WiFi is getting so much essential as days are passing but WPA2-PSK may not be as safe as you think. There are a few attacks against WAP2-PSK. One of the most common attacks is against WPA2 is exploiting a weak passphrase and that’s sometimes also called Dictionary Attack. So Let’s see How to Hack WPA2-PSK WiFi Password Using Linux.

Cracking WPA2 wifi password is not really an easy task to do, you can’t crack it with a mouseclick as they show in movies and there is no software that will give you the password without some hard work but you don’t worry HACKAGON can show you how to crack it with few easy steps and we will do it using aircrack-ng.

Hack WPA2-PSK WiFi Password Using Linux Hackagon

When Wi-Fi was first developed in the late 1990s, Wired Equivalent Privacy (WEP) was created to give wireless communications confidentiality. WEP, as it became known, proved terribly flawed and easily cracked. As a replacement, most wireless access points now use Wi-Fi Protected Access II with a pre-shared key for wireless security, known as WPA2-PSK. WPA2 uses a stronger encryption algorithm, AES, that’s very difficult to crack—but not impossible.

The weakness in the WPA2-PSK system is that the encrypted password is shared in what is known as the 4-way handshake. When a client authenticates to the access point (AP), the client and the AP go through a 4-step process to authenticate the user to the AP. If we can grab the password at that time, we can then attempt to crack it.

Also Read ==> Top 12 wifi hacking app for Android
Also Read ==> 2 Best Methods to Hack Wi-Fi using Android Phones

Requirements: To Hack WPA2-PSK WiFi Password Using Linux

  1. Kali Linux or any Pentesting Linux Distros with aircrack-ng installed in it. if you don’t have aircrack-ng suite get it by this command in terminal sudo apt-get install aircrack-ng
  2. A Wireless Network Adapter that support monitor mode like Alfa 2W AWUS036NH, Alfa AWUS036H, wifiy-city 56G, or you can check this page here for card compatibility by clicking on >> Compatibility Drivers.
  3. A wordlist comprising of all the possible different combination of pass-phrases.

Let’s See How To Hack WPA2-PSK WiFi Password Using Linux

1) open up your Root Terminal as root and type ifconfig this will show you all the networking interfaces connected to your device.

ifconfig Hackagon

if your wireless network adapter is working fine you should see the “wlan0” the name may change if you have more than one connected wireless adapter.

2) Now to start monitor mode type airmon-ng start wlan0.

airmon-ng is a traffic monitoring tool.
wlan0 is your Wireless Interface.

After this command, It’ll start the monitor mode.

airmon-ng Hackagon

As it’s seen the monitor mode is working under “wlan0mon“, So this is your card name for now.

We can see there is a list of Process ID’s (PID) and that will cause trouble during the process so we’ll kill those processes by typing “kill <pid>” in my case, it is “kill 1210 1341 1591 1592“.

kill terminal command hackagon

3) To show the list of available WiFi Network Type airodump-ng wlan0mon.

airodump-ng is a WiFi Packet Capturing Tool.
wlan0mon is my Monitoring Interface.

airodump-ng Hackagon

airodump-ng will start capturing all packets.

airodump-ng captured packets hackagon

From the captured packets select your target and note its ‘BSSID‘ (BSSID = Base Service Set Identifier) and ‘Channel‘. Then stop the capture using “ctrl+c“.

4) Start capturing the packets of your target network by typing airodump-ng -c -w –bssid wlan0mon and in my case, it is airodump-ng -c 1 -w HACKAGONwpa2 –bssid 74:DA:38:24:CF:34 wlan0mon.

