How To Crack A Wi-fi Network's Wpa Passhow To Crack A Wi-fi Network
This document was uploaded by user and they confirmed that they have the permission to share it. If you are author or own the copyright of this book, please report to us by using this DMCA report form. Report DMCA
Overview
Download & View How To Crack A Wi-fi Network's Wpa Passhow To Crack A Wi-fi Network as PDF for free.
More details
- Words: 3,407
- Pages: 9
Loading documents preview...
1
ADAM PASH (HTTP://ADAM-PASH.KINJA.COM) on LIFEHACKER (HTTP://LIFEHACKER.COM) 2,831,107 44 166
(http://adam-pash.kinja.com)
How to Crack a Wi-Fi Network's WPA Password with Reaver (http://lifehacker.com/5873407/how-tocrack-a-wi+fi-networks-wpa-passwordwith-reaver)
RELATED
Y our Wi-Fi network is your conveniently
walking past your home, you secure your
How to Crack a Wi-Fi Network's WEP Password with BackTrack (http://lifehacker.com/5305094/how-
network with a password, right? Knowing, as
to-crack-a-wi+fi-
you might, how easy it is to crack a WEP
networks-wep-
wireless gateway to the internet, and since you're not keen on sharing your connection with any old hooligan who happens to be
password (http://lifehacker.com/5305094/how-to-
password-with-
with-backtrack), you probably secure your
backtrack) (http://lifehacker.com/5305094/how-to-crack-awi+fi-networks-wep-password-with-backtrack)
network using the more bulletproof WPA
You already know that if you want to lock down
security protocol.
your Wi-Fi network, you should opt for WPA encryption because WEP is easy to crack. But did you know… Read…
crack-a-wi+fi-networks-wep-password-
Here's the bad news: A new, free, opensource tool called Reaver (http://code.google.com/p/reaver-wps/) exploits a security hole in wireless routers
(http://lifehacker.com/5305094/how-tocrack-a-wi+fi-networks-wep-password-withbacktrack)
and can crack most routers' current passwords with relative ease. Here's how to crack a WPA or WPA2 password, step by step, with Reaver—and how to protect your network against Reaver attacks. In the first section of this post, I'll walk through the steps required to crack a WPA password using Reaver. Y ou can follow along with either the video or the text below. After that, I'll explain how Reaver works, and what you can do to protect your network against Reaver attacks.
44
1
Search Lifehacker Tips, tricks, and downloads for getting things done.
(http://www.facebook.com/sharer.php?u=http%3A%2F%2Flifehacker.com%2F5873407%2Fhow-to-crack-a-wi%2BfiAPP DIRECTORY (http://lifehacker.com/the-lifehackerapp-directory-curates-the-best-apps-for-5803257) DOWNLOADS (http://lifehacker.com/tag/downloads) networks-wpa-password-with-reaver)
PRODUCTIVITY (http://lifehacker.com/tag/productivity) -
DIY (http://lifehacker.com/tag/diy) - MONEY (http://twitter.com/share?url=http%3A%2F%2Flifehacker.com%2F5873407%2Fhow-to-crack-a-wi%2Bfi-networks-wpa-
(http://lifehacker.com/tag/money) - SECURITY (http://lifehacker.com/tag/security) - LIFEHACKER DEALS password-with-reaver&text=POST_TITLE) (http://lifehacker.com/tag/dealhacker) - NIGHT SCHOOL (http://lifehacker.com/tag/nightschool)
(/)
(http://youtu.be/z1c1OIMbmb0) First, a quick note: As we remind often remind readers when we discuss topics that appear potentially malicious: Knowledge is power, but power doesn't mean you should be a jerk, or do anything illegal. Knowing how to pick a lock doesn't make you
RECOMMENDED BY ADAM PASH (HTTP://…
This Is How You Should Cook Your Turkey (to Avoid Wasting Hours) (http://lifehacker.com/5860136/this-is-how-youshould-cook-your-turkey-next-thursday-or-youcould-waste-hours-of-your-life/@adam-pash) It Was "Pash" Like "Cash" (http://lifehacker.com/5973647/it-was-pash-likecash/@adam-pash)
a thief. Consider this post educational, or a proof-of-concept intellectual exercise. The more you know, the better you can protect yourself.
What You'll Need Y ou don't have to be a networking wizard to use Reaver, the command-line tool that does the heavy lifting, and if you've got a blank DVD, a computer with compatible Wi-Fi, and a few hours on your hands, you've got basically all you'll need. There are a number of ways you could set up Reaver, but here are the specific requirements for this guide:
Stay Alert in This Week's Open Thread (http://lifehacker.com/5947310/stay-alert-in-thisweeks-open-thread/@adam-pash) Grab a Bundle of DRM-Free Ebooks On the Cheap (http://lifehacker.com/5946956/grab-abundle-of-drm+free-ebooks-on-thecheap/@adam-pash) Lounge Like You Mean It in This Week's Open Thread (http://lifehacker.com/5941361/loungelike-you-mean-it-in-this-weeks-openthread/@adam-pash) Get Some Fresh Air in This Week's Open Thread (http://lifehacker.com/5939592/get-some-freshair-in-this-weeks-open-thread/@adam-pash) I'm Limor Fried, and This Is How I Work (http://lifehacker.com/hey-limor-thanks-somuch-for-joining-us-i-was-wonderi465567225/@adam-pash) It's More Entertaining Than Your Favorite TV Show in This Week's Open… (http://lifehacker.com/5937606/its-moreentertaining-than-your-favorite-tv-show-in-thisweeks-open-thread/@adam-pash) Your Clever Password Tricks Aren't Protecting You from Today's Hackers (http://lifehacker.com/my-password-generationprocess-is-exactly-like-user775465579209/@adam-pash) How Do I Torrent Safely Now That Demonoid Is Down? (http://lifehacker.com/i-think-thatsounds-about-right-bittorrent-has-to-be-a465581481/@adam-pash) Four Clicks to a Less Annoying YouTube (http://lifehacker.com/5936297/four-clicks-to-aless-annoying-youtube/@adam-pash) The Coffee Is Free in This Week's Open Thread (http://lifehacker.com/5935688/the-coffee-isfree-in-this-weeks-open-thread/@adam-pash) Bring Your Friends to This Week's Open Thread (http://lifehacker.com/5933583/bring-yourfriends-to-this-weeks-open-thread/@adam-pash)
The BackTrack 5 Live DVD (http://www.backtrack-linux.org/downloads/). BackTrack is a bootable Linux distribution that's filled to the brim with network testing tools, and while it's not strictly required to use Reaver, it's the easiest approach for most users. Download the Live DVD from BackTrack's download page (http://www.backtracklinux.org/downloads/) and burn it to a DVD. Y ou can alternately download a virtual machine image if you're using VMware, but if you don't know what VMware is, just stick with the Live DVD. As of this writing, that means you should select BackTrack 5 R3 from the Release drop-down, select Gnome, 32- or 64-bit depending on your CPU (if you don't know which you have, 32 is a safe bet), ISO for image, and then download the ISO. A computer with Wi-Fi and a DVD drive. BackTrack will work with the wireless card on most laptops, so chances are your laptop will work fine. However, BackTrack doesn't have a full compatibility list, so no guarantees. Y ou'll also need a DVD drive, since that's how you'll boot into BackTrack. I used a six-year-old MacBook Pro. A nearby WPA-secured Wi-Fi network. Technically, it will need to be a network using WPA security with the WPS feature enabled. I'll explain in more detail in the "How Reaver Works" section how WPS creates the security hole that makes WPA cracking possible. A little patience. This is a 4-step process, and while it's not terribly difficult to crack a WPA password with Reaver, it's a brute-force attack, which means your computer will be testing a number of different combinations of cracks on your router before it finds the right one. When I tested it, Reaver took roughly 2.5 hours to successfully crack my password. The Reaver home page (http://code.google.com/p/reaver-wps/) suggests it can take anywhere from 4-10 hours. Y our mileage may vary.
