Cracking The WEP Key With Backtrack 5

As announced before we would be writing related to wifi attacks and security, This post is the second part of our series on wifi attacks and Security, In the first part we discussed about various terminologies related to wifi attacks and security and discussed couple of attacks. This post will also show you how one can easily crack WEP keys in no time.


Security Issues With WEP


WEP (Wired Equivalent Privacy) was proved full of flaws back in 2001, WEP protocol itself has some weakness which allows the attackers to crack them in no time. The biggest flaw probably in a WEP key is that it supports only 40bit encryption which means that there are 16million possibilities only.

For more information on WEP flaws, kindly read the WEP flaws section here.

Requirements :-

Here is what you would require to crack a WEP key:

1. Backtrack or any other Linux distro with aircrack-ng installed 

2. A Wifi adapter capable of injecting packets , For this tutorial I will use Alfa AWUS036H which is a very popular card and it performs well with Backtrack

You can find compatible wifi card lists here.

Procedure :-

First Login to your Backtrack / Linux distro and plug in your Wifi adpter , Open a new konsole and type in the following commands 

ifconfig wlan0 up

where wlan0 is the name of the wireless card ,it can be different .To see all wireless cards connected to your system simply type in " iwconfig ".


Putting your WiFi Adapter on Monitor Mode

To begin, you’ll need to first put your wireless adapter into monitor mode , Monitor mode is the mode whereby your card can listen to every packet in the air , You can put your card into monitor mode by typing in the following commands 

airmon-ng start (your interface)

Example :- airmon-ng start wlan0

Now a new interface mon0 will be created , You can see the new interface is in monitor mode by entering "iwconfig mon0" as shown

Finding a suitable Target

After putting your card into monitor mode ,we need to find a network that is protected by WEP. You can discover the surrounding networks by entering the following command

airodump-ng mon0

Bssid shows the mac address of the AP, CH shows the channel in which AP is broadcasted and Essid shows the name broadcasted by the AP, Cipher shows the encryption type ,

Now look out for a wep protected network In my case i’ll take “linksys “ as my target for rest of the tutorial

Attacking The Target

Now to crack the WEP key you'll have to capture the targets data into a file, To do this we use airodump tool again, but with some additional switches to target a specific AP and channel. Most importantly, you should restrict monitoring to a single channel to speed up data collection, otherwise the wireless card has to alternate between all channels .You can restrict the capture by giving in the following commands

airodump-ng mon0 --bssid -c (channel ) -w (file name to save )

As my target is broadcasted in channel 6 and has a bssid "98:fc:11:c9:14:22" ,I give in the following commands and save the captured data as "RHAWEP"

airodump-ng mon0 --bssid 98:fc:11:c9:14:22 -c 6 -w RHAWEP

Using Aireplay to Speed up the cracking

Now you’ll have to capture at least 20,000 data packets to crack WEP .This can be done in two ways, The first one would be a (passive attack ) wait for a client to connect to the AP and then start capturing the data packets but this method is very slow, it can take days or even weeks to capture that many data packets

The second method would be an (active attack )this method is fast and only takes minutes to generate and inject that many packets .

In an active attack you'll have do a Fake authentication (connect) with the AP ,then you'll have to generate and inject packets. This can be done very easily by entering the following commands 

aireplay-ng - 1 3 -a (bssid of the target ) (interface) 

In my case i enter the following commands 

aireplay-ng -1 3 -a 98:fc:11:c9:14:22 mon0 


After doing a fake authentication ,now its time to generate and inject Arp packets . To this you'll have to open a new Konsole simultaneously and type in the following commands

aireplay-ng 3 -b (bssid of target) -h ( Mac address of mon0) (interface)

In my case i enter
aireplay-ng 3 -b 98:fc:11:c9:14:22 -h 00:c0:ca:50:f8:32 mon0

If this step was successful you'll see Lot of data packets in the airodump capture as shown

Wait till it reaches 20000 packets , best would be to wait till it reaches around 80,000 to 90,000 packets .Its simple more the packets less the time to crack .Once you’ve captured enough number of packets, close all the process's by clicking the into mark which is there on the terminal

Cracking WEP key using Aircrack

Now its time crack the WEP key from the captured data, Enter the following commands in a new konsole to crack the WEP key

aircrack-ng (name of the file )

In my case i enter 
aircrack-ng RHAWEP-0.1-cap

With in a few minutes Aircrak will crack the WEP key as shown

Once the crack is successful you will be left with the KEY! Remove the colons from the output and you’ll have your WEP Key.

Hope You Enjoyed this tutorial ,For further Doubts and clarifications please pass your comments

Read More

Free Hotfile, Fileserve, Megaupload Premium Link Generator

Free Hotfile, Fileserve, Megaupload Premium Link Generator

1

All of us have, at one point or another, used major file hosting websites like Megaupload, Hotfile and Rapidshare. The sweetest part and the reason why we wait for hours on end to download our required files from these links is 'cause we don't have to cough up a dime while doing so. Buying them is a far worse idea as breaking rules is and always will be our kinda deal!
Free Fileserve, Filesonic Premium Link Generator


 But there's a catch (yeah, all good things come at a price). Even if you do manage to wait for your download link to appear and somehow you manage to start your download, the speed is gonna be like one of those days when you are late for work and the old lady driver in the car up front just won't moooove! Yeah, you know what I'm talking about. I'm gonna tell you a way out.. Break all the rules and make a run for it!

Getting back to the topic, file hosting websites lag speed, restrict parallel downloading and make you wait before they throw a bone at you, that is if you a FREE MEMBER. These sites require pocket change if you want to download files without any restrictions and party all day long with free software downloads. 

