Wi-Fi password hack: How to hack into WPA Wi-Fi and WPA2 | Free Cyber Work Applied series
Ғылым және технология
In this episode of Cyber Work Applied, Infosec Skills author Mike Meyers demos a Wi-Fi WPA key hack. He uses Aircrack-ng and Airodump-ng to access 802.11 WPA and WPA2 connections.
- For more free cybersecurity training resources, go to: www.infosecinstitute.com/free/
- Check out Mike's Infosec Skills training courses: www.infosecinstitute.com/auth...
0:00 - WPA and WPA2 security
0:25 - Problem with WPA and WPA2
1:36 - Humans use weak passwords
2:16 - What is a dictionary file?
3:08 - Setting up the Wi-Fi hacking demo
4:27 - Using airodump to grab WPA connection data
6:30 - Cracking passwords with aircrack
7:32 - Weak keys are vulnerable to attack
About Infosec
Infosec believes knowledge is power when fighting cybercrime. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and privacy training to stay cyber-safe at work and home. It’s our mission to equip all organizations and individuals with the know-how and confidence to outsmart cybercrime. Learn more at infosecinstitute.com.
Пікірлер: 201
Want to start learning cybersecurity? Check our all our free resources! infosecinstitute.com/free
Wow you put that in such an easy way to understand. Deserves a like.
Nothing is ever easy when you are up to no good. But I like it. Carry on.
@TheeSkinnyLegend
5 ай бұрын
This comment made me cringe my tits off
You are always fantastic. I got from you the first lessons and now I am a Certified Ethical Hacker. Thank you
@JacklineMutua-he5uy
3 ай бұрын
Teach me how to hack wifi password
@rickygarcia958
2 ай бұрын
What he say?
"Kebersamaan itu seperti permulaan, kemudian menjaga kebersamaan merupakan kemajuan dan bekerja bersama merupakan keberhasilan."
from where did you get that dictionary file?
Visiting and curious about two little disk's with instructions, which I found with while cleaning out old disk's, I believe I'll keep them in my safe lol
I didn't know the KFC kernel hacked
@johndoe6878
2 жыл бұрын
Daddy chill
@SoFiAEpIsOdEs0
2 жыл бұрын
🤣
@josephgitahi2090
Жыл бұрын
😂😂😂 nailed it
@By_Asahel
Жыл бұрын
😂😂😂
@LokiThePitbull
7 ай бұрын
Kernel = Linux Colonel = KFC
So i was trying to openline this newly bought wifi router with streamwatch basically i relied youtube i followed the virtual instruction and i disabled something and boom i can no longer access it, did not change anything only disabled, i factory reset the android tv, lost all the data instored, and i cannot connect any device with the router, it said ssid: unknown, pw: unknown, firmware: unknown everything there is unknown... I tried wps apps ip scanner, the IP have changed and i can access the ISP IP... Im screwed...
Where did get the info of that thing!! Why is it the dictionary are already there?
These type of encryptions are really complicated 😂😂
Esto más recuerda a las clases de Inglés
work fantastic ! Good
@SantoshKumar-ei8in
Жыл бұрын
Kaise hua
lets recap as this method of attack only works if the passphrase is already stored within your wordlist as aircrack basically cross reference all the different passphrase within the wordlist file to see if any of them matches. So by no means this type of method is meant to brute force its way in.
@BilalBaloch-tl2bp
Жыл бұрын
Exactly. There are dictionary files containing millions of passwords and takes lots of time to check for a password. If the used password isn't available in Dictionary then its just a waste of time I believe.
@webtv7831
Жыл бұрын
@@BilalBaloch-tl2bp Ye true, i would recommend give Evil Twin Attack a try
@ERMAC4482
Жыл бұрын
@@BilalBaloch-tl2bp how does that work? Like how can a text file or dictionary file enter into the password field .He doesn't really explain what's going on. Is it like entering a password and getting rejected only it does that millions of times ?
@identity2257
Жыл бұрын
@@ERMAC4482 has to do with the password's hash, if the hash matches a stored password then that's the password
@ERMAC4482
Жыл бұрын
@identity I know but what i am asking is it like a traditional password field where you only get do many attempts and you account gets locked out. How does that field allow you to try a million different passwords?