Let's Get Crackin' At this point you should have BackTrack burned to a DVD, and you should have your laptop handy.
Step 1: Boot into BackTrack To boot into BackTrack, just put the DVD in your drive and boot your machine from the disc. (Google around if you don't know anything about live CDs/DVDs and need help with this part.) During the boot process, BackTrack will prompt you to to choose the boot mode. Select "BackTrack Text - Default Boot Text Mode" and press Enter. Eventually BackTrack will boot to a command line prompt. When you've reached the prompt, type startx and press Enter. BackTrack will boot into its graphical interface.
Step 2: Install Reaver Update: This step is no longer necessary, as Reaver comes pre-installed on Backtrack 5 R3. Skip down to Step 3. Reaver has been added to the bleeding edge version of BackTrack, but it's not yet incorporated with the live DVD, so as of this writing, you need to install Reaver before proceeding. (Eventually, Reaver will simply be incorporated with BackTrack by default.) To install Reaver, you'll first need to connect to a Wi-Fi network that you have the password to. 1.
Click Applications > Internet > Wicd Network Manager
2.
Select your network and click Connect, enter your password if necessary, click OK, and then click Connect a second time.
Now that you're online, let's install Reaver. Click the Terminal button in the menu bar (or click Applications > Accessories > Terminal). At the prompt, type:
apt-get update
And then, after the update completes:
apt-get install reaver
If all went well, Reaver should now be installed. It may seem a little lame that you need to connect to a network to do this, but it will remain installed until you reboot your computer. At this point, go ahead and disconnect from the network by opening Wicd Network Manager again and clicking Disconnect. (Y ou may not strictly need to do this. I did just because it felt like I was somehow cheating if I were already connected to a network.)
Step 3: Gather Your Device Information, Prep Your Crackin' In order to use Reaver, you need to get your wireless card's interface name, the BSSID of the router you're attempting to crack (the BSSID is a unique series of letters and numbers that identifies a router), and you need to make sure your wireless card is in monitor mode. So let's do all that. Find your wireless card: Inside Terminal, type:
iwconfig
Press Enter. Y ou should see a wireless device in the subsequent list. Most likely, it'll be named wlan0, but if you have more than one wireless card, or a more unusual networking setup, it may be named something different.
Put your wireless card into monitor mode: Assuming your wireless card's interface name is wlan0, execute the following command to put your wireless card into monitor mode:
airmon-ng start wlan0
This command will output the name of monitor mode interface, which you'll also want to make note of. Most likely, it'll be mon0, like in the screenshot below. Make note of that.
Find the BSSID of the router you want to crack: Lastly, you need to get the unique identifier of the router you're attempting to crack so that you can point Reaver in the right direction. To do this, execute the following command:
airodump-ng wlan0
(Note: If airodump-ng wlan0 doesn't work for you, you may want to try the monitor interface instead—e.g., airodump-ng mon0.) Y ou'll see a list of the wireless networks in range—it'll look something like the screenshot below:
When you see the network you want, press Ctrl+C to stop the list from refreshing, then copy that network's BSSID (it's the series of letters, numbers, and colons on the far left). The network should have WPA or WPA2 listed under the ENC column. (If it's WEP, use our previous guide to cracking WEP passwords (http://lifehacker.com/5305094/how-to-crack-a-wi+fi-networkswep-password-with-backtrack).) Now, with the BSSID and monitor interface name in hand, you've got everything you need to start up Reaver.
Step 4: Crack a Network's WPA Password with Reaver Now execute the following command in the Terminal, replacing bssid and moninterface with the BSSID and monitor interface and you copied down above:
reaver -i moninterface -b bssid -vv
For example, if your monitor interface was mon0 like mine, and your BSSID was 8D:AE:9D:65:1F:B2 (a BSSID I just made up), your command would look like:
reaver -i mon0 -b 8D:AE:9D:65:1F:B2 -vv
Press Enter, sit back, and let Reaver work its disturbing magic. Reaver will now try a series of PINs on the router in a brute force attack, one after another. This will take a while. In my successful test, Reaver took 2 hours and 30 minutes to crack the network and deliver me with the correct password. As mentioned above, the Reaver documentation says it can take between 4 and 10 hours, so it could take more or less time than I experienced, depending. When Reaver's cracking has completed, it'll look like this: EXPAND
A few important factors to consider: Reaver worked exactly as advertised in my test, but it won't necessarily work on all routers (see more below). Also, the router you're cracking needs to have a relatively strong signal, so if you're hardly in range of a router, you'll likely experience problems, and Reaver may not work. Throughout the process, Reaver would sometimes experience a timeout, sometimes get locked in a loop trying the same PIN repeatedly, and so on. I just let it keep on running, and kept it close to the router, and eventually it worked its way through.
