Ok .... Now you know how to start BacKTracK and hack WEP , WPA and WPA2 Encryption
In this tutorial i will show you how to hack a WiFi with reaver if its WPS is on.....
Now we are good to go ......Put your wireless card into monitor mode which i mentioned in previous post.......Then we need to know the Wireless Networks with WPS avaliable in our area .....
1-- For this give command = wash -i (interface)......See below example
The wireless networks with WPS avaliable will be enlisted .... See above image ,, There is a Network name GILL with WPS Locked No and we will be using reaver on it............press ctrl+c
2- Now ...we will use reaver ..give command = reaver -i (interface) -b (BSSID) -vv -c ( channel ) -L
See below image and output will be like this.. reaver will start working..... i recommend -L to use in command because it tries some more pins than the limit set by the targeted router
3-- Now if the limit has reached and reaver will be unable to try anymore pin.....Press ctrl+C... Again give command = wash -i (interface) and this time output will be as below with WPS Locked Yes
4-- ....you need to do something which can actually reset the pin limit .....use this command = mdk3 mon0 a -a (bssid) -m ....This floods the target AP with fake clients and results in the reset of the limit
Mine got reset at around 200000.. you need to know when your AP reset
Now you will again see WPS Locked No
You have to repeat this every time WPS gets Locked
Even if you want to close BacKTracK and want to continue later , you can just copy file from usr/local/etc/reaver and the format will be .wpc....Again just paste file then you are good to go from where you left
Feel Free 2 ask any question
No comments:
Post a Comment