Nyob zoo sawv daws. Hauv kev cia siab ntawm qhov pib ntawm chav kawm Peb tau npaj ib qho kev txhais lus ntawm ib tsab xov xwm nthuav rau koj.
Niaj hnub no cov lus qhia yuav coj koj los ntawm cov hauv paus ntawm kev pib nrog pob aircrack-nco. Tau kawg, nws tsis tuaj yeem muab tag nrho cov ntaub ntawv tsim nyog thiab npog txhua qhov xwm txheej. Yog li npaj los ua koj cov homework thiab tshawb fawb ntawm koj tus kheej. Ntawm thiab nyob rau hauv Muaj ntau ntau cov lus qhia ntxiv thiab lwm cov ntaub ntawv tseem ceeb.
Txawm hais tias nws tsis npog tag nrho cov kauj ruam los ntawm pib mus rau qhov kawg, cov lus qhia nthuav tawm nyob rau hauv ntau yam kev ua haujlwm nrog aircrack-nco.
Teeb tsa cov cuab yeej, txhim kho Aircrack-ng
Thawj kauj ruam hauv kev ua haujlwm kom raug aircrack-nco ntawm koj lub Linux system yog txhawm rau kho thiab nruab tus tsav tsheb tsim nyog rau koj daim npav network. Ntau daim npav ua haujlwm nrog ntau tus tsav tsheb, qee qhov muab cov haujlwm tsim nyog rau kev siv aircrack-nco, lwm tus tsis.
Kuv xav tias nws mus yam tsis tau hais tias koj xav tau daim npav network sib xws nrog pob aircrack-nco. Ntawd yog, kho vajtse uas muaj peev xwm sib xws thiab tuaj yeem siv pob ntawv txhaj tshuaj. Siv daim npav network sib xws, koj tuaj yeem nyiag qhov chaw nkag wireless hauv tsawg dua ib teev.
Txhawm rau txiav txim siab seb koj daim npav nyob hauv qeb twg, kos tawm nplooj ntawv . Nyeem , yog tias koj tsis paub yuav ua li cas tuav lub rooj. Txawm li cas los xij, qhov no yuav tsis tiv thaiv koj los ntawm kev nyeem phau ntawv, uas yuav pab koj kawm qee yam tshiab thiab ua kom paub tseeb ntawm qee yam khoom ntawm koj daim npav.
Ua ntej, koj yuav tsum paub dab tsi chipset koj daim npav network siv thiab tus tsav tsheb koj yuav xav tau rau nws. Koj yuav tsum txiav txim siab qhov no siv cov ntaub ntawv hauv kab lus saum toj no. Hauv tshooj koj yuav pom cov tsav tsheb uas koj xav tau.
Txhim kho aircrack-ng
Qhov tseeb version ntawm aircrack-ng tuaj yeem tau txais los ntawm , lossis koj tuaj yeem siv qhov kev nkag mus kuaj kev faib tawm xws li Kali Linux lossis Pentoo, uas muaj qhov tseeb version aircrack-nco.
Txhawm rau nruab aircrack-ng xa mus rau .
IEEE 802.11 Basics
Okay, tam sim no peb tau teeb tsa tag nrho, nws yog lub sijhawm los nres ua ntej peb pib thiab kawm ib yam lossis ob qho ntawm kev ua haujlwm wireless network li cas.
Ntu tom ntej yog qhov tseem ceeb kom nkag siab yog li koj tuaj yeem paub nws yog tias qee yam tsis ua haujlwm raws li qhov xav tau. Kev nkag siab tias nws ua haujlwm li cas yuav pab koj nrhiav qhov teeb meem, lossis tsawg kawg piav qhia nws kom raug yog li lwm tus tuaj yeem pab koj. Tej yam tau txais me ntsis arcane ntawm no thiab tej zaum koj yuav xav hla qhov no. Txawm li cas los xij, hacking wireless tes hauj lwm yuav tsum muaj kev paub me ntsis, yog li kev nyiag khoom me ntsis ntau dua li tsuas yog ntaus ib qho lus txib thiab cia aircrack ua rau koj.