Also of note, you can also pause your progress at any time by pressing Ctrl+C while Reaver is running. This will quit the process, but Reaver will save any progress so that next time you run the command, you can pick up where you left off-as long as you don't shut down your computer (which, if you're running off a live DVD, will reset everything).
How Reaver Works Now that you've seen how to use Reaver, let's take a quick overview of how Reaver works. The tool takes advantage of a vulnerability in something called Wi-Fi Protected Setup, or WPS. It's a feature that exists on many routers, intended to provide an easy setup process, and it's tied to a PIN that's hard-coded into the device. Reaver exploits a flaw in these PINs; the result is that, with enough time, it can reveal your WPA or WPA2 password. Read more details about the vulnerability at Sean Gallagher's excellent post on Ars Technica (http://arstechnica.com/business/news/2011/12/researchers-publish-open-source-tool-forhacking-wifi-protected-setup.ars).
How to Protect Yourself Against Reaver Attacks Since the vulnerability lies in the implementation of WPS, your network should be safe if you can simply turn off WPS (or, even better, if your router doesn't support it in the first place). Unfortunately, as Gallagher points out as Ars (http://arstechnica.com/business/news/2012/01/hands-on-hacking-wifi-protected-setup-withreaver.ars), even with WPS manually turned off through his router's settings, Reaver was still able to crack his password.
In a phone conversation, Craig Heffner said that the inability to shut this vulnerability down is widespread. He and others have found it to occur with every Linksys and Cisco Valet wireless access point they've tested. "On all of the Linksys routers, you cannot manually disable WPS," he said. While the Web interface has a radio button that allegedly turns off WPS configuration, "it's still on and still vulnerable.
So that's kind of a bummer. Y ou may still want to try disabling WPS on your router if you can, and test it against Reaver to see if it helps. Y ou could also set up MAC address filtering on your router (which only allows specifically whitelisted devices to connect to your network), but a sufficiently savvy hacker could detect the MAC address of a whitelisted device and use MAC address spoofing to imitate that computer. Double bummer. So what will work? I have the open-source router firmware DD-WRT (http://dd-wrt.com/) installed on my router and I was unable to use Reaver to crack its password. As it turns out, DD-WRT does not support WPS (http://code.google.com/p/reaver-wps/issues/detail?id=44), so there's yet another reason to love the free router-booster. If that's got you interested in DD-WRT, check their supported devices list (http://dd-wrt.com/wiki/index.php/Supported_Devices) to see if your router's supported. It's a good security upgrade, and DD-WRT can also do cool things like monitor your internet usage (http://lifehacker.com/5821773/how-to-monitor-your-internetusage-so-you-dont-exceed-your-data-cap), set up a network hard drive (http://lifehacker.com/5756233/get-more-out-of-your-dd+wrt-router-with-an-external-drive? tag=ddwrt), act as a whole-house ad blocker (http://lifehacker.com/5680670/turn-yourdd+wrt-enabled-router-into-a-whole-house-ad-blocker?tag=ddwrt), boost the range of your Wi-Fi network (http://lifehacker.com/5563196/turn-your-old-router-into-a-range+boostingwi+fi-repeater?tag=ddwrt), and more. It essentially turns your $60 router into a $600 router (http://lifehacker.com/178132/hack-attack-turn-your-60-router-into-a-600-router). RELATED
How to Monitor Your Internet Usage So You Don't Exceed Your Data Cap (http://lifehacker.com/5821773/how-
Get More Out of Your DD-WRT Router with an External Drive (http://lifehacker.com/5756233/get-
to-monitor-your-
more-out-of-
internet-usage-
your-dd+wrt-
so-you-dont-
router-with-an-
exceed-your-
external-drive) (http://lifehacker.com/5756233/get-more-out-ofyour-dd+wrt-router-with-an-external-drive)
data-cap) (http://lifehacker.com/5821773/how-to-monitoryour-internet-usage-so-you-dont-exceed-yourdata-cap) Internet data caps are becoming a reality and can seriously suck. If you're stuck with the limitation, the best thing you can do is monitor your … Read… (http://lifehacker.com/5821773/how-tomonitor-your-internet-usage-so-you-dontexceed-your-data-cap)
You've supercharged your router with DDWRT, you're using it to monitor your bandwidth use, and yet you still wish it could do more. Well… Read… (http://lifehacker.com/5756233/get-moreout-of-your-dd+wrt-router-with-an-externaldrive)
Further Reading Thanks to this post (http://maurisdump.blogspot.com/2011/12/reaver-11-wps-brute-forcecracker-to.html) on Mauris Tech Blog for a very straightforward starting point for using Reaver. If you're interested in reading more, see: Ars Technia's hands on (http://arstechnica.com/business/news/2012/01/hands-onhacking-wifi-protected-setup-with-reaver.ars) This Linux-centric guide from Null Byte (http://null-byte.wonderhowto.com/blog/hackwpa-wifi-passwords-by-cracking-wps-pin-0132542/) The Reaver product page (http://www.tacnetsol.com/products/) (it's also available in a point-and-click friendly commercial version. Reddit user jagermo (http://www.reddit.com/user/jagermo) (who I also spoke with briefly while researching Reaver) has created a public spreadsheat (https://docs.google.com/spreadsheet/lv?key=0AgsJmeLMFP2dFp2dkhJZGIxTTFkdFpEUDNSSHZEN3c) intended to build a list of vulnerable devices so you can check to see if your router is susceptible to a Reaver crack.
Have any experience of your own using Reaver? Other comments or concerns? Let's hear it in the comments. Like
Author is participating
11 participants
chgotechguy (http://chgoguy… 2
Discuss (/posts/5873407/reply)
5k
shido641 (http://shido641-ol… (/posts/466032753/reply)
(/posts/466032588/reply)
A Reddit user (@jagermo on twitter or
And here i thought i was so clever when i put
jagermo [at] hushmail.com) has posted a
my Mac filtering on, SSID Broadcast off,
spreadsheet titled "WPS Vulnerability
Limit DHCP to lease only 1 or 2 addresses
Testing" listing various devices and user
and have a 23 character password consisting
submitted testing data. While the testing is
of alphanumeric and special characters.
not scientific, some may find it helpful. Be sure to read the comments and background information at the bottom of the spreadsheet, which includes a link where you can share your own testing data. Link to spreadsheet: [docs.google.com] (https://docs.google.com/spreadsheet/lv? key=0AgsJmeLMFP2dFp2dkhJZGIxTTFkdFpEUD...)
