ããã«ã¡ã¯ãã¿ããªã ã³ãŒã¹éå§ã«åããŠ
ä»æ¥ã®ãã¥ãŒããªã¢ã«ã§ã¯ãããã±ãŒãžã®äœ¿çšãéå§ããããã®åºæ¬ã説æããŸãã èªç©ºæ©ã®ngã ãã¡ãããå¿
èŠãªæ
å ±ããã¹ãŠæäŸããããããã·ããªãªãã«ããŒããããšã¯äžå¯èœã§ãã ãããã£ãŠãèªåã§å®¿é¡ãç 究ãè¡ãæºåãããŠãã ããã ã®äž
æåããæåŸãŸã§ãã¹ãŠã®æé ã網çŸ
ããŠããããã§ã¯ãããŸãããã
æ©åšã®ã»ããã¢ãããAircrack-ngã®èšçœ®
é©åãªåäœãä¿èšŒããããã®æåã®ã¹ããã èªç©ºæ©ã®ng Linux ã·ã¹ãã ã«ããããé©çšãããããã¯ãŒã¯ ã«ãŒãã«é©åãªãã©ã€ããã€ã³ã¹ããŒã«ããå¿ èŠããããŸãã å€ãã®ã«ãŒãã¯è€æ°ã®ãã©ã€ããŒã§åäœãããã®äžéšã¯äœ¿çšã«å¿ èŠãªæ©èœãæäŸããŸãã èªç©ºæ©ã®ngãä»ã®äººã¯ããã§ã¯ãããŸããã
ããã±ãŒãžã«å¯Ÿå¿ãããããã¯ãŒã¯ã«ãŒããå¿ èŠãªã®ã¯èšããŸã§ããªããšæããŸã èªç©ºæ©ã®ngã ã€ãŸããå®å šãªäºææ§ãããããã±ãã ã€ã³ãžã§ã¯ã·ã§ã³ãå®è£ ã§ããããŒããŠã§ã¢ã§ãã äºææ§ã®ãããããã¯ãŒã¯ ã«ãŒãã䜿çšãããšãXNUMX æé以å ã«ã¯ã€ã€ã¬ã¹ ã¢ã¯ã»ã¹ ãã€ã³ãããããã³ã°ã§ããŸãã
ã«ãŒããã©ã®ã«ããŽãªã«å±ããŠãããã確èªããã«ã¯ã次ã®ããŒãžã確èªããŠãã ããã
ãŸãããããã¯ãŒã¯ ã«ãŒãã䜿çšãããããã»ãããšããã«å¿
èŠãªãã©ã€ããŒãç¥ãå¿
èŠããããŸãã äžã®æ®µèœã®æ
å ±ã䜿çšããŠãããå€æããå¿
èŠããããŸãã ç« å
aircrack-ng ã®åãä»ã
aircrack-ng ã®ææ°ããŒãžã§ã³ã¯ã次ã®å Žæããå
¥æã§ããŸãã
aircrack-ng ãã€ã³ã¹ããŒã«ããã«ã¯ã以äžãåç
§ããŠãã ããã
IEEE 802.11ã®åºæ¬
ããŠããã¹ãŠã®æºåãæŽã£ãã®ã§ãå§ããåã«ç«ã¡æ¢ãŸã£ãŠãã¯ã€ã€ã¬ã¹ ãããã¯ãŒã¯ãã©ã®ããã«æ©èœãããã«ã€ããŠããã€ãåŠã³ãŸãããã