Yuav ua li cas nrhiav tau lub wireless network
Qhov no yog ib qho kev qhia luv luv rau cov kev tswj xyuas uas ua haujlwm nrog cov ntsiab lus nkag (AP). Txhua qhov chaw nkag tau xa txog 10 qhov hu ua beacon thav duab ib ob. Cov pob ntawv no muaj cov ntaub ntawv hauv qab no:
- Network name (ESSID);
- Txawm tias siv encryption (thiab siv dab tsi encryption, tab sis nco ntsoov tias cov ntaub ntawv no yuav tsis muaj tseeb vim tias qhov chaw nkag tau qhia nws);
- Cov ntaub ntawv hloov pauv dab tsi tau txais kev txhawb nqa (hauv MBit);
- Lub network yog dab tsi?
Nws yog cov ntaub ntawv no uas tau tshwm sim hauv lub cuab yeej uas txuas tshwj xeeb rau lub network no. Nws tshwm sim thaum koj tso cai rau daim npav luam theej duab siv iwlist <interface> scan
Txhua qhov chaw nkag tau muaj qhov tshwj xeeb MAC chaw nyob (48 khoom, 6 hex khub). It looks something like this: 00:01:23:4A:BC:DE. Txhua lub network ntaus ntawv muaj qhov chaw nyob, thiab cov khoom siv hauv network sib txuas lus nrog ib leeg siv lawv. Yog li ntawd nws yog hom ntawm lub npe tshwj xeeb. MAC chaw nyob yog qhov tshwj xeeb thiab tsis muaj ob lub cuab yeej muaj tib qhov chaw nyob MAC.
Txuas mus rau lub network
Muaj ntau txoj kev xaiv rau kev txuas mus rau ib lub wireless network. Feem ntau, Qhib System Authentication yog siv. (Yeem xaiv: Yog tias koj xav kawm ntxiv txog kev lees paub, .)
Qhib System Authentication:
- Thov kom nkag mus tau qhov tseeb;
- Lub ntsiab lus nkag teb: OK, koj tau lees paub.
- Thov kom muaj kev sib koom tes nkag;
- Qhov chaw nkag teb: OK, koj txuas nrog.
Qhov no yog qhov yooj yim tshaj plaws, tab sis cov teeb meem tshwm sim thaum koj tsis muaj cai nkag tau vim:
- Siv WPA/WPA2 thiab koj xav tau APOL authentication. Qhov chaw nkag yuav tsis kam nyob rau theem ob.
- Qhov chaw nkag tau muaj cov npe ntawm cov neeg tau txais kev tso cai (MAC chaw nyob) thiab yuav tsis tso cai rau lwm tus sib txuas. Qhov no hu ua MAC filtering.
- Qhov chaw nkag tau siv Shared Key Authentication, txhais tau tias koj yuav tsum muab tus yuam sij WEP kom raug txuas. (Saib ntu kom paub ntau ntxiv txog nws)
Yooj yim sniffing thiab hacking
Network nrhiav tau
Thawj qhov yuav tsum ua yog nrhiav lub hom phiaj muaj peev xwm. Lub pob aircrack-ng muaj nws rau qhov no , tab sis koj tuaj yeem siv lwm cov kev pab cuam xws li, piv txwv li, .
Ua ntej nrhiav kev tes hauj lwm, koj yuav tsum hloov koj daim npav mus rau qhov hu ua "kev saib xyuas hom". Monitor hom yog hom tshwj xeeb uas tso cai rau koj lub computer mloog cov pob ntawv hauv lub network. Hom no kuj tso cai rau txhaj tshuaj. Peb mam li tham txog kev txhaj tshuaj lwm zaus.
Txhawm rau muab daim npav network rau hauv kev saib xyuas, siv :
airmon-ng start wlan0Txoj kev no koj yuav tsim lwm lub interface thiab ntxiv rau nws "mon"... Yog li, wlan0 yuav ua wb 0mon. Txhawm rau xyuas seb daim npav network puas yog nyob rau hauv kev saib xyuas, khiav iwconfig thiab pom koj tus kheej.