Time to rethink my security...I must say, i thank the guys that developed this because it gives me a challenge :)
1/09/12 11:15pm (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wp
mrh829 (http://mrh829.kinj… 2
(/posts/466032778/reply)
Turning the SSID broadcast off won't do
anything to enhance security; if anything, it 1/09/12 7:33am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver?comment=45822310#comments) can actually reduce your security. jagermo (http://jagermo-old.…
(/posts/466032641/reply)
The reason for this is that when the access
Thank you for the link. We can always use
point isn't broadcasting the SSID, your
more devices, so "get crackin'" (you should
wireless device has to initiate the
only attack devices that you own, of course.
conversation, as opposed to the other way
We are not criminals.)
around. This means that if you take your
laptop to other locations, it will send out 1/09/12 8:32am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver?comment=45824483#comments) signals asking your home SSID if it's there, which could be recorded by any nearby
6 Melanie participants Pinola (http://melan… 2
device that's listening.
(/posts/466032679/reply)
Audi5000 (http://audi5000.…
1/10/12 11:35am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wp
Link doesn't seem to be working. Trying this:
(/posts/466032677/reply) shido641 (http://shido641-ol… [tinyurl.com] (http://tinyurl.com/6ndb4hq) 2 participants A list of devices that use WPS would be oh so 1/09/12 9:55am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver?comment=45827991#comments) (/posts/466032786/reply)
nice. Anyone know if 2Wire routers do?
Tristan (http://tristan-i.kinja.… Well then i must have listened to the wrong 1/09/12Walternate 9:48am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver?comment=45827718#comments) and one other... security guys lol...Thanks (/posts/466032530/reply) slaw (http://slaw1.kinja.com)
Audi5000
(/posts/466032841/reply)
If it's anything recent, yes.
1/11/12 5:34am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa
Why not just use OpenWRT instead of DDWRT?
shockwaver and 7 others...
DD-WRT left a sour taste in my mouth a
while back when they were selling a re1/19/12 5:43pm (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver?comment=46181718#comments) skinned version of OpenWRT (and weren't Paul Burt (http://paulburt.kin…
releasing source code!). Things are a bit different, but DD-WRT still comes action
(/posts/1455536648/reply)
Except the Airport Extreme and Express. 2 participants Score one for Apple!
packed with un-editable binary blobs in what is essentially a FOSS software package. This be a no-no!
10/30/13 4:51pm (http://lifehacker.com/except-the-airport-extreme-and-express-score-one-for-a-1455536648)
Richard Milne (http://ricardo… slaw and 2 others...
The developer's logic behind doing this is to prevent other people from re-branding DD-
(/posts/466032538/reply)
And this is why I tell people to disable WPS on their router.
WRT and selling it. (If things have further changed, let me know and I may reconsider my blacklisting
1/09/12 6:24am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver?comment=45820540#comments)
DD-WRT)
The Stig's graphic designer c… (/posts/466032569/reply)
1/09/12 5:34am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wp
belak (http://belak1.kinja.co…
Unfortunately, as Gallagher points out as Ars, even with WPS manually turned off through his router's settings, Reaver was still able to crack his password. while i agree with that step, it isn't a failsafe.
(/posts/466032630/reply)
OpenWRT doesn't support all the routers that dd-wrt does. By all means, OpenWRT looks better than dd-wrt, but I can't check because OpenWRT doesn't run on my 6 participants
1/09/12 7:13am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver?comment=45821710#comments) Linksys e2000.
1/09/12 8:07am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wp
Richard Milne (http://ricardo…
Zak123 (http://zak123.kinja.… 3
(/posts/466032647/reply)
Y eah I saw that, turn it off if you can I suppose would be more accurate advice,
(/posts/466032721/reply)
Y ou people know that there is a MUCH easier way to get your neighbors password
even if turning it off doesn't actually turn it
right?
off lol.
1) Name your WiFi the same as your
I always turned it off because it just seems to
neighbors
be unnecessary anyways. It's a classic case
2) Log password attempts
of manufacturers trying to make life easier 1 participant
3) Wait.
but actually just making things worse.
1/09/12 2:05pm (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wp 1/09/12 8:36am(http://skim32.kinja. (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver?comment=45824655#comments) skim32 … (/posts/466032703/reply)
Audi5000 (http://audi5000.…
Just an FY I to Netgear WNDR3700 an 3800 owners. Disabling Router's Pin under the WPS Settings in the Advanced Wireless Settings section does protect against Reaver.
1
(/posts/466032734/reply)
*ahem* honeypot
1/09/12 3:22pm (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wp
However I've read that other Netgear
polobunny (http://polobunny…
routers are showing mixed results. Such as the DGN2200. Disabling WPS in the
2 participants
1
(/posts/466032744/reply)
DGN2200 just slows down Reaver but it
Saved password is saved. Can't bother
eventually cracks it. Hope this helps some
jamesharrison1 (http://james … waiting a day or two. :P
people.
1/09/12 6:43pm (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wp 1
(/posts/466032907/reply)
1/09/12 12:48pm (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver?comment=45835375#comments)
Surelyshido641 life's too for all of this stuff? andshort 2 others... FriendlyFire (http://friendly0…
6/26/12 3:51pm (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wp
(/posts/466032736/reply)
I'm glad I've made the right choice then. This Linksys thing seems incredibly dumb to
radio.one (http://radio1.kinja…
do, even for them. (/posts/466032536/reply) nka (http://nabilalk.kinja.com) Adam Pash 1/09/12 4:01pm (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver?comment=45842808#comments) Holy crap. I read all through this- panicking (/posts/466032765/reply)
I hope this article and others like it will catch the eye of the router manufacturers and that they will plug this security hole.
all the while. Well, until the very end about dd-wrt. I run openwrt (kong) on my router.