次ã®éšåã¯ãäœããæåŸ ã©ããã«æ©èœããªãå Žåã«ãããç解ã§ããããã«ç解ããããšãéèŠã§ãã ãã¹ãŠãã©ã®ããã«æ©èœããããç解ããããšã¯ãåé¡ãèŠã€ããã®ã«åœ¹ç«ã¡ãŸãããããã¯ãå°ãªããšããããæ£ãã説æããŠä»ã®äººãå©ããããããã«ããã®ã«åœ¹ç«ã¡ãŸãã ããã§ã¯è©±ãå°ãé£è§£ã«ãªãããããã®éšåã¯é£ã°ããæ¹ããããããããŸããã ãã ããã¯ã€ã€ã¬ã¹ ãããã¯ãŒã¯ããããã³ã°ããã«ã¯å°ãã®ç¥èãå¿ èŠãªã®ã§ããããã³ã°ã¯ã³ãã³ãã XNUMX ã€å ¥åããŠãšã¢ã¯ã©ãã¯ã«å®è¡ãããã ãã§ãã
ã¯ã€ã€ã¬ã¹ãããã¯ãŒã¯ãèŠã€ããæ¹æ³
ãã®ããŒãã§ã¯ãã¢ã¯ã»ã¹ ãã€ã³ã (AP) ãšé£æºãã管çããããããã¯ãŒã¯ã«ã€ããŠç°¡åã«èª¬æããŸãã åã¢ã¯ã»ã¹ ãã€ã³ãã¯ã10 ç§ãããçŽ XNUMX åã®ããããããŒã³ã³ ãã¬ãŒã ãéä¿¡ããŸãã ãããã®ããã±ãŒãžã«ã¯æ¬¡ã®æ å ±ãå«ãŸããŠããŸãã
- ãããã¯ãŒã¯å (ESSID);
- æå·åã䜿çšãããŠãããã©ãã (ããã³ã©ã®ãããªæå·åã䜿çšãããŠãããããã ãããã®æ å ±ã¯ãã¢ã¯ã»ã¹ ãã€ã³ããå ±åãããšããçç±ã ãã§çå®ã§ã¯ãªãå¯èœæ§ãããããšã«æ³šæããŠãã ãã)ã
- ãµããŒããããŠããããŒã¿è»¢éé床 (MBit åäœ)ã
- ãããã¯ãŒã¯ã¯ã©ã®ãã£ã³ãã«ã«ãããŸãã?
ãã®æ
å ±ã¯ãç¹ã«ãã®ãããã¯ãŒã¯ã«æ¥ç¶ããããŒã«ã«è¡šç€ºãããŸãã ããã¯ãã«ãŒãã以äžã䜿çšããŠãããã¯ãŒã¯ãã¹ãã£ã³ããããšãèš±å¯ãããšè¡šç€ºãããŸãã
ãããŠããããããšã iwlist <
interface> scan
åã¢ã¯ã»ã¹ ãã€ã³ãã«ã¯äžæã® MAC ã¢ãã¬ã¹ (48 ãããã6 ã€ã® 00 é²ãã¢) ããããŸãã ããã¯ã01:23:4:XNUMXA:BC:DE ã®ããã«ãªããŸãã åãããã¯ãŒã¯æ©åšã¯ãã®ãããªã¢ãã¬ã¹ãæã¡ããããã¯ãŒã¯æ©åšå士ã¯ããã䜿ã£ãŠéä¿¡ãè¡ããŸãã ãªã®ã§ããªãã ããŠããŒã¯ãªååã§ããã MAC ã¢ãã¬ã¹ã¯äžæã§ãããåã MAC ã¢ãã¬ã¹ãæã€ããã€ã¹ã¯ XNUMX ã€ãããŸããã
ãããã¯ãŒã¯ã«æ¥ç¶ãã
ã¯ã€ã€ã¬ã¹ ãããã¯ãŒã¯ã«æ¥ç¶ããã«ã¯ãããã€ãã®ãªãã·ã§ã³ããããŸãã ã»ãšãã©ã®å ŽåããªãŒãã³ ã·ã¹ãã èªèšŒã䜿çšãããŸãã (ãªãã·ã§ã³: èªèšŒã«ã€ããŠè©³ããç¥ãããå Žåã¯ã
ãªãŒãã³ã·ã¹ãã èªèšŒ:
- ã¢ã¯ã»ã¹ãã€ã³ãèªèšŒãèŠæ±ããŸãã