Ces, khiav mus nrhiav networks:
airodump-ng wlan0monYog hais tias tus airodum-ng yuav tsis tuaj yeem txuas rau WLAN ntaus ntawv, koj yuav pom qee yam zoo li no:
dhia los ntawm channel mus rau channel thiab qhia tag nrho cov ntsiab lus nkag los ntawm qhov uas nws tau txais beacons. Raws li 1 txog 14 yog siv rau 802.11 b thiab g cov qauv (hauv Asmeskas tsuas yog 1 txog 11 tau tso cai; hauv Europe 1 txog 13 nrog qee qhov kev zam; hauv Nyiv 1 txog 14). 802.11a ua haujlwm nyob rau hauv 5 GHz band, thiab nws muaj nyob ntawm ntau lub teb chaws mus rau lub teb chaws dua li ntawm 2,4 GHz band. Feem ntau, cov kev paub zoo pib los ntawm 36 (32 hauv qee lub tebchaws) mus rau 64 (68 hauv qee lub tebchaws) thiab los ntawm 96 txog 165. Koj tuaj yeem nrhiav cov ncauj lus kom ntxaws ntxiv ntawm cov channel muaj nyob hauv Wikipedia. Hauv Linux, nws saib xyuas kev tso cai / tsis lees txais kev sib kis ntawm cov channel tshwj xeeb rau koj lub tebchaws ; Txawm li cas los xij, nws yuav tsum tau teeb tsa raws li.
Cov channel tam sim no tau pom nyob rau sab laug sab sauv.
Tom qab ib ntus yuav muaj cov ntsiab lus nkag thiab (vam tias) qee cov neeg siv khoom cuam tshuam nrog lawv.
Sab saum toj thaiv qhia pom cov ntsiab lus nkag:
bssid ua
mac chaw nyob ntawm access point
pwv pw
teeb liab zoo thaum xaiv channel
pwv pw
teeb liab zog. qee tus tsav tsheb tsis qhia nws.
beacons
tus naj npawb ntawm beacons tau txais. Yog tias koj tsis muaj lub teeb liab qhia lub zog, koj tuaj yeem ntsuas nws hauv beacons: ntau beacons, lub teeb liab zoo dua.
cov ntaub ntawv
tus naj npawb ntawm cov ntaub ntawv tau txais
ch
channel uas qhov chaw nkag tau ua haujlwm
mb
ceev los yog access point hom. 11 yog ntshiab 802.11b, 54 yog ntshiab 802.11g. qhov tseem ceeb ntawm ob yog kev sib xyaw.
enc
encryption: opn: tsis muaj encryption, wep: wep encryption, wpa: wpa lossis wpa2, wep?: wep lossis wpa (tsis tau meej)
tsab xov
lub npe network, qee zaum muab zais
Hauv qab block qhia pom cov neeg siv khoom:
bssid ua
mac chaw nyob uas tus neeg siv khoom cuam tshuam nrog qhov chaw nkag
chaw nres tsheb
mac chaw nyob ntawm tus neeg siv khoom nws tus kheej
pwv pw
teeb liab zog. qee tus tsav tsheb tsis qhia nws.
packets
tus naj npawb ntawm cov ntaub ntawv tau txais
xeem
network npe (essids) uas tus neeg siv khoom no twb tau sim lawm
Tam sim no koj yuav tsum tau saib xyuas lub hom phiaj network. Yam tsawg kawg ib tus neeg siv yuav tsum tau txuas nrog nws, txij li kev nyiag nkas tes hauj lwm tsis muaj cov neeg siv khoom yog lub ntsiab lus nyuaj dua (saib ntu ). Nws yuav tsum siv WEP encryption thiab muaj lub teeb liab zoo. Koj tuaj yeem hloov txoj haujlwm ntawm tus kav hlau txais xov kom txhim kho lub teeb liab txais. Qee zaum ob peb centimeters tuaj yeem txiav txim siab rau lub teeb liab lub zog.
