Wireless Cracking
From charlesreid1
With a plethora of tools, files, and data being generated by wireless sniffing, how do you manage all of your files and options?
Part 1: Extracting Passwords
The workflow for extracting passwords:
Airdump to monitor, Python to extract data, Python to create attack scripts, Python to process cap files
Part 2: Cracking Passwords
John the Ripper
You can use John the Ripper to crack WPA by itself: John the Ripper/WPA
John the Ripper takes its own password files, so you have to first convert your cap files to hccap files, then hccap files to John the Ripper password files.
Your procedure is as follows:
- Use cap2hccap to convert cap files into hccap files
- Use hccap2john to convert hccap files into John the Ripper password files
- Use Python to assemble John the Ripper password cracking commands
- Use John the Ripper to crack WPA passwords
Aircrack
You can use Aircrack alone as your password cracker, by feeding it a wordlist. Note that this is not a very good way to use Aircrack, as your wordlist must be exhaustive. A better way is to pair it with another program to generate passwords - like John the Ripper.
Aircrack + John the Ripper
You can use Aircrack and John the Ripper in combination to crack passwords. This setup uses John the Ripper to generate passwords from wordlists - but do so in a way that generates many variations per word, using a set of customized rules. This means that if your wordlist has the word "password", Aircrack by itself would only try "password", but with John the Ripper you can try "password1982" or "Password1234" or "password!" or "pASSWORD" or etc........
Your procedure is as follows:
- Use Python to assemble John the Ripper/Aircrack commands
- Use John the Ripper to generate passwords from wordlists using rules (more info at John the Ripper/Password Generation)
- Use Aircrack to crack the passwords using John (more info at Aircrack and John the Ripper)