But, as always, we have a solution for you. Now, you can download files all day long with a Premium account to satisfy all your software hunger and that too, without paying a dime (Yeah, you heard me). Simply, useFree Fileserve, Filesonic and Megaupload Premium Link Generator, copy and paste a Megaupload file URL and instantly download your file.

Free Fileserve, Filesonic Premium Link Generation technique

Follow the instructions below to break free and enjoy unlimited downloads for a day:

Step 1: Go to DebriDNS and register for an account. Verify and login to your DebriDNS account.



Step 2: Configure your DNS settings by going to your Control Panel -> Networking and Sharing Center -> Manage Network Connections -> “Your Connection name”, for e.g Local Area Connection.


Step 3: Right click on it and select Properties.

Step 4: Double click on IPV4.


Step 5: Click “Use the following DNS server addresses” and enter the following DNS addresses:
Preferred DNS Server: 85.17.255.198
Alternative DNS Server: 46.19.33.120

Click OK and Exit.

Step 6: Restart your browser and say a prayer 'cause you have entered the rabbit hole!
As for downloading a file, all you have to do it:

Step 1: Open Megaupload and you will find yourself logged in as a a Premium User (Huraaah!)

Step 2: Hit on Premium and enjooooyyyy!


If this Free Fileserve, Filesonic Premium Link Generation technique did not work for you, Kindly comment and let us know.

PS: This works for Hotfile too!

Read More

Download video from youtube with out software

Here is the easiest way to download any video from Youtube.

While playing the video on youtube.com, Copy its location from the address bar likewww.youtube.com/watch?v=sasad7657dms2

then add the word ‘kick’ between www. and youtube.com/link…….

EXAMPLE: www.kickyoutube.com/watch?v=sasad7657dms2

That’s it, Download without any other software or going to any other site, as their are many but this method is the best one according to me. Enjoy :)

Read More

Top Ways How Hackers Can Hack any accounts

Facebook is one of the most widely used social networking site with more than 750 million users, as a reason if which it has become the number 1 target of hackers, I have written a couple of post related to facebook hacking here at wildhacker, But some of the methods of hacking facebook are not working now days, So in this article I am sharing top methods on how hackers can hack facebook accounts in 2011

 

Hack Facebook : How Hackers Can Hack Facebook In 2011

So here are the top methods which have been the most popular in 2011:

1 : Facebook Phishing / Tabnabbing (New Phishing Method )

Tabnabbing is a modern type of phishing method used to hack websites passwords. As we all know normal Phishing attack is easily detectable on many site such as Facebook,Gmail, yahoo etc.

Like Facebook has implemented an extra code that validates the previous arriving URL and some basic functions. If it founds that page from which you arrived is a Facebook Phish or fake page, it displays a warning message to user that You have been arrived from fraudulent or fake page. So please change you Facebook account password immediately. So Victim easily came to know that was made fool by someone and he changes his account password again.

I have explained the step by step Tabnabbing ( New phishing ) process in my post below:

How To Hack Facebook Password Using Tabnabbing

2 : Keylogging

Keylogging, according to me is the easiest way to hack a facebook password, Keylogging sometimes can be so dangerous that even a person with good knowledge of computers can fall for it. A keylogger is basically a small program which once is installed on victims computer will record every thing which victim types on his/her computer. The logs are then send back to the attacker by either FTP or directly to hackers email address.

I have Shared two such FUD Keylogger on Wildhacker, which are as follows,

For more information visit Winspy Keylogger

For more information visit Sniperspy Keylogger for Windows

For more information visit Sniperspy Keylogger for MAC

3 : Stealers

Almost 80% percent people use stored passwords in their browser to access the facebook, This is is quite convenient but can sometimes be extremely dangerous, Stealers are software's specially designed to capture the saved passwords stored in the victims browser, Stealers once FUD can be extremely powerful. I have already explained about RATs and keyloggers to hack email account passwords, where you have to send your keylogged file to victim. In the same way, Istealer can be used to hack email account password and find passwords of various emails. I have provided link for software download...

I have explained the step by step IStealer process in my post below:

How To Hack Facebook Password Using IStealers

4 : RAT(Remote Administration Tool)

A RAT is also a shortcut called Remote Administrator Tool. It is mostly used for malicious purposes, such as controlling PC’s, stealing victims data, deleting or editing some files. You can only infect someone by sending him file called Server and they need to click it. By using this Rats we can easily hack email account passwords.

I have explained two RATS on Wildhacker,

DarkComet

CyberGate Rat

For basic Guide and FAQ about RAT click here

5 : Mobile Phone Hacking

Millions of Facebook users access Facebook through their mobile phones. In case the hacker can gain access to the victims mobile phone then he can probably gain access to his/her Facebook account. Their are lots of Mobile Spying softwares used to monitor a Cellphone.

The most popular Mobile Phone Spying softwares is:

Mobile Spy

6 : USB Hacking

If an attacker has physical access to your computer, he could just insert a USB programmed with a function to automatically extract saved passwords in the browser, I have also posted related to this attack which you can read by accessing the link below:

Usb password stealer To Hack Facebook Passwords

Facebook Hacking Course

Facebook hacking course is a facebook security course created by Rafay Baloch, which tells you exactly how how hackers can compromise your facebook accounts and what can you do to protect your facebook accounts from getting hacked.

Click here to get access to the course

So friends, I hope you have enjoyed reading the aricle.if you have any doubts about any one of the above trick of hacking facebook, please mention it in comments.

Enjoy HaCkInG...

Read More