Professional Documents
Culture Documents
Ceh Wpa2
Ceh Wpa2
CEH-WPA2
Configuration:
Objectives:
Tools:
Backtrack 3
Airodump-ng
Aireplay-ng
Aircrack-ng
Preparation:
1
©2011-BR
Detailed Steps:
1. Logon to your BT3, and then open a console , check your wireless configuration
using this command : iwconfig
2. Take a look at ‘Mode:managed” , this be must changed into the monitor mode, type :
bt ~ # airodump-ng rausb0
2
©2011-BR
5. Choose only one wireless network to capture. Press Control-C to stop capturing.
6. In this example we’re going to capture all data traffic of belly-wlan network (mac address :
00:1C:DF:D0:A4:9C), operating at channel 11, and then write the capture result to :
belly-wlan.cap file
3
©2011-BR
3. To crack WPA2 network, you must wait until theres a HANDSHAKE packet.
4. To enforce a handshake, you can just disconnect one client, when that client is
reconnecting, there will be a handshake. Use ‘deauth’ attack to disconnect a client :
4
©2011-BR
5. But you need a dictionary file to crack WPA. So create a small dictionary file for
sample :
bt ~ # nano dictionary.txt
5
©2011-BR