+- Blackhat Carding Forum | Carding Forum - Credit Cards - Hacking Forum - Cracking Forum | Bhcforums.cc (https://bhcforums.cc)
+-- Forum: Hacking and Cracking Zone (https://bhcforums.cc/Forum-Hacking-and-Cracking-Zone)
+--- Forum: Hacking (https://bhcforums.cc/Forum-Hacking)
+--- Thread: How to Hack Wi-Fi | Detailed! 2020 (/Thread-How-to-Hack-Wi-Fi-Detailed-2020)
How to Hack Wi-Fi | Detailed! 2020 - Blackhatking - 02-10-2020
In this post I will teach you a way of Wi-Fi hacking WITHOUT using brute force techniques!
There is a lot of required pre-requisites with the terminology, and please, remember, this won't work as not all people are dumb enough to fall for this. However, it will most likely work so please don't get yourself in trouble, and I am not responsible for anything you do! Take this post as Knowledge
Firstly, you will need a Virtual Machine or computer running any type of Linux, preferably Kali Linux:
[To see content please register here]
Once you have that, continue to download the tool:
Spoiler
So before we start, I will explain how this tool works:
• Scan the networks.
• Capture a handshake (can't be used without a valid handshake, it's necessary to verify the password)
• Use WEB Interface
• Launch a FakeAP instance to imitate the original access point
• Spawns a MDK3 process, which deauthenticates all users connected to the target network, so they can be lured to connect to the Fake-AP and enter the WPA password.
• A fake DNS server is launched in order to capture all DNS requests and redirect them to the host running the script
• A captive portal is launched in order to serve a page, which prompts the user to enter their WPA password
• Each submitted password is verified by the handshake captured earlier
• The attack will automatically terminate, as soon as a correct password is submitted
TLDR:
Scans for Wi-Fi, captures a packet that is used to authenticate password, then creates a "Fake" Wi-Fi access point that acts like the original one and simultaneously kicks everyone off the original network. This causes people to join your fake access point instead of the real access point. Then when they access your fake wireless point, they will be greeted with a "login" that requires them to put in their Wi-Fi credentials, that then are sent to you by validating that capture packet that you took at the beginning. Now you have access to the Wi-Fi network!
Now, this technique is not always guaranteed to work, it is a Social Engineering method! (Tricks people)
I recommend you target your own network first to play with it and test it first before trying it out on your target.
-------------------------------------------------------------------------- Steps -----------------------------------------------------------------------------
STEP 1:
[To see content please register here]
Select all channels to scan for Wi-FiSTEP 2:
[To see content please register here]
Find your target Wi-Fi networkSTEP 3:
[To see content please register here]
Choose the first option for medium connection and second for slower connectionSTEP 4:
[To see content please register here]
STEP 5:[To see content please register here]
STEP 6:[To see content please register here]
Choose both, see which one works better, try the first one then try mkdr3. (Both should work fine)STEP 7:
[To see content please register here]
STEP 8: after waiting 1-2 minutes;[To see content please register here]
STEP 9:[To see content please register here]
This is the point in the guide where after this you must choose your web interface. Say you are in Australia, a big internet provider is Telstra. There are some premade web interfaces available for selection.STEP 10:
[To see content please register here]
STEP 11:[To see content please register here]
STEP 12:[To see content please register here]
Here are the two networks, one of which are inaccessible (the real one), and yours (the fake one)STEP 13:
[To see content please register here]
If successful, the target will input their WPA password into the fake website, which then will be redirected to you.STEP 14:
[To see content please register here]
If successful, this window will show. You are then able to retrieve the password from the saved folder in your /root/ directory..