Tuesday, July 24, 2012

Hack A Wi-Fi Connection From Windows


Hack A Wi-Fi Connection

Many windows users are digging up in the internet for hacking Wi-fi networks and they all show up using Blacktrack or other Linux operating system. I'm just sharing the method to Crack Wi-Fi networks using WEP security protocol. It takes up to 5-6 hours to crack a password or even 11-12 hours with having strong password.

Flaw in WEP:
Because RC4 is a stream cipher, the same traffic key must never be used twice. The purpose of an IV, which is transmitted as plain text, is to prevent any repetition, but a 24-bit IV is not long enough to ensure this on a busy network. The way the IV was used also opened WEP to a related key attack. For a 24-bit IV, there is a 50% probability the same IV will repeat after 5000 packets.
Depending on the amount of network traffic, and thus the number of packets available for inspection, a successful key recovery could take as little as one minute. If an insufficient number of packets are being sent, there are ways for an attacker to send packets on the network and thereby stimulate reply packets which can then be inspected to find the key. The attack was soon implemented, and automated tools have since been released. It is possible to perform the attack with a personal computer, off-the-shelf hardware and freely available software such as aircrack-ng to crack anyWEP key in minutes.
Generic weaknesses of WEP:
  • The use of WEP was optional, resulting in many installations never even activating it, and
  • WEP did not include a key management protocol, relying instead on a single shared key among users.

So Here We Start:

Tools Required:
                          1.Commview for Wi-Fi
                          2.Aircrack-Ng GUI

1.Commview for Wi-Fi
Commview for Wi-Fi is a powerful wireless network monitor and analyzer for 802.11 a/b/g/n networks. Loaded with many user-friendly features, CommView for Wi-Fi combines performance and flexibility with an ease of use unmatched in the industry.

CommView for Wi-Fi captures every packet on the air to display important information such as the list of access points and stations, per-node and per-channel statistics, signal strength, a list of packets and network connections, protocol distribution charts, etc. By providing this information, CommView for Wi-Fi can help you view and examine packets, pinpoint network problems, and troubleshoot software and hardware. 
We will be using this software to capture packets sen or receive over a network. The more packets you capture the better chances of cracking a password.You need a minimum of 1, 20,000 packets, The packets will be stored in .ncp format but using this tool you can convert it into .cap format.

Download Link: Click Here

2.Aircrack-Ng GUI-
                                Aircrack-ng is an 802.11 WEP and WPA-PSK keys cracking program that can recover keys once enough data packets have been captured. It implements the standard FMS attack along with some optimizations like KoreK attacks, as well as the all-new PTW attack, thus making the attack much faster compared to other WEP cracking tools.
 We will be using this software to use .cap to crack password.

Download Link: Click Here
 
Note: 1.Some of your anti-virus will report that it is a virus but that's a false positive.
         2. You need to run this software as an administration

Commview for Wi-fi

STEP 1.

 Install CommView for Wi-Fi. It doesn’t matter whether you install it in VoIP mode or Standard mode. I used VoIP.


It automatically installs the necessary drivers. Allow it to install.

STEP 2.

   Click on the PLAY ICON in the Left First.



                                 

STEP 3.

Choosing the Network (a new window should pop out)

STEP 4.

Choosing the Network
Click on the Wi-Fi network you want to hack in the Right Column and Click on CAPTURE.

STEP 5.

Capturing the Packets.
The windows should close now and you should see that CommView has started Capturing Packets.

STEP 6.

Saving the Packets

Now that the Packets are getting captured you need to save them.
  • Click on Settings->Options->Memory Usage
  • Change Maximum Packets in buffer to 20000

  • Click on the LOGGING Tab.
  • Check AUTO-SAVING
  • In the Maximum Directory Size: 2000
  • Average Log File Size: 20

Now CommView will automatically Start Saving packets in the .nap format at a size of 20MB each in the specified directory

STEP 7.

Concatenating the Logs
Since you are capturing a lot of logs you will need to concatenate them into once file.
To do this go to Logging and click on CONCATENATE LOGS.

Choose all the files that have been saved in your specified folder and concatenate them.
Now you will have one .ncf file.

STEP 8.

Converting .ncf to .cap

Now that you have one file with all the packets you need to convert it into .cap file for AIRCRACK to crack.
  • Click on File->Log Viewer->Load Commview Logs-> Choose the .ncf file
  • Now File->Export->Wire shark/TCP dump format.

Aircrack:

Now that we have captured the ivs and stored it in a cap file. We are going to crack it using aircrack.
We will use the GUI version of aircrack.
Extract the Aircrack zip file you downloaded.
Go to the bin and open Aircrack Ng Gui.exe (located in bin folder).

STEP 1. Choose the .cap file you got through CommView for Wi-Fi

STEP 2. Click on launch.

STEP 3. Just wait while aircrack is cracking the password.

STEP 4. Aircrack has successfully found the password.

STEP 5. Now Connect to the Wi-Fi network using the key.

Sources:

Sources :
  • http://en.wikipedia.org/wiki/Wired_Equivalent_Privacy
  • http://www.aircrack-ng.org/
  • http://www.tamos.com/products/commwifi/

No comments:

Post a Comment