1/09/12 6:19am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wp 1/10/12 6:44am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver?comment=45857296#comments)
About (http://lifehacker.kinja.com/5732066/about-lifehacker) Help (http://help.gawker.com/) Terms of Use (http://legal.kinja.com/kinja-terms-of-use-90161644) Privacy (http://legal.kinja.com/privacy-policy-90190742) Advertising (http://advertising.gawker.com/) Permissions (http://advertising.gawker.com/about/index.php#contact) Content Guidelines (http://legal.kinja.com/content-guidelines-90185358) RSS (http://feeds.gawker.com/lifehacker/full) Jobs (http://grnh.se/2ctqpi)
ADAM PASH (HTTP://ADAM-PASH.KINJA.COM) on LIFEHACKER (HTTP://LIFEHACKER.COM) 2,831,107 44 166
(http://adam-pash.kinja.com)
How to Crack a Wi-Fi Network's WPA Password with Reaver (http://lifehacker.com/5873407/how-tocrack-a-wi+fi-networks-wpa-passwordwith-reaver)
RELATED
Y our Wi-Fi network is your conveniently
walking past your home, you secure your
How to Crack a Wi-Fi Network's WEP Password with BackTrack (http://lifehacker.com/5305094/how-
network with a password, right? Knowing, as
to-crack-a-wi+fi-
you might, how easy it is to crack a WEP
networks-wep-
wireless gateway to the internet, and since you're not keen on sharing your connection with any old hooligan who happens to be
password (http://lifehacker.com/5305094/how-to-
password-with-
with-backtrack), you probably secure your
backtrack) (http://lifehacker.com/5305094/how-to-crack-awi+fi-networks-wep-password-with-backtrack)
network using the more bulletproof WPA
You already know that if you want to lock down
security protocol.
your Wi-Fi network, you should opt for WPA encryption because WEP is easy to crack. But did you know… Read…
crack-a-wi+fi-networks-wep-password-
Here's the bad news: A new, free, opensource tool called Reaver (http://code.google.com/p/reaver-wps/) exploits a security hole in wireless routers
(http://lifehacker.com/5305094/how-tocrack-a-wi+fi-networks-wep-password-withbacktrack)
and can crack most routers' current passwords with relative ease. Here's how to crack a WPA or WPA2 password, step by step, with Reaver—and how to protect your network against Reaver attacks. In the first section of this post, I'll walk through the steps required to crack a WPA password using Reaver. Y ou can follow along with either the video or the text below. After that, I'll explain how Reaver works, and what you can do to protect your network against Reaver attacks.
44
1
Search Lifehacker Tips, tricks, and downloads for getting things done.
(http://www.facebook.com/sharer.php?u=http%3A%2F%2Flifehacker.com%2F5873407%2Fhow-to-crack-a-wi%2BfiAPP DIRECTORY (http://lifehacker.com/the-lifehackerapp-directory-curates-the-best-apps-for-5803257) DOWNLOADS (http://lifehacker.com/tag/downloads) networks-wpa-password-with-reaver)
PRODUCTIVITY (http://lifehacker.com/tag/productivity) -
DIY (http://lifehacker.com/tag/diy) - MONEY (http://twitter.com/share?url=http%3A%2F%2Flifehacker.com%2F5873407%2Fhow-to-crack-a-wi%2Bfi-networks-wpa-
(http://lifehacker.com/tag/money) - SECURITY (http://lifehacker.com/tag/security) - LIFEHACKER DEALS password-with-reaver&text=POST_TITLE) (http://lifehacker.com/tag/dealhacker) - NIGHT SCHOOL (http://lifehacker.com/tag/nightschool)
(/)
(http://youtu.be/z1c1OIMbmb0) First, a quick note: As we remind often remind readers when we discuss topics that appear potentially malicious: Knowledge is power, but power doesn't mean you should be a jerk, or do anything illegal. Knowing how to pick a lock doesn't make you
RECOMMENDED BY ADAM PASH (HTTP://…
This Is How You Should Cook Your Turkey (to Avoid Wasting Hours) (http://lifehacker.com/5860136/this-is-how-youshould-cook-your-turkey-next-thursday-or-youcould-waste-hours-of-your-life/@adam-pash) It Was "Pash" Like "Cash" (http://lifehacker.com/5973647/it-was-pash-likecash/@adam-pash)
a thief. Consider this post educational, or a proof-of-concept intellectual exercise. The more you know, the better you can protect yourself.
What You'll Need Y ou don't have to be a networking wizard to use Reaver, the command-line tool that does the heavy lifting, and if you've got a blank DVD, a computer with compatible Wi-Fi, and a few hours on your hands, you've got basically all you'll need. There are a number of ways you could set up Reaver, but here are the specific requirements for this guide:
Stay Alert in This Week's Open Thread (http://lifehacker.com/5947310/stay-alert-in-thisweeks-open-thread/@adam-pash) Grab a Bundle of DRM-Free Ebooks On the Cheap (http://lifehacker.com/5946956/grab-abundle-of-drm+free-ebooks-on-thecheap/@adam-pash) Lounge Like You Mean It in This Week's Open Thread (http://lifehacker.com/5941361/loungelike-you-mean-it-in-this-weeks-openthread/@adam-pash) Get Some Fresh Air in This Week's Open Thread (http://lifehacker.com/5939592/get-some-freshair-in-this-weeks-open-thread/@adam-pash) I'm Limor Fried, and This Is How I Work (http://lifehacker.com/hey-limor-thanks-somuch-for-joining-us-i-was-wonderi465567225/@adam-pash) It's More Entertaining Than Your Favorite TV Show in This Week's Open… (http://lifehacker.com/5937606/its-moreentertaining-than-your-favorite-tv-show-in-thisweeks-open-thread/@adam-pash) Your Clever Password Tricks Aren't Protecting You from Today's Hackers (http://lifehacker.com/my-password-generationprocess-is-exactly-like-user775465579209/@adam-pash) How Do I Torrent Safely Now That Demonoid Is Down? (http://lifehacker.com/i-think-thatsounds-about-right-bittorrent-has-to-be-a465581481/@adam-pash) Four Clicks to a Less Annoying YouTube (http://lifehacker.com/5936297/four-clicks-to-aless-annoying-youtube/@adam-pash) The Coffee Is Free in This Week's Open Thread (http://lifehacker.com/5935688/the-coffee-isfree-in-this-weeks-open-thread/@adam-pash) Bring Your Friends to This Week's Open Thread (http://lifehacker.com/5933583/bring-yourfriends-to-this-weeks-open-thread/@adam-pash)
The BackTrack 5 Live DVD (http://www.backtrack-linux.org/downloads/). BackTrack is a bootable Linux distribution that's filled to the brim with network testing tools, and while it's not strictly required to use Reaver, it's the easiest approach for most users. Download the Live DVD from BackTrack's download page (http://www.backtracklinux.org/downloads/) and burn it to a DVD. Y ou can alternately download a virtual machine image if you're using VMware, but if you don't know what VMware is, just stick with the Live DVD. As of this writing, that means you should select BackTrack 5 R3 from the Release drop-down, select Gnome, 32- or 64-bit depending on your CPU (if you don't know which you have, 32 is a safe bet), ISO for image, and then download the ISO. A computer with Wi-Fi and a DVD drive. BackTrack will work with the wireless card on most laptops, so chances are your laptop will work fine. However, BackTrack doesn't have a full compatibility list, so no guarantees. Y ou'll also need a DVD drive, since that's how you'll boot into BackTrack. I used a six-year-old MacBook Pro. A nearby WPA-secured Wi-Fi network. Technically, it will need to be a network using WPA security with the WPS feature enabled. I'll explain in more detail in the "How Reaver Works" section how WPS creates the security hole that makes WPA cracking possible. A little patience. This is a 4-step process, and while it's not terribly difficult to crack a WPA password with Reaver, it's a brute-force attack, which means your computer will be testing a number of different combinations of cracks on your router before it finds the right one. When I tested it, Reaver took roughly 2.5 hours to successfully crack my password. The Reaver home page (http://code.google.com/p/reaver-wps/) suggests it can take anywhere from 4-10 hours. Y our mileage may vary.