Hauv qhov piv txwv saum toj no muaj lub network 00:01:02:03:04:05. Nws hloov tawm los ua lub hom phiaj nkaus xwb, vim nws tsuas yog ib qho txuas nrog tus neeg siv khoom. Nws kuj muaj lub teeb liab zoo, ua rau nws lub hom phiaj tsim nyog rau kev xyaum.
Sniffing Initialization Vectors
Vim yog txuas hopping, koj yuav tsis ntes tag nrho cov pob ntawv los ntawm lub hom phiaj network. Yog li ntawd, peb xav mloog tsuas yog nyob rau hauv ib tug channel thiab ntxiv sau tag nrho cov ntaub ntawv rau disk, yog li ntawd peb yuav siv tau tom qab rau hacking:
airodump-ng -c 11 --bssid 00:01:02:03:04:05 -w dump wlan0mon Siv cov parameter -Ρ koj xaiv cov channel thiab cov parameter tom qab -w Nws yog ib tug prefix rau network dumps sau rau disk. Chij βbssid nrog rau qhov chaw nkag qhov chaw nyob MAC, txwv cov pob ntawv tau txais mus rau ib qho chaw nkag mus. Chij βbssid tsuas muaj nyob rau hauv cov tshiab versions airodum-ng.
Ua ntej tawg WEP, koj yuav xav tau ntawm 40 thiab 000 txawv Initialization Vectors (IV). Txhua pob ntawv cov ntaub ntawv muaj qhov pib vector. Lawv tuaj yeem rov qab siv tau, yog li tus naj npawb ntawm vectors feem ntau yog me ntsis tsawg dua li cov pob khoom raug ntes.
Yog li koj yuav tau tos kom ntes 40k rau 85k cov ntaub ntawv pob ntawv (nrog IV). Yog tias lub network tsis ua haujlwm, qhov no yuav siv sijhawm ntev heev. Koj tuaj yeem ua kom cov txheej txheem no nrawm dua los ntawm kev siv qhov kev tawm tsam (lossis rov ua dua). Peb yuav tham txog lawv nyob rau ntu tom ntej.
Hacking
Yog tias koj twb muaj txaus cuam tshuam IVs khaws cia rau hauv ib lossis ntau cov ntaub ntawv, koj tuaj yeem sim tawg tus yuam sij WEP:
aircrack-ng -b 00:01:02:03:04:05 dump-01.cap MAC chaw nyob tom qab tus chij -b yog BSSID ntawm lub hom phiaj, thiab dump-01.cap yog ib cov ntaub ntawv uas muaj intercepted packets. Koj tuaj yeem siv ntau cov ntaub ntawv, tsuas yog ntxiv tag nrho cov npe rau cov lus txib lossis siv daim ntawv qub, piv txwv li dump*.cap.
Xav paub ntau ntxiv txog cov parameter , tso zis thiab siv koj tuaj yeem tau txais los ntawm .
Tus naj npawb ntawm pib vectors yuav tsum tau tawg tus yuam sij yog unlimited. Qhov no tshwm sim vim qee cov vectors tsis muaj zog thiab poob cov ntaub ntawv tseem ceeb dua li lwm tus. Feem ntau cov pib vectors no sib xyaw nrog cov muaj zog dua. Yog li yog tias koj muaj hmoo, koj tuaj yeem tawg tus yuam sij nrog tsuas yog 20 IVs. Txawm li cas los xij, feem ntau qhov no tsis txaus, aircrack-nco tej zaum yuav khiav mus ntev (ib lub lis piam lossis ntau dua yog tias qhov yuam kev siab) thiab qhia koj tias tus yuam sij tsis tuaj yeem tawg. Qhov ntau pib vectors koj muaj, qhov nrawm dua qhov hack tuaj yeem tshwm sim thiab feem ntau ua li ntawd hauv ob peb feeb lossis txawm vib nas this. Kev paub qhia tau hais tias 40 - 000 vectors txaus rau hacking.