Hey there. Been following a lot of your material. The college I am attending references you quite a bit. I need to put together a project for a Wireless class and hacking WPA was something that came to mind. This is fundamentally what I was looking for. 2 questions. First is when you got to 4:46 you have airodump running. What was the command syntax for running it? Second question is the antenna on the hacker laptop. Was this anything specific. I have a desktop with a built in wireless antenna that I can use. Just checking if there is any special hardware I need to order. Thanks.
@tyjohnston5889
2 жыл бұрын
I'd also like to know but apparently we are still waiting.
@dksaltz15
2 жыл бұрын
@@tyjohnston5889 apparently.. waiting. where do we pay for the info lets cut to the chase
@tlzwaya
Жыл бұрын
its just sudo airodump-ng "interface name" you can get the interface name by just running airmon with sudo airmon-ng
@euclideschilombe3965
Жыл бұрын
@@tlzwaya As I can write the interface name?
@stuckpiginc
5 ай бұрын
@@tyjohnston5889you are not able to put built in wireless cards into monitor mode. You need one of a very limited list of wireless adapters to be able to do pretty much anything with WiFi pen-testing. You can do a Google search for monitor mode capable wireless adapters, personally I would suggest one that works on both the 2.4 and 5 bands
Guys ! A question please . Can we use this method on aircrack just for Window ?
how to get encrypted password
Does this work on CCMP as well?
Very nice video! Is there a way to activate monitor mode on windows to capture handshake?
@Mosesayegba
Жыл бұрын
☝️☝️ deals with all iphone/app problems phone tracking bypass EMAIL ACCOUNT RECOVERY SERVICE ALL SOCIAL MEDIA ACCOUNT RECOVERY SERVICE
@KooLaidStudios
5 ай бұрын
You need an wireless usb adapter that handles monitor capabilities
at 06:13, i have this window open and this same setting yet I dont get a handshake, just the data numbers keep increasing.. I tried to kick them off and nothing.. just data numbers increasing
4:48 Did you do it through Windows 10 and CMD?
where can i download the best dictionary file??
Thanks Sir.
i think is hard to know the right pass and add it to the list
Which dictionary is this? Where can it be found? Please thanks
Question: how can you yell there was a handshake? Like what data shows its a handshake and also I was under the impression when the handshake goes on there was a private tunnel so you couldn't even pick up packets . Like diffie Heman etc. Also my last question is when there are a text file with millions of passwords how does the router just give it away ? Is it actually trying to enter a password like a person would millions of times?
@Victoria-xr4nx
Жыл бұрын
I would advise you to reach out to Adriannotch for help
@jjazy3439
Жыл бұрын
the handshake is hashed and sent back and forth between the ap and client, and since it's transmitted through the air you can listen in and capture the hash, and then you can compare each word offline in a word list to the hash and if it matches, then you have the password
How is timmytimmy a common password 🤣
How I see the BSSID forn another computer?
can i have the app/link for that kind of hacking?
Which software is that
Can we decrypt the handshake file without guessing attack, without brute force attack or without wordlist ?
@Ahmad-ss5nc
2 жыл бұрын
No
@zhazhazha
Жыл бұрын
Yes
@f.3850
Жыл бұрын
@@zhazhazha how?
@romeooltean6614
Жыл бұрын
U can. Using the so called Evil Twin attack. Search on google.
im the grand-pa now
to simplify, what you did is to brute-force attack on the packets you captured. which shouldn't take too long even without the dictionary if the pass key is too short (only 8 chars)
Where do I get your dictionary file
How about taking that easy to remember password and encrypting it manually? (base64 or md5 for example) How much would that help?
@user-np6zh4cg8f
2 жыл бұрын
Helps a lot.
@user-np6zh4cg8f
2 жыл бұрын
That's what I use for some of my passwords, or use Caeser cipher or number to letter etc.
@user-np6zh4cg8f
2 жыл бұрын
Base 64/32 should definitely do the trick.
I like Human do this short pass 🤣🤣
He put the password in the dictionary, LOL!
@DiversificationPlus
2 жыл бұрын
You really cracked this one ...it's for proposal only Sherlock
@Fastnet111
2 жыл бұрын
Absolut ^^
@Why-fi7wx
Жыл бұрын
You can use cupp and make passwords depending on your target information
@Lucky_Kumar__
4 ай бұрын
Lmao
will this decrypt AES?
not sure if he mentioned this but you need a network adapter to do this
@phabodom1178
Жыл бұрын
Thoughts on the ALFA AWUS036ACS? Ideally for monitor/injection modes? Or is the ALFA AWUS036ACH (Type-C) the new "gold" standard? Both support both 2.4Ghz and 5Ghz, and both are Kali 2022.2 "compatible"
@artemjetman
Жыл бұрын
@@phabodom1178 I Don’t think I know enough to advise you here ;) Alfa one’s a pretty good. I think just look at the chipset. Seems to be more important than the brand…
@phabodom1178
Жыл бұрын
@@artemjetman they are both Alfa's and both have supported chipsets for both monitor and injection modes. I was jus trying to get a real world opinion from someone with actual "live" experience is all. No worries and thanks for the feedback.
What about the Dictionary?
Thanks dadi wale uncle🙏
thanks sir
You wrote Timmy in the dictionary and said trust me .. well i don't
Wait what are you talking about?
For strong passwords they would need a login portal to spoof or firmware exploit, or you're not getting in
@euclideschilombe3965
Жыл бұрын
yes
@b3at1
Жыл бұрын
They could use evil twin attack
@AbcXyz-rn2lz
Жыл бұрын
@B3AT that's spoofing captive portal while dos real AP. User needs to expect a web login; most routers don't have the feature and need DNS setup, so it's no good for most SOHO networks My network is 6e 6Ghz, wpa3, and client isolation. It basically takes an exploit, and then a reboot wipes any malware because boot rom signing NSA and CIA probably just feed handshakes to super computers using some AES time reduction attack; where they don't have a zero day
@adelianmuhammadadhawicakso578
7 ай бұрын
With mikrotik routers
Why don't you try to hack WPA2 it's hard right lol
Now everyone knows my password
Is it possible to hack wifi in arch linux?
Can DD-WRT be se up to reject the client after N unsuccessful attempts?
@phiux
5 ай бұрын
The dictionary attack is against the captured handshake hash using a word dictionnary at this point, no wifi is involved beside capturing the handshake process.
@AcvaristulLenes
5 ай бұрын
thx for the reply!
Sir. I'm using Kali Linux vmware External digisol 802.11n wifi adaptor In my pc realtek rlt8188su is installed it is not allowing me to go monitor mode. Please help me
@jeetard_2091
2 жыл бұрын
If your wifi supports monitor mode then instead of vm, boot into kali live. So kali can access it.
@big_sixes
2 жыл бұрын
@@jeetard_2091 i want to know more please
@Fastnet111
2 жыл бұрын
your chipset does not supports monitor mode.
@phabodom1178
Жыл бұрын
@@big_sixes watch this video then, thank me later
@romeooltean6614
Жыл бұрын
U need to connect the adapter to the vm or the adapter doesn't support monitor mode
anything for windows
hmm so it will not work if you use different languages and private name because the dictionary is in english.
@romeooltean6614
Жыл бұрын
U can use all kind of dictionaries. In any language
What is that root@kali: ~ window Is that like a cmd? Where can I find that?
@4n1l
4 ай бұрын
Sudo su and enter your kali passwd
How to download
these are all the previously connected how can i get the password which i have not connected
@Atulya_YT_
5 ай бұрын
Does your brain even function?
Sorry to all the Timmy's out there who's name got called a "simple word"
You entered your correct password in wordlist which have only 3 keys thats why it is fast and cracked but actually it is not happened😏😏
where can we get the dictionary data?
@doctor----oo-96d9
2 ай бұрын
Where is the dictionary got
Does WiFi hacking damage the phone's battery? Is there a virus that can damage the battery through Wi-Fi?
@DiversificationPlus
2 жыл бұрын
I don't think so
Sir i want this hilarious app
@Ayush_Yadav_90CR
2 жыл бұрын
Its kali Linux
@tokytoky5532
2 жыл бұрын
@@Ayush_Yadav_90CR its the os. Not the software
I just moved to a house and im trying to hack into my hidden wifi. My Ubuntu computer found the router and my dad told me what the password is but it says wrong password.. idk how im supposed to get into it 😅 anyways, gonna try everything i can and thats how i ended up here
@syedirshad1139
10 ай бұрын
So, this worked?
what's the software using in this video?
@ciresoiuldepetort9588
2 жыл бұрын
Kali linux
@medmed6063
11 ай бұрын
I think it's Kali Linux
5:00 - Oh lord you're showing everyone's personal info of their SSID and mac addresses...
@phabodom1178
Жыл бұрын
so are those "everyone's" you mention..
thats linux, how about windows?
this method is not accurate
Linux 2019.3 ?!
You just said pretty much ready to go . they are demanding money
Kon kon India hai aur sb sr k uper se ja rha hai 😂🤐
Wpa3?
@Alex-ln9on
Жыл бұрын
Good luck cracking that shit lok
wow nice boy
Go and ask password simple 🤷♂
@Ahmad-ss5nc
2 жыл бұрын
😂😂👍
I am sorry I am not see thise videos because my wifi network is very slow I am other wifi hack I am sorry
I have a .cap file for a wifi network Can you help me crack it??😂😂
Do I have to be connected to the network that I want to know its password?
@WalidsTech
Жыл бұрын
No
WPA is very good. Just no.
How to run airodump??
@Fastnet111
2 жыл бұрын
Learn Linux first ^^
@insanemoments1377
Жыл бұрын
@@Fastnet111 how tho
MR SANDERS HAS SEEN YOUR BROWSER HISTORY AND KNOWS WHAT HATH YOU TRIED TO STEAL AND JUDGEMENT IS UPON THOU
@giddyup9591
Жыл бұрын
Nah but fr dope vid
How can I Hack a Facebook account
So they have my wifi password - now what? Isn't traffic still encrypted? What can they do with that except using my internet connection?
@jemand8462
2 жыл бұрын
@NikkaGamesッ well, then I would just pull out the power of my router and that's it. If that's really the only problem, I don't see a big one.
@Rizal_G7
2 жыл бұрын
@@jemand8462 you can take the router to make it even more exciting lol hahaha
@GR4MPI
2 жыл бұрын
well, if they have visible computers between each other through their access point they can potentionally get in ur pc without much effort, and then do whatever they want for example look for your password which you remembered in google chrome :D
@hamburgerfatso
2 жыл бұрын
@@jemand8462 but you wouldnt know they had access, at least until it was too late
@lilulzsecl398
2 жыл бұрын
if a person hacked your wifi and you are connecting to that wifi they can get all your data on both wifi and your phone computers if you are connected
How much you talk 😭 come to the main point 🙏🏻
pola
Chachawow
Lol😂😂
5:09
Wi fi ত্রান্স লেদ😢😢😮😮😅😅
Hasta los gringos quieren hackear wifi Dios
All those who do such things are going to hell
@249xx
6 ай бұрын
no
Not connect 😭
only Hakers can hit this botton 👇
So basically only way to crack a wpa2 using any of these so call wifi hacking tools would be the actual password have to be already in a your dictionary wordlist. This sounds like a waste of time using these outdated method. There’s already a a different method that actually brute force the wifi key without having to use a wordlist, so using aircrack, wifite, reaver so on and so forth is a waste of time and useless.
@None-if3mo
5 ай бұрын
Can you tell me the method
me using wpa 3 everyone damn it
@MrYouTube.
2 жыл бұрын
My android hotspot have WPA 3
@ravinderrs2552
2 жыл бұрын
me using wifi user limit :D
@zhazhazha
Жыл бұрын
wpa3 does not guarantee protection, i cracked it using an evil twin
Only bla bla bla bla
shame on you. Promoting stealing
I don't get it
@davei2938
2 жыл бұрын
If you don’t get it neither do I
@jondonnelly4831
2 жыл бұрын
WiFi is vulnerable when you initially connect to network and send over your credentials. This process of connecting is called a 4 way handshake and it can be grabbed/recorded then replayed and inside it is the password in an encrypted state. Offline away from the target that handshake is replayed over and over and is a perfect copy. A dictionary full of real passwords stolen/leaked from big websites plus common words etc can be tried against the 4 way handshake copy offline on very fast computing hardware the attacker may own, (GPU acceleration.)Once the password has been found that works Offline against the copy of the 4 way handshake, it will work also on the WiFi network long as it has not been changed. WiFi passwords are usually not changed very often. Hope that helps.
@pises17
2 жыл бұрын
@@davei2938 The linux command? How can I done this with window cmd or Ubuntu app? I don't see the character which he types.
@User_-bv4fw
2 жыл бұрын
@@pises17 hacking is not easy and you wont learn from a video so understand that hacking will take time
@asia2see
2 жыл бұрын
You can hack your own wifi net work but not anybody else 😂
Wifislax 4.12 is the best way
Oldstuff
I have a .cap file for a wifi network Can you help me crack it??😂😂