Let's Get Crackin' At this point you should have BackTrack burned to a DVD, and you should have your laptop handy.
Step 1: Boot into BackTrack To boot into BackTrack, just put the DVD in your drive and boot your machine from the disc. (Google around if you don't know anything about live CDs/DVDs and need help with this part.) During the boot process, BackTrack will prompt you to to choose the boot mode. Select "BackTrack Text - Default Boot Text Mode" and press Enter. Eventually BackTrack will boot to a command line prompt. When you've reached the prompt, type startx and press Enter. BackTrack will boot into its graphical interface.
Step 2: Install Reaver Update: This step is no longer necessary, as Reaver comes pre-installed on Backtrack 5 R3. Skip down to Step 3. Reaver has been added to the bleeding edge version of BackTrack, but it's not yet incorporated with the live DVD, so as of this writing, you need to install Reaver before proceeding. (Eventually, Reaver will simply be incorporated with BackTrack by default.) To install Reaver, you'll first need to connect to a Wi-Fi network that you have the password to. 1.
Click Applications > Internet > Wicd Network Manager
2.
Select your network and click Connect, enter your password if necessary, click OK, and then click Connect a second time.
Now that you're online, let's install Reaver. Click the Terminal button in the menu bar (or click Applications > Accessories > Terminal). At the prompt, type:
apt-get update
And then, after the update completes:
apt-get install reaver
If all went well, Reaver should now be installed. It may seem a little lame that you need to connect to a network to do this, but it will remain installed until you reboot your computer. At this point, go ahead and disconnect from the network by opening Wicd Network Manager again and clicking Disconnect. (Y ou may not strictly need to do this. I did just because it felt like I was somehow cheating if I were already connected to a network.)
Step 3: Gather Your Device Information, Prep Your Crackin' In order to use Reaver, you need to get your wireless card's interface name, the BSSID of the router you're attempting to crack (the BSSID is a unique series of letters and numbers that identifies a router), and you need to make sure your wireless card is in monitor mode. So let's do all that. Find your wireless card: Inside Terminal, type:
iwconfig
Press Enter. Y ou should see a wireless device in the subsequent list. Most likely, it'll be named wlan0, but if you have more than one wireless card, or a more unusual networking setup, it may be named something different.
Put your wireless card into monitor mode: Assuming your wireless card's interface name is wlan0, execute the following command to put your wireless card into monitor mode:
airmon-ng start wlan0
This command will output the name of monitor mode interface, which you'll also want to make note of. Most likely, it'll be mon0, like in the screenshot below. Make note of that.
Find the BSSID of the router you want to crack: Lastly, you need to get the unique identifier of the router you're attempting to crack so that you can point Reaver in the right direction. To do this, execute the following command:
airodump-ng wlan0
(Note: If airodump-ng wlan0 doesn't work for you, you may want to try the monitor interface instead—e.g., airodump-ng mon0.) Y ou'll see a list of the wireless networks in range—it'll look something like the screenshot below:
When you see the network you want, press Ctrl+C to stop the list from refreshing, then copy that network's BSSID (it's the series of letters, numbers, and colons on the far left). The network should have WPA or WPA2 listed under the ENC column. (If it's WEP, use our previous guide to cracking WEP passwords (http://lifehacker.com/5305094/how-to-crack-a-wi+fi-networkswep-password-with-backtrack).) Now, with the BSSID and monitor interface name in hand, you've got everything you need to start up Reaver.
Step 4: Crack a Network's WPA Password with Reaver Now execute the following command in the Terminal, replacing bssid and moninterface with the BSSID and monitor interface and you copied down above:
reaver -i moninterface -b bssid -vv
For example, if your monitor interface was mon0 like mine, and your BSSID was 8D:AE:9D:65:1F:B2 (a BSSID I just made up), your command would look like:
reaver -i mon0 -b 8D:AE:9D:65:1F:B2 -vv
Press Enter, sit back, and let Reaver work its disturbing magic. Reaver will now try a series of PINs on the router in a brute force attack, one after another. This will take a while. In my successful test, Reaver took 2 hours and 30 minutes to crack the network and deliver me with the correct password. As mentioned above, the Reaver documentation says it can take between 4 and 10 hours, so it could take more or less time than I experienced, depending. When Reaver's cracking has completed, it'll look like this: EXPAND
A few important factors to consider: Reaver worked exactly as advertised in my test, but it won't necessarily work on all routers (see more below). Also, the router you're cracking needs to have a relatively strong signal, so if you're hardly in range of a router, you'll likely experience problems, and Reaver may not work. Throughout the process, Reaver would sometimes experience a timeout, sometimes get locked in a loop trying the same PIN repeatedly, and so on. I just let it keep on running, and kept it close to the router, and eventually it worked its way through.
Also of note, you can also pause your progress at any time by pressing Ctrl+C while Reaver is running. This will quit the process, but Reaver will save any progress so that next time you run the command, you can pick up where you left off-as long as you don't shut down your computer (which, if you're running off a live DVD, will reset everything).