Muaj cov ntsiab lus nkag siab ntxiv uas siv cov algorithms tshwj xeeb los lim tawm IVs tsis muaj zog. Yog li ntawd, koj yuav tsis tuaj yeem tau txais ntau tshaj N vectors los ntawm qhov chaw nkag, lossis koj yuav xav tau ntau lab tus vectors (piv txwv li, 5-7 lab) txhawm rau txhawm rau qhov tseem ceeb. Koj ua tau yuav ua li cas rau cov xwm txheej zoo li no.
Active tawm tsam
Feem ntau cov khoom siv tsis txhawb kev txhaj tshuaj, yam tsawg kawg yog tsis muaj patched tsav tsheb. Qee qhov tsuas yog txhawb qee qhov kev tawm tsam. Tham nrog thiab saib ntawm kab aireplay. Qee lub sij hawm lub rooj no tsis muab cov ntaub ntawv tshiab, yog li koj pom lo lus βTSIS MUAJβ tawm tsam koj tus neeg tsav tsheb, tsis txhob chim siab, tab sis saib ntawm tus tsav tsheb lub home page, tus tsav tsheb xa ntawv rau . Yog tias koj tuaj yeem ua tiav rov ua haujlwm nrog tus tsav tsheb uas tsis suav nrog hauv daim ntawv txhawb nqa, xav tias dawb los tawm tswv yim hloov pauv ntawm nplooj ntawv sib raug zoo thiab ntxiv qhov txuas rau phau ntawv qhia pib sai. (Yuav ua li no, koj yuav tsum thov tus account wiki ntawm IRC.)
Ua ntej koj yuav tsum xyuas kom meej tias pob ntawv txhaj tshuaj ua haujlwm nrog koj daim npav network thiab tus tsav tsheb. Txoj kev yooj yim tshaj plaws los kuaj xyuas yog ua qhov kev sim txhaj tshuaj tiv thaiv. Nco ntsoov tias koj xeem dhau qhov kev xeem no ua ntej pib ua haujlwm. Koj daim npav yuav tsum muaj peev xwm txhaj tshuaj kom koj ua tiav cov kauj ruam hauv qab no.
Koj yuav xav tau BSSID (MAC chaw nyob ntawm qhov chaw nkag) thiab ESSID (lub npe network) ntawm qhov chaw nkag uas tsis lim los ntawm MAC chaw nyob (xws li koj tus kheej) thiab nyob rau hauv ntau yam muaj.
Sim txuas mus rau qhov chaw nkag siv siv :
aireplay-ng --fakeauth 0 -e "your network ESSID" -a 00:01:02:03:04:05 wlan0mon Lub ntsiab lus tom qab -Π° yuav yog BSSID ntawm koj qhov chaw nkag.
Kev txhaj tshuaj ua haujlwm yog tias koj pom qee yam zoo li no:
12:14:06 Sending Authentication Request
12:14:06 Authentication successful
12:14:06 Sending Association Request
12:14:07 Association successful :-)Yog tsis yog:
- Muab ob npaug rau xyuas qhov tseeb ntawm ESSID thiab BSSID;
- Nco ntsoov tias MAC qhov chaw lim dej tsis ua haujlwm ntawm koj qhov chaw nkag;
- Sim tib yam ntawm lwm qhov chaw nkag;
- Xyuas kom koj tus neeg tsav tsheb tau teeb tsa kom raug thiab txhawb nqa;
- Hloov "0" sim "6000 -o 1 -q 10".
ARP rov ua dua
Tam sim no peb paub tias pob ntawv txhaj tshuaj ua haujlwm, peb tuaj yeem ua qee yam uas yuav ua kom nrawm nrawm rau kev cuam tshuam IVs: kev txhaj tshuaj nres .