Captured WiFi Packets Hackagon

This will start capturing the packets and if you get the handshake then you won’t need the aireplay-ng command but in case if you don’t get the handshake while capturing of packets goes on, open a new terminal as root and type aireplay-ng -0 0 -a mon0.

aireplay-ng => Tool for Deauthentication, Fake Authentication, and Other Packet Injections.
-0 => Number Associated for Deauthentication.
0 => Deauth Count.
-a => bssid here we are trying to send a deauthentication request.
In my case, the command looks like aireplay-ng -0 0 -a 74:DA:38:24:CF:34 wlan0mon.

aireplay-ng deauth hackagon

After few seconds stop it using ‘Ctrl+c‘.
Now after we have successfully captured the WPA handshake it’ll look like:

WPA Handshake Hackagon

5) Stop the capture using ‘Ctrl+c‘ and type ‘ls‘ that would bring up all the current directories and files.

WiFi Captured Files Hackagon

Now, Select the file with ‘.cap‘ extension and type aircrack-ng -w
aircrack-ng=> Tool that helps in cracking the password.
In my case, the command looks like aircrack-ng -w /usr/share/wordlists/rockyou.txt ‘/root/HACKAGONwpa2-01.cap’.

aircrack-ng hackagon

Now it starts finding suitable passphrase.

WPA2 Passphrase Hackagon

And now all you have to do is to wait till you see the lovely news (KEY Found).

Summing Up All Step in few lines:

  1. ifconfig
  2. airmon-ng start wlan0
  3. airodump-ng wlan0mon
  4. airodump-ng -c 1 -w HACKAGONwpa2 –bssid 74:DA:38:24:CF:34 wlan0mon
  5. aireplay-ng -0 0 -a 74:DA:38:24:CF:34 wlan0mon
  6. aircrack-ng -w /usr/share/wordlists/rockyou.txt ‘/root/HACKAGONwpa2-01.cap’

Also Read ==> Top 12 wifi hacking app for Android
Also Read ==> 2 Best Methods to Hack Wi-Fi using Android Phones

Note: – This guide is only for knowledge purpose and shouldn’t be used for any illegal activities as we are not responsible for anything happens with this.

Hope you like this article. So, don’t forget to share it with your friends and also feel free to drop a comment below if you still face any kind of problem.

Hack WiFi using Android Phones

We’re living in an electronically digitized world, where the combination of WiFi Networks and Android is very common habits. WiFi network is actually a helpful option for wireless connection to the internet with the use of radio-wave of 2.4 GHz and 5 GHz SHF (Super High Frequencies). WiFi sometimes also known as Wireless Local Area Network (WLAN) and most modern WLANs are based on IEEE 802.11 standards, marketed under the Wi-Fi brand name. There is 99.9% chance for any password protected WiFi network to be hacked.

Hack WiFi using Android Phones

Also Read ==> Top 12 wifi hacking app for Android
Also Read ==> Hack WPA2-PSK WiFi Password Using Linux

So, Today We Come Up With The 2 Best Methods To Hack WiFi Using Android Phones:

Method 1# WEP Routers:

  1. Root a compatible device: Not every Android phone or tablet will be able to crack a WPS PIN. The device must have a Broadcom bcm4329 or bcm4330 wireless chipset, and must be rooted. The Cyanogen ROM will offer the best chance of success. Some of the known supported devices include:
  • Nexus 7
  • Galaxy S1/S2/S3/S4/S5
  • Galaxy y
  • Nexus One
  • Desire HD
  • Micromax A67
  1. Download and install bcmon: Download the app by clicking on “bcmon APK“. This tool enables Monitor Mode on your Broadcom chipset, which is essential for being able to crack the PIN. To install an APK file, you’ll need to allow installation from unknown sources in your Security Menu so:
  • Press the Menu button on your phone and tap Settings.
  • Scroll down to Security and tap it to open the Security Menu.
  • Scroll down and check the “Unknown Sources” box.
  • This will let you install apps directly from the APK file.
  1. Run bcmon: After installing the APK file, run the app. If prompted, install the firmware and tools. Tap the “Enable Monitor Mode” option. If the app crashes, open it and try again. If it fails for the third time, your device is most likely not supported.
  • Your device must be rooted in order to run bcmon.
  1. Tap “Run bcmon terminal”: This will launch a terminal like most of the Linux terminals. Type airodump-ng and tap the Enter Airodump will load, and you will be taken to the command prompt again. Type airodump-ng wlan0 and tap the Enter button.
  1. Identify the access point you want to crack: You will see a list of available access points. You must select an access point that is using WEP encryption.
  1. Note the MAC address that appears: This is the MAC address for the router. Make sure that you have the right one if there are multiple routers listed. Note down this MAC address.
  • Also, note down the Channel that the access point is broadcasting on.
  1. Start scanning the channel: You will need to collect information from the access point for several hours before you can attempt to crack the password. Type airodump-ng -c channel# –bssid MAC address -w output ath0 and tap Enter. Airodump will begin scanning. You can leave the device for a while as it scans for information. Be sure to plug it in if you are running low on battery.
  • Replace channel# with the channel number the access point is broadcasting on (e.g. –c 6).
  • Replace MAC address with the MAC address of the router (e.g –bssid 00:0a:95:9d:68:16)
  • Keep scanning until you reach at least 20,000 – 30,000 packets.
  1. Crack the password: Once you have a suitable number of packets, you can start attempting to crack the password. Return to the terminal and type aircrack-ng output*.cap and tap Enter.
  1. Note the hexadecimal password when finished: After the cracking process is complete (which could take several hours), the message Key Found! Will seem, followed by the key in the hexadecimal form. Make sure that “Probability” is 100% or the key will not work.
  • When you enter the key, enter it without the “:“. For example, if the key was 12:34:56:78:90, you would enter 1234567890.

 

Method #2 WPA2 WPS Routers:

  1. Root a compatible device: Not every Android phone or tablet will be able to crack a WPS PIN. The device must have a Broadcom bcm4329 or bcm4330 wireless chipset, and must be rooted. The Cyanogen ROM will offer the best chance of success. Some of the known supported devices include:
  • Nexus 7
  • Galaxy Ace/S1/S2/S3
  • Nexus One
  • Desire HD
  1. Download and install bcmon: Download the app by clicking onbcmon APK“. This tool enables Monitor Mode on your Broadcom chipset, which is essential for being able to crack the PIN. To install an APK file, you’ll need to allow installation from unknown sources in your Security Menu so:
  • Press the Menu button on your phone and tap Settings.
  • Scroll down to Security and tap it to open the Security Menu.
  • Scroll down and check the “Unknown Sources” box.
  • This will let you install apps directly from the APK file.
  1. Run bcmon: After installing the APK file, run the app. If prompted, install the firmware and tools. Tap the “Enable Monitor Mode” option. If the app crashes, open it and try again. If it fails for the third time, your device is most likely not supported.
  • Your device must be rooted in order to run bcmon.
  1. Download and install Reaver: Download the app by clicking on “Reaver App“. Reaver App is a program developed to crack the WPS PIN to retrieve the WPA2 passphrase.
  1. Launch Reaver: Tap the “Reaver for Android” icon in your App drawer. After confirming that you are not using it for illegal purposes, Reaver will scan for available access points. Tap the access point you want to crack to continue.
  • You may need to verify Monitor Mode before proceeding. If this is the case, bcmon will open again.
  • The access point you select must accept WPS authentication. Not all routers support this.
  1. Verify your settings: In most cases you can leave the settings that appear at their default. Make sure that the “Automatic advanced settings” box is checked.
  1. Start the cracking process: Tap the “Start attack” button at the bottom of the Reaver Settings menu. The monitor will open and you will see the results of the ongoing crack displayed.
  • Cracking WPS can take anywhere from 2-10+ hours to complete, and it is not always successful.

Also Read ==> Top 12 wifi hacking app for Android
Also Read ==> Hack WPA2-PSK WiFi Password Using Linux

 

Note: – This guide is only for knowledge purpose and shouldn’t be used for any illegal activities as we are not responsible for anything happens with this.

Hope you like this article. So, don’t forget to share it with your friends and feel free to drop a comment below if you still face any kind of problem.