- ã¢ã¯ã»ã¹ ãã€ã³ãã¯ãOKãèªèšŒãããŸããããšå¿çããŸãã
- ã¢ã¯ã»ã¹ ãã€ã³ãã®é¢é£ä»ããèŠæ±ããŸãã
- ã¢ã¯ã»ã¹ ãã€ã³ãã¯ãOKãæ¥ç¶ãããŸããããšå¿çããŸãã
ããã¯æãåçŽãªã±ãŒã¹ã§ããã次ã®çç±ã§ã¢ã¯ã»ã¹æš©ããªãå Žåã«åé¡ãçºçããŸãã
- WPA/WPA2ã䜿çšããAPOLèªèšŒãå¿ èŠã§ãã ã¢ã¯ã»ã¹ ãã€ã³ã㯠XNUMX çªç®ã®ã¹ãããã§æåŠããŸãã
- ã¢ã¯ã»ã¹ ãã€ã³ãã«ã¯èš±å¯ãããã¯ã©ã€ã¢ã³ã (MAC ã¢ãã¬ã¹) ã®ãªã¹ãããããä»ã®ãŠãŒã¶ãŒã®æ¥ç¶ã¯èš±å¯ãããŸããã ãããMACãã£ã«ã¿ãªã³ã°ãšåŒã³ãŸãã
- ã¢ã¯ã»ã¹ ãã€ã³ãã¯å
±æããŒèªèšŒã䜿çšããŸããã€ãŸããæ¥ç¶ããã«ã¯æ£ãã WEP ããŒãæäŸããå¿
èŠããããŸãã (ã»ã¯ã·ã§ã³ãåç
§
ãåœã®å ±æéµèªèšŒãããã«ã¯ã©ãããã°ããã§ããïŒã 詳现ã«ã€ããŠã¯ãã¡ããã芧ãã ãã)
åçŽãªã¹ãããã£ã³ã°ãšãããã³ã°
ãããã¯ãŒã¯ãã£ã¹ã«ããª
ãŸãæåã«ããã¹ãããšã¯ãæœåšçãªã¿ãŒã²ãããèŠã€ããããšã§ãã aircrack-ng ããã±ãŒãžã«ã¯ãããå«ãŸããŠããŸã
ãããã¯ãŒã¯ãæ€çŽ¢ããåã«ãã«ãŒãããããããç£èŠã¢ãŒããã«åãæ¿ããå¿ èŠããããŸãã ã¢ãã¿ãŒ ã¢ãŒãã¯ãã³ã³ãã¥ãŒã¿ããããã¯ãŒã¯ ãã±ããããªãã¹ã³ã§ããããã«ããç¹å¥ãªã¢ãŒãã§ãã ãã®ã¢ãŒãã§ã¯æ³šå ¥ãå¯èœã§ãã 次åã¯æ³šå°ã«ã€ããŠã話ããŸãã
ãããã¯ãŒã¯ã«ãŒããç£èŠã¢ãŒãã«ããã«ã¯ã次ã䜿çšããŸãã
airmon-ng start wlan0
ãã®ããã«ããŠãå¥ã®ã€ã³ã¿ãŒãã§ã€ã¹ãäœæããããã«è¿œå ããŸã ãã¢ã³ãã ã ãã wlan0 æå¿ wlan0monã ãããã¯ãŒã¯ã«ãŒããå®éã«ç£èŠã¢ãŒãã«ãªã£ãŠãããã©ããã確èªããã«ã¯ã次ã®ã³ãã³ããå®è¡ããŸãã iwconfig
ãããŠèªåã®ç®ã§èŠãŠãã ããã
ãããããèµ°ã£ãŠãã ãã
airodump-ng wlan0mon
ãã ã¢ã€ããã³ãNG WLAN ããã€ã¹ã«æ¥ç¶ã§ããªãå Žåã¯ã次ã®ãããªã¡ãã»ãŒãžã衚瀺ãããŸãã
çŸåšã®ãã£ã³ãã«ã¯å·Šäžé
ã«è¡šç€ºãããŸãã
ãã°ãããããšãã¢ã¯ã»ã¹ ãã€ã³ããš (ãããã) ããã€ãã®ã¯ã©ã€ã¢ã³ããé¢é£ä»ããããããã«ãªããŸãã
äžéšã®ãããã¯ã«ã¯ãæ€åºãããã¢ã¯ã»ã¹ ãã€ã³ãã衚瀺ãããŸãã
bssid
ã¢ã¯ã»ã¹ãã€ã³ãã®MACã¢ãã¬ã¹
pwr
ãã£ã³ãã«éžææã®ä¿¡å·å質
pwr
ã·ã°ãã«åŒ·åºŠã äžéšã®ãã©ã€ããŒã¯ãããå ±åããŸããã
ããŒã³ã³
åä¿¡ããããŒã³ã³ã®æ°ã ä¿¡å·åŒ·åºŠã€ã³ãžã±ãŒã¿ãŒããªãå Žåã¯ãããŒã³ã³ã§æž¬å®ã§ããŸããããŒã³ã³ã®æ°ãå€ãã»ã©ãä¿¡å·ã¯è¯å¥œã«ãªããŸãã
ããŒã¿
åä¿¡ããããŒã¿ãã¬ãŒã ã®æ°
ch
ã¢ã¯ã»ã¹ãã€ã³ããåäœãããã£ãã«
mb
é床ãŸãã¯ã¢ã¯ã»ã¹ãã€ã³ãã¢ãŒãã 11 ã¯çŽç²ãª 802.11bã54 ã¯çŽç²ãª 802.11g ã§ãã XNUMX ã€ã®å€ã¯æ··åãããŸãã
ENC
æå·å: opn: æå·åãªããwep: wep æå·åãwpa: wpa ãŸã㯠wpa2ãwep?: wep ãŸã㯠wpa (ãŸã æ確ã§ã¯ãããŸãã)
ãšã·ã
ãããã¯ãŒã¯åãå Žåã«ãã£ãŠã¯é ããã
äžéšã®ãããã¯ã«ã¯ãæ€åºãããã¯ã©ã€ã¢ã³ãã衚瀺ãããŸãã
bssid
ã¯ã©ã€ã¢ã³ãããã®ã¢ã¯ã»ã¹ ãã€ã³ãã«é¢é£ä»ããããŠãã MAC ã¢ãã¬ã¹
é§
ã¯ã©ã€ã¢ã³ãèªäœã®MACã¢ãã¬ã¹
pwr
ã·ã°ãã«åŒ·åºŠã äžéšã®ãã©ã€ããŒã¯ãããå ±åããŸããã
ãã±ãã
åä¿¡ããããŒã¿ãã¬ãŒã ã®æ°
ãããŒã
ãã®ã¯ã©ã€ã¢ã³ãããã§ã«ãã¹ããããããã¯ãŒã¯å (essid)
次ã«ãã¿ãŒã²ãã ãããã¯ãŒã¯ãç£èŠããå¿
èŠããããŸãã ã¯ã©ã€ã¢ã³ããªãã§ãããã¯ãŒã¯ããããã³ã°ããããšã¯ããè€éãªãããã¯ã§ãããããå°ãªããšã XNUMX ã€ã®ã¯ã©ã€ã¢ã³ããããã«æ¥ç¶ãããŠããå¿
èŠããããŸã (ã»ã¯ã·ã§ã³ãåç
§)
äžã®äŸã§ã¯ããããã¯ãŒã¯ 00:01:02:03:04:05 ããããŸãã ã¯ã©ã€ã¢ã³ãã«æ¥ç¶ãããŠããã®ã¯ããã ãã§ããããããããå¯äžã®ã¿ãŒã²ããã§ããããšãå€æããŸããã é»æ³¢ãè¯å¥œãªã®ã§ç·Žç¿ã®ã¿ãŒã²ãããšããŠãæé©ã§ãã
åæåãã¯ãã«ã®ã¹ãããã£ã³ã°
ãªã³ã¯ ãããã³ã°ã«ãããã¿ãŒã²ãã ãããã¯ãŒã¯ãããã¹ãŠã®ãã±ããããã£ããã£ã§ããããã§ã¯ãããŸããã ãããã£ãŠãXNