LastLast
Results 1 to 10 of 20

Thread: WEP Help

  1. #1
    Junior Member
    Join Date
    Jun 2009
    Posts
    30

    Default WEP Help

    Hello, Im Praticing and attacking my own wireless 128 WEP network but I cant get the key heres my steps

    1. airmon-ng stop wlan0
    2. ifconfig wlan0 down
    3. macchanger 00:11:22:33:44:55 wlan0
    4. airmon-ng start wlan0

    Then I get a moniter mode with mon0, i use it so i can be on the wireless network at same time

    5. airodump-ng mon0

    I copy the bssid

    6. airodump-ng -c 6 -w "filename" --bssid "bssid number here" mon0

    New shell

    7. aireplay-ng -1 0 -a "bssid number" -h 00:11:22:33:44:55 mon0
    8. aireplay-ng -3 -b "bssid number" -h 00:11:22:33:44:55 mon0

    New shell

    I waited for packets to get to 200,000
    9. aircrack-ng -b "bssid number" "filename-01.cap"

    I tried starting at 10k and up to 200k + and it always failes
    am I doing something wrong?

    I have 3 Shells Open

    1.



    2.



    This shell just keeps going on and on and on never stops Reading and Sending new Packets



    3.


  2. #2
    xi4n9
    Guest

    Default

    You can use wlan0 instead of mon0 to try.besides, the wireless modem it's without any client, why dont u use chopchop or fragmentation?

  3. #3
    Just burned his ISO
    Join Date
    Jun 2009
    Posts
    6

    Default

    @ a quick look you dont seem to be doing anything wrong, the obvious thing to tell you is to w8 for more IVs.

    Moreover you shouldnt start cracking @ about 10k, but you d better w8 for 30k to start cracking. Thats because aircrack does more brute-forcing than applying statistical methods when it fails to find the pass the first times.

  4. #4
    My life is this forum Barry's Avatar
    Join Date
    Jan 2010
    Posts
    3,817

    Default

    Quote Originally Posted by djohn View Post
    @ a quick look you dont seem to be doing anything wrong, the obvious thing to tell you is to w8 for more IVs.

    Moreover you shouldnt start cracking @ about 10k, but you d better w8 for 30k to start cracking. Thats because aircrack does more brute-forcing than applying statistical methods when it fails to find the pass the first times.
    It's wait.


    To the OP, don't change your mac, figure out how aircrack works first, then try hiding from the neighbors.
    Of course, if you really wanted to have some fun, go to Wal-Mart late at night and ask the greeter if they could help you find trashbags, roll of carpet, rope, quicklime, clorox and a shovel. See if they give you any strange looks. --Streaker69

  5. #5
    Member imported_vvpalin's Avatar
    Join Date
    Apr 2009
    Posts
    442

    Default

    Second pic says it all, just do some more reading .. you'll get it.

    128 > 64
    Using backtrack for the first time is like being 10 years old again with the keys to a Ferrari.

  6. #6
    Member kazalku's Avatar
    Join Date
    Feb 2009
    Posts
    416

    Default

    Well, as he knows that the key is 128 bit most probably the AP belongs to him, not his neighbors'.

    To sbolen28, change your password to 64 bit..... and follow Barry's advice. Additionally, try adding -z with aircrack command (search PTW attack)
    If you can't explain it simply, you don't understand it well enough -- Albert Einstein

  7. #7
    Member
    Join Date
    Jan 2010
    Location
    The new forums
    Posts
    462

    Default

    Try -z PTW method with aircrack

  8. #8
    Junior Member
    Join Date
    Jun 2009
    Posts
    30

    Default thx

    Thx all for the advice, gonna try it now, and ill let you know what happens

    and yes Its my wireless that im attacking, thats how i know its 128

  9. #9
    Junior Member
    Join Date
    Jun 2009
    Posts
    30

    Default

    I tryed using the

    aircrack-ng -z --bssid 00:1CF:F8:1D:B4 test-01.cap

    Still didnt work with 150k packets

    so gonna try again without changing to 64bit, and try the -z, and if that dont work ill try not putting in a fake MAC.

    Ill let ya know

    sean

  10. #10
    Junior Member
    Join Date
    Jun 2009
    Posts
    30

    Default still nothing

    Get the Same
    hers the screen shots with thte new changes

    I did all the same steps EXCEPT

    I didn't Change my MAC

    and i changed my key from 128 to 64bit

    From one of the posts, says my answer is in the second picture.. I tryed reading up on aircrack-ng and ect... But I cant seam to figure what i'm doing wrong.

    PS. Im using mon0 indead of wlan0 because, mon0 is moniter mode. when Airodump-ng wlan0 is running i cant connect to my wireless router. So i have to use airmodump-ng mon0 then im able to connect to the router and send packets.


    Pic1-

    Pic2-

    Pic3-

Page 1 of 2 12 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •