How to Hack Wi-Fi: Getting Started with the Aircrack-Ng Suite of Wi-Fi Hacking Tools

Ty so much,
I' following u and hope this guide will make me more haky :-)
Now i'm a lamer and i'd like to know something new and maybe better then only wifi hacking in the future.
Before my wireless card wasn't recognized by backtrack so i bought the adapter u told about and it works fine.
Well, i say u thanks and hope , like before, that u'll teach us more things :-)

Ps.
Sorry for my bad english but i hadn't time to use google translator :-)

when i type airmon-ng nothing show to me :/ whats wrong can u tell me pls ? or gimme your email and i send you message ..

You may not have wlan interface try downloading drivers compact wireless from google. better to search for version dated 26 june 2010 :)

hope it will work

Ma:

Did you check to see whether your wireless card is up and running?

Also, the command requires the start command with the name of the interface.

OTW

When I used the command ( airmon-ng start wlan1) the designation for my wireless adapter does not change from wlan1 to mon0 so im unable to proceed from there i do not get that part of thae reading at all

Andwele:

When you type iwconfig, what is your wireless adapter?

OTW

i am on wlan0 instead of wlan1 but when i use the command (airodump-ng start mon0) i keep getting "airodump-ng --help" for help.

i cannot proceed further than here because of this ...help plz !

Andwele:

First, you must put wlan0 in monitor mode.

airmon-ng start wlan0

Then, airodump-ng mon0

OTW

yeah thats exactly what i did and i keep getting --> "airodump-ng --help" for help

Andwele:

Are you using an aircrack-ng compatible wireless adapter?

OTW

Will this work on windows 8? And from where can I get the software.. I dont want any virus to sweep into my system...

I know I am talking very naive but this is the first time I am doing anything like this..

Thanks in advance!

Annanna:

This software is all on BackTrack. Its a Linux distribution with hacking and security tools. You can get it directly from here.

I have several tutorials on Null Byte on how to install and use it.

Welcome to Null Byte!

OTW

Thank you so much,

You will be seeing me more often now.

Command Airmon-Ng not find me and iwconfig command not act
There Efe origin afflicting thou shalt not work for me why?

DKTR:

Welcome to Null Byte!

What error messages are you getting?

OTW

I do not get an error message right to you it opens a table with full wifi
This opens a table but there are no where WIFI.

DKTR:

iwconfig should list your wifi interfaces. Then you need to put your wifi adapter into monitor mode with airmon-ng. After putting it into monitor mode, you then use airodump-ng to see all the AP's.

OTW

How do I do this??

Are you using BackTrack?

Yes I am using BackTrack

What happens when you type iwconfig?

It always
iwconfig
lo no wireless extensions.

eth1 no wireless extensions
No matter how many times I do it always

Are you running in a VM?

yes

When running BackTrack in a VM, you must have an external wireless adapter such as a USB wireless adapter. Otherwise, you will need to run BackTrack directly on the hardware to use your built in wifi.

OTW

Thanks,,,
Can I Dual Boot Kali Linux And Windows 8.1 To hack wifi password, I am using a laptop core i 3 ???

You need to run the tracks directly on your use hardware built in WiFi

How do I do this?

DKTR:

I suggest buying an ALFA card for hacking wifi. You will need one to do all my hacks.

You can also install BT as a dual boot system.

OTW

I have a wireless card D-Link How do I get ALFA card??
You can also install a dual boot system BT
How do I install BT?

DKTR:

The Alfa card is available from nearly all the electronic retailers.

I have a tutorial here on how to install Backtrack.

OTW

But I did not understand how I run Backtrack directly on hardware for your use built in WiFi
VM software

DKTR:

Did you read the tutorial?

Download BackTrack, burn it to a disk and then install on your hard drive. BackTrack will prompt you to make a dual boot system.

OTW

Disc DVD + R that good?
It can burn the Maya Attribute infest?
And I apologize with I load too much of you just did not get the manual ....

Airmon-NG is showing zero results. I'm assuming it's possible that one of the running processes air mon warned me about could be interfering. Would spoofing my MAC address have any effect on the dump? I'm also not connected to the Internet, but I really didn't think that would matter. I'm playing with it, but was just curious what your thoughts would be. Thanks otw

Are running in a vm?

Yes, took me a little while to get the adapter up and running, so I may have configured something wrong.

AWUS036NH
Bridged the adapter in virtual box
USB is active
And promiscuous mode is set to allow vms

What happend at iwconfig?

It looks exactly like the screenshot from the lesson. Only difference is my tx-power=20 dB.

Good. How about airmon-ng?

Showing mon0 and wlan0 with the same chipset and driver. Ralink RT2870/3070 rt2800usb - phy0

Also worth noting I'm running Kali on a 64 bit Debian vm

Woooow, detached USB, plugged it back in... Problem solved. I should know better than that. Thanks for the quick response and help OTW.

Dear master otw

Can you please add me on facebook, so you can give me some quick response, my name is sebastian nielsen with the squirrel picture to the left.

Ps. Im your biggest fan!!!

Sebastian:

Welcome to Null Byte! I'm glad you are enjoying my tutorials.

As you can imagine, I need to maintain my anonymity so I can only communicate with you through Null Byte. Sorry.

OTW

Dear Master otw

what I thought was that you could make a fake facebook account. where you could get a lot of friends who have questions about your "block" that you could give quick response to. and of course you need to write fake things down about yourself. So you can stay anonymous.

Why becouse i dont like to try the tutorial out and wait for you answer my quistions after some hours.
I hope you understand and might have changed my mind.
Sorry for my bad english xD

Sebastian;

I don't see how a Facebook page would get you a faster response. The limiting factor is me.

OTW

I would of said time, as you don't seem very limited lol

Okay master otw

Master OTW

For this tutorial would it be wise for me to disconnect myself from the internet before attempting it?

Hey Gumskull, not sure what OTW will say, but I've been successful using a cable LAN connection for my internet connection and then using the aircracking suite on wireless that way you can still read the tutorials, look up things etc.

Hope this helps

I agree with Existing Me.

My problem here is that my router is downstairs and my computer is upstairs and I don't have an ethernet cable long enough to reach upstairs without demolishing the house. Would it still work if I were to use a wireless connection?

You don't HAVE to be connected to the lan, you could always just download/ print out the tutorial

You make an excellent point there. My mind doesn't work the easy way around. Thank you.

So...we have all so painfully learned.

hey sebastian i think ur looking for a private tutor.........After reading all these comments ,i'd just like to say THANK U to OTW for your time and patients....hey guys u ever played 100 games of chess at once.......exactly

hi can tell me whats happening here thanks

root@kali:~# aireplay-ng --deauth 100 -a 58:#:35:#:50:C8 mon0
19:00:50 Waiting for beacon frame (BSSID: #:98:#:23:#:C8) on channel -1
19:00:50
Couldn't determine current channel for mon0,
you should either force the operation with --ignore-negative-one or apply a kernel patch
Please specify an ESSID (-e).

try dropping the - out of your channel switch
Also i Don't know if you HAVE to, but i always specify the ESSID

Try aireplay-ng --help, but mostly i think it's because your using "channel -1" instead of "channel 1"

Nice Article, but i am just curious to know that is it really necessary to switch wlan into mon mode ?

Because at one time , i used airodump-ng with mon mode enabled and the other time with mon mode disabled ( I used airodump-ng -c 1 -w "data file name" --bssid 00:16:*:B4:*:* wlan0 )

I couldn't observe any certain difference in the console terminals. Both the processes seemed same to me.

Bharat:

If you don't put the wlan into mon mode, you will be limited in what packets you can pick up and send.

OTW

Wow... Perfect and simply guide!

Hi OTW,

I have a problem with Aircrack ....my channel is always fixated on -1 even when i try to change it to a specific channel

Evil:

Check out this post on how to fix this issue.

https://forums.kali.org/showthread.php?20582-HOW-TO-FIX-Airodump-ng-fixed-channel-1-Kali-kernel-3-12-also-on-rt2870-3070usb

OTW

Evil,

At the end of your code use "--ignore-negative-one"
That is what worked for me.

Do i need all of these tools or i should jst have one of them

You need all these tools and they are all built into Kali.

can i just use wireless card built in? atheros ar9285. I use lenovo G480. I stuck at airodump. please help me

Usually not. It must

It must be aircrack compatible.

So my wireless adapter (ALFA AWUS036NH) arrived and on the command:iwconfig,it detects my wireless adapter.Then I typed airmon-ng start wlan0 and was assigned to monitor mode mon0,but when I typed in airodump-ng mon0,I do not receive any clients on the network.Any ideas OTW?

Peace.

Here is a blast from the past because I figured this...

"1 week ago
Oh, OK.. Ø
Plug & Play on that card not 100%
For your next set of questions maybe: https://www.google.com/search?q=AWUS036NH+linux+issues "

Thanks CH.

Frank:

Attach some screenshots so we can see what's going on and diagnose the issue.

OTW

Hello Sir,

I'm using Kali 2.0 in a Virtual machine. I've followed your tutorials. It's really great. But now I'm facing some problems.

I've attached a screenshot when I'm using this command below:

#airodump-ng wlan0mon

So, what's the problem here??? why I'm not getting any "BSSID", "CH" here???

Thanks
ME

Screenshot from iwconfig:

Screenshot from airmon-ng start wlan0:

Screenshot from airodump-ng mon0
Here's the problem,no wireless clients returned.

Thanks for your Help :)
Peace.

About 17 steps and it's as good as fixed.. (`)

CH:
And what are those 17 steps you're talking about?

Hi, I have one question, I have done access point mapping using airodump-ng, so i have collected so many aps, with different encryption some of are open aps. Is there any tools or web services are available for visualization ?

I found this website http://bit.ly/1Nbfgm6 but is there any other sources are available ?

Thanks!

Is there any software for windows 7? thx :)

what's the name of the very first terminal you open ?

Hello Sir,

One question: when i execute airdump, what does the part under the Aap list represent? The one with STATION column? Thank you.

That represents the MAC address of the client.

Which client? I see about 3-4 macs there and I'm not connected to any network. Clients of which network?

The BSSID is the AP and the station is the client.

Awfully sorry for bothering you this much, but what does the Probe column represent? Sometimes there are up to 10 probes on 1 client

hi pls help me im always getting this prb : got no data target network !! and then aircrack-ng quite the operation
so pls any solution !! and thank u

https://scontent.xx.fbcdn.net/hphotos-xpf1/v/l/t34.0-0/p206x206/11949786_681537258649516_29077981_n.jpg?oh=6d7a0719addbbf3b318fa16fd6c3bac4&oe=55E8B839

Hello!

After entering airmong-ng start wlan0 my wireless adapter won't change to monitor mode (mon0)..also i get a lot more output, for example encryption key, ESSID, access point etc..

So when i try airodump-ng mon0 the output is:

Interface mon0:
ioctl(SIOCGIFINDEX) failed: No such device

I tried some other commands, but nothing worked.

I'm running the Realtek Semiconductor Corp. RTL8191SU 802.11n chipset.

After some research I guess this chipset isn't compatible to aricrack-ng??
Please help me out.. i just want to be sure before buying a new adapter.

Thanks in advance.

If you are using Kali 2 , the monitor interface is named wlan0mon. If not, before you execute airmon start wlan, first execute airmon-ng check kill

and then airmon-ng start wlan0, to eliminate any interfering processes that might cause this. -ne py

airodump-ng mon0 not showing anything plz help.. searching for solution from 2 days still got nothing to fix this ...

Did you happen to read the week old comment right above yours?

Hello, I've been trying to get this to work, but it's not. I'm running Kali Linux 2.0 on a live persistent USB. Below is a screenshot of when I type iwconfig and airmon-ng start wlan0.

I have tried airmon-ng check kill btw.

Note that in the error message it references wlan0mon. The new version of aircarck-ng using that designation for the monitor interface. Try running airmon-ng start wlan0mon.

I've now tried that, and it doesn't show any errors with the airmon-ng start wlan0mon. But when I try airodump-ng mon0, or anything other than airodump-ng wlan0, it says that device is not found.

However when I try airodump-ng wlan0 is show the following:
ioctl(SIOCSIWMODE) failed: Operation not supported

ARP linktype is set to 1 (Ethernet) - expected ARPHRDIEEE80211,
ARPHRDIEEE80211FULL or ARPHRDIEEE80211PRISM instead. Make
sure RFMON is enabled: run 'airmon-ng start wlan0 <#>'
Sysfs injection support was not found either.

"But when I try airodump-ng mon0 or anything other than airodump-ng wlan0, it says that device is not found."

• airodump-ng wlan0mon

"anything other than airodump-ng wlan0" includes wlan0mon. The ones I tried are:

• wlan0mon
• wlan0
• mon0

It is getting complicated when it shouldn't. Have you ever packet injected or put that card into monitor mode?

This would help some if you could take the interfaces down and up and set modes manually. I am going to sleep if they have not helped you I will look at this again in few hours.

I have never packet injected or put this card into monitor mode. This is my first time ever trying aircrack-ng.

As for taking the interfaces down and up and setting them manually, I'm not sure what you mean. I've never heard about that before. But just take your time, or tell me if this is getting too annoying to help with.

Could my chipset have something to do with it? I think it's BCM43142. This is what I get when lspci -nn | grep Network:

07:00.0 Network controller 0280: Broadcom Corporation BCM43142 802.11b/g/n 14e4:4365 (rev 01)

Well broadcom is not the best chipset to start with. I am really sick ATM so Im having a hard time visualizing this issue. Pretty sure if you can not start a monitor interface then the card is not gonna work. I maybe wrong tho...

Okay. Thanks for you help and get well soon :)

If you are running persistent then reboot the machine type : init 6 <-- not reboot
When the machine comes back up try again w/o killing all the processes. Then let us know if that helped.

This card is compatible with aircrack-ng and packet injection yes?

Sadly that did not help. I don't know if it's compatible with aircrack-ng and packet injection. Where do I check that? Sorry, I have only been working with Linux for a few weeks, so I'm still a newbie.