Lub tswv yim tseem ceeb
Hauv cov ntsiab lus yooj yim, ARP ua haujlwm los ntawm kev tshaj tawm qhov kev thov mus rau qhov chaw nyob IP, thiab lub cuab yeej nrog qhov chaw nyob IP xa rov qab cov lus teb. Txij li WEP tsis tiv thaiv kev rov ua dua, koj tuaj yeem hnia ib pob ntawv thiab xa rov qab dua yog tias nws siv tau. Yog li, koj tsuas yog yuav tsum tau cuam tshuam thiab rov ua dua daim ntawv thov ARP xa mus rau qhov chaw nkag los tsim tsheb (thiab tau txais IVs).
Tub nkeeg txoj kev
Ua ntej qhib lub qhov rais nrog airodum-ng, uas yuav sniff tsheb (saib saum toj). Aireplay-nws ΠΈ airodum-ng tuaj yeem ua haujlwm ib txhij. Tos kom tus neeg siv tau tshwm sim ntawm lub hom phiaj network thiab pib qhov kev tawm tsam:
aireplay-ng --arpreplay -b 00:01:02:03:04:05 -h 00:04:05:06:07:08 wlan0mon-b taw tes rau lub hom phiaj BSSID, -h mus rau MAC chaw nyob ntawm tus neeg siv khoom txuas.
Tam sim no koj yuav tsum tau tos rau ARP pob ntawv tuaj txog. Feem ntau koj yuav tsum tau tos ob peb feeb (lossis nyeem tsab xov xwm ntxiv).
Yog tias koj muaj hmoo, koj yuav pom qee yam zoo li no:
Saving ARP requests in replay_arp-0627-121526.cap
You must also start airodump to capture replies.
Read 2493 packets (got 1 ARP requests), sent 1305 packets...Yog tias koj xav tau tso tseg kev ua si, koj tsis tas yuav tos lub pob ntawv ARP tom ntej tuaj txog, koj tuaj yeem siv cov pob ntawv khaws tseg yav dhau los siv qhov ntsuas. -r <filename>
Thaum siv ARP txhaj tshuaj, koj tuaj yeem siv txoj kev PTW txhawm rau txhawm rau WEP tus yuam sij. Nws txo cov naj npawb ntawm cov pob khoom xav tau, thiab nrog lawv lub sijhawm tawg. Koj yuav tsum tau ntes tag nrho pob ntawv nrog airodum-ng, uas yog, tsis txhob siv qhov kev xaiv β--ivsβ thaum ua tiav cov lus txib. Rau aircrack-nco siv βaircrack -z <file name>β
Yog tus naj npawb ntawm cov ntaub ntawv tau txais airodum-ng nres nce, tej zaum koj yuav tau txo cov playback ceev. Ua qhov no nrog cov parameter -x <packets per second>
Txoj kev txhoj puab heev
Feem ntau cov tshuab khiav haujlwm tshem tawm ARP cache thaum kaw. Yog tias lawv xav tau xa cov pob ntawv tom ntej tom qab rov txuas dua (lossis tsuas yog siv DHCP), lawv xa daim ntawv thov ARP. Raws li kev mob tshwm sim, koj tuaj yeem hnia ESSID thiab tejzaum nws yog tus yuam sij thaum rov txuas dua. Qhov no yooj yim yog tias koj lub hom phiaj ESSID raug muab zais lossis yog tias nws siv qhov kev lees paub qhov tseem ceeb sib koom.
Cia airodum-ng ΠΈ aireplay-nco ua haujlwm. Qhib lwm lub qhov rais thiab khiav :
nws yog -a - qhov no yog BSSID ntawm qhov chaw nkag, -Ρ MAC chaw nyob ntawm tus neeg siv khoom xaiv.
Tos ob peb feeb thiab ARP replay yuav ua haujlwm.
Cov neeg siv feem ntau sim rov txuas dua tshiab. Tab sis qhov kev pheej hmoo ntawm ib tus neeg lees paub qhov kev tawm tsam no, lossis tsawg kawg tau them nyiaj rau qhov tshwm sim ntawm WLAN, yog siab dua nrog lwm qhov kev tawm tsam.
Ntau cov cuab yeej thiab cov ntaub ntawv hais txog lawv, koj .
Tau qhov twg los: www.hab.com