How Reaver Works Now that you've seen how to use Reaver, let's take a quick overview of how Reaver works. The tool takes advantage of a vulnerability in something called Wi-Fi Protected Setup, or WPS. It's a feature that exists on many routers, intended to provide an easy setup process, and it's tied to a PIN that's hard-coded into the device. Reaver exploits a flaw in these PINs; the result is that, with enough time, it can reveal your WPA or WPA2 password. Read more details about the vulnerability at Sean Gallagher's excellent post on Ars Technica (http://arstechnica.com/business/news/2011/12/researchers-publish-open-source-tool-forhacking-wifi-protected-setup.ars).
How to Protect Yourself Against Reaver Attacks Since the vulnerability lies in the implementation of WPS, your network should be safe if you can simply turn off WPS (or, even better, if your router doesn't support it in the first place). Unfortunately, as Gallagher points out as Ars (http://arstechnica.com/business/news/2012/01/hands-on-hacking-wifi-protected-setup-withreaver.ars), even with WPS manually turned off through his router's settings, Reaver was still able to crack his password.
In a phone conversation, Craig Heffner said that the inability to shut this vulnerability down is widespread. He and others have found it to occur with every Linksys and Cisco Valet wireless access point they've tested. "On all of the Linksys routers, you cannot manually disable WPS," he said. While the Web interface has a radio button that allegedly turns off WPS configuration, "it's still on and still vulnerable.
So that's kind of a bummer. Y ou may still want to try disabling WPS on your router if you can, and test it against Reaver to see if it helps. Y ou could also set up MAC address filtering on your router (which only allows specifically whitelisted devices to connect to your network), but a sufficiently savvy hacker could detect the MAC address of a whitelisted device and use MAC address spoofing to imitate that computer. Double bummer. So what will work? I have the open-source router firmware DD-WRT (http://dd-wrt.com/) installed on my router and I was unable to use Reaver to crack its password. As it turns out, DD-WRT does not support WPS (http://code.google.com/p/reaver-wps/issues/detail?id=44), so there's yet another reason to love the free router-booster. If that's got you interested in DD-WRT, check their supported devices list (http://dd-wrt.com/wiki/index.php/Supported_Devices) to see if your router's supported. It's a good security upgrade, and DD-WRT can also do cool things like monitor your internet usage (http://lifehacker.com/5821773/how-to-monitor-your-internetusage-so-you-dont-exceed-your-data-cap), set up a network hard drive (http://lifehacker.com/5756233/get-more-out-of-your-dd+wrt-router-with-an-external-drive? tag=ddwrt), act as a whole-house ad blocker (http://lifehacker.com/5680670/turn-yourdd+wrt-enabled-router-into-a-whole-house-ad-blocker?tag=ddwrt), boost the range of your Wi-Fi network (http://lifehacker.com/5563196/turn-your-old-router-into-a-range+boostingwi+fi-repeater?tag=ddwrt), and more. It essentially turns your $60 router into a $600 router (http://lifehacker.com/178132/hack-attack-turn-your-60-router-into-a-600-router). RELATED
How to Monitor Your Internet Usage So You Don't Exceed Your Data Cap (http://lifehacker.com/5821773/how-
Get More Out of Your DD-WRT Router with an External Drive (http://lifehacker.com/5756233/get-
to-monitor-your-
more-out-of-
internet-usage-
your-dd+wrt-
so-you-dont-
router-with-an-
exceed-your-
external-drive) (http://lifehacker.com/5756233/get-more-out-ofyour-dd+wrt-router-with-an-external-drive)
data-cap) (http://lifehacker.com/5821773/how-to-monitoryour-internet-usage-so-you-dont-exceed-yourdata-cap) Internet data caps are becoming a reality and can seriously suck. If you're stuck with the limitation, the best thing you can do is monitor your … Read… (http://lifehacker.com/5821773/how-tomonitor-your-internet-usage-so-you-dontexceed-your-data-cap)
You've supercharged your router with DDWRT, you're using it to monitor your bandwidth use, and yet you still wish it could do more. Well… Read… (http://lifehacker.com/5756233/get-moreout-of-your-dd+wrt-router-with-an-externaldrive)
Further Reading Thanks to this post (http://maurisdump.blogspot.com/2011/12/reaver-11-wps-brute-forcecracker-to.html) on Mauris Tech Blog for a very straightforward starting point for using Reaver. If you're interested in reading more, see: Ars Technia's hands on (http://arstechnica.com/business/news/2012/01/hands-onhacking-wifi-protected-setup-with-reaver.ars) This Linux-centric guide from Null Byte (http://null-byte.wonderhowto.com/blog/hackwpa-wifi-passwords-by-cracking-wps-pin-0132542/) The Reaver product page (http://www.tacnetsol.com/products/) (it's also available in a point-and-click friendly commercial version. Reddit user jagermo (http://www.reddit.com/user/jagermo) (who I also spoke with briefly while researching Reaver) has created a public spreadsheat (https://docs.google.com/spreadsheet/lv?key=0AgsJmeLMFP2dFp2dkhJZGIxTTFkdFpEUDNSSHZEN3c) intended to build a list of vulnerable devices so you can check to see if your router is susceptible to a Reaver crack.
Have any experience of your own using Reaver? Other comments or concerns? Let's hear it in the comments. Like
Author is participating
11 participants
chgotechguy (http://chgoguy… 2
Discuss (/posts/5873407/reply)
5k
shido641 (http://shido641-ol… (/posts/466032753/reply)
(/posts/466032588/reply)
A Reddit user (@jagermo on twitter or
And here i thought i was so clever when i put
jagermo [at] hushmail.com) has posted a
my Mac filtering on, SSID Broadcast off,
spreadsheet titled "WPS Vulnerability
Limit DHCP to lease only 1 or 2 addresses
Testing" listing various devices and user
and have a 23 character password consisting
submitted testing data. While the testing is
of alphanumeric and special characters.
not scientific, some may find it helpful. Be sure to read the comments and background information at the bottom of the spreadsheet, which includes a link where you can share your own testing data. Link to spreadsheet: [docs.google.com] (https://docs.google.com/spreadsheet/lv? key=0AgsJmeLMFP2dFp2dkhJZGIxTTFkdFpEUD...)
Time to rethink my security...I must say, i thank the guys that developed this because it gives me a challenge :)
1/09/12 11:15pm (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wp
mrh829 (http://mrh829.kinj… 2
(/posts/466032778/reply)
Turning the SSID broadcast off won't do
anything to enhance security; if anything, it 1/09/12 7:33am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver?comment=45822310#comments) can actually reduce your security. jagermo (http://jagermo-old.…
(/posts/466032641/reply)
The reason for this is that when the access
Thank you for the link. We can always use
point isn't broadcasting the SSID, your
more devices, so "get crackin'" (you should
wireless device has to initiate the
only attack devices that you own, of course.
conversation, as opposed to the other way
We are not criminals.)
around. This means that if you take your
laptop to other locations, it will send out 1/09/12 8:32am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver?comment=45824483#comments) signals asking your home SSID if it's there, which could be recorded by any nearby
6 Melanie participants Pinola (http://melan… 2
device that's listening.
(/posts/466032679/reply)
Audi5000 (http://audi5000.…
1/10/12 11:35am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wp
Link doesn't seem to be working. Trying this:
(/posts/466032677/reply) shido641 (http://shido641-ol… [tinyurl.com] (http://tinyurl.com/6ndb4hq) 2 participants A list of devices that use WPS would be oh so 1/09/12 9:55am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver?comment=45827991#comments) (/posts/466032786/reply)
nice. Anyone know if 2Wire routers do?
Tristan (http://tristan-i.kinja.… Well then i must have listened to the wrong 1/09/12Walternate 9:48am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver?comment=45827718#comments) and one other... security guys lol...Thanks (/posts/466032530/reply) slaw (http://slaw1.kinja.com)
Audi5000
(/posts/466032841/reply)
If it's anything recent, yes.
1/11/12 5:34am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa
Why not just use OpenWRT instead of DDWRT?
shockwaver and 7 others...
DD-WRT left a sour taste in my mouth a
while back when they were selling a re1/19/12 5:43pm (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver?comment=46181718#comments) skinned version of OpenWRT (and weren't Paul Burt (http://paulburt.kin…
releasing source code!). Things are a bit different, but DD-WRT still comes action
(/posts/1455536648/reply)
Except the Airport Extreme and Express. 2 participants Score one for Apple!
packed with un-editable binary blobs in what is essentially a FOSS software package. This be a no-no!
10/30/13 4:51pm (http://lifehacker.com/except-the-airport-extreme-and-express-score-one-for-a-1455536648)
Richard Milne (http://ricardo… slaw and 2 others...
The developer's logic behind doing this is to prevent other people from re-branding DD-
(/posts/466032538/reply)
And this is why I tell people to disable WPS on their router.
WRT and selling it. (If things have further changed, let me know and I may reconsider my blacklisting
1/09/12 6:24am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver?comment=45820540#comments)
DD-WRT)
The Stig's graphic designer c… (/posts/466032569/reply)
1/09/12 5:34am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wp
belak (http://belak1.kinja.co…
Unfortunately, as Gallagher points out as Ars, even with WPS manually turned off through his router's settings, Reaver was still able to crack his password. while i agree with that step, it isn't a failsafe.
(/posts/466032630/reply)
OpenWRT doesn't support all the routers that dd-wrt does. By all means, OpenWRT looks better than dd-wrt, but I can't check because OpenWRT doesn't run on my 6 participants
1/09/12 7:13am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver?comment=45821710#comments) Linksys e2000.
1/09/12 8:07am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wp
Richard Milne (http://ricardo…
Zak123 (http://zak123.kinja.… 3
(/posts/466032647/reply)
Y eah I saw that, turn it off if you can I suppose would be more accurate advice,
(/posts/466032721/reply)
Y ou people know that there is a MUCH easier way to get your neighbors password
even if turning it off doesn't actually turn it
right?
off lol.
1) Name your WiFi the same as your
I always turned it off because it just seems to
neighbors
be unnecessary anyways. It's a classic case
2) Log password attempts
of manufacturers trying to make life easier 1 participant
3) Wait.
but actually just making things worse.
1/09/12 2:05pm (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wp 1/09/12 8:36am(http://skim32.kinja. (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver?comment=45824655#comments) skim32 … (/posts/466032703/reply)
Audi5000 (http://audi5000.…
Just an FY I to Netgear WNDR3700 an 3800 owners. Disabling Router's Pin under the WPS Settings in the Advanced Wireless Settings section does protect against Reaver.
1
(/posts/466032734/reply)
*ahem* honeypot
1/09/12 3:22pm (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wp
However I've read that other Netgear
polobunny (http://polobunny…
routers are showing mixed results. Such as the DGN2200. Disabling WPS in the
2 participants
1
(/posts/466032744/reply)
DGN2200 just slows down Reaver but it
Saved password is saved. Can't bother
eventually cracks it. Hope this helps some
jamesharrison1 (http://james … waiting a day or two. :P
people.
1/09/12 6:43pm (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wp 1
(/posts/466032907/reply)
1/09/12 12:48pm (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver?comment=45835375#comments)
Surelyshido641 life's too for all of this stuff? andshort 2 others... FriendlyFire (http://friendly0…
6/26/12 3:51pm (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wp
(/posts/466032736/reply)
I'm glad I've made the right choice then. This Linksys thing seems incredibly dumb to
radio.one (http://radio1.kinja…
do, even for them. (/posts/466032536/reply) nka (http://nabilalk.kinja.com) Adam Pash 1/09/12 4:01pm (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver?comment=45842808#comments) Holy crap. I read all through this- panicking (/posts/466032765/reply)
I hope this article and others like it will catch the eye of the router manufacturers and that they will plug this security hole.
all the while. Well, until the very end about dd-wrt. I run openwrt (kong) on my router.
1/09/12 6:19am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wp 1/10/12 6:44am (http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver?comment=45857296#comments)
About (http://lifehacker.kinja.com/5732066/about-lifehacker) Help (http://help.gawker.com/) Terms of Use (http://legal.kinja.com/kinja-terms-of-use-90161644) Privacy (http://legal.kinja.com/privacy-policy-90190742) Advertising (http://advertising.gawker.com/) Permissions (http://advertising.gawker.com/about/index.php#contact) Content Guidelines (http://legal.kinja.com/content-guidelines-90185358) RSS (http://feeds.gawker.com/lifehacker/full) Jobs (http://grnh.se/2ctqpi)
Related Documents
Crack Wifi Network Password Using Android Device.pdf
February 2021 1
Pi Wifi
March 2021 0
Redes Wifi
February 2021 0
Wifi 1915
March 2021 0
Sex Crack
January 2021 5More Documents from "ofido"
Hibeler Cinematica
January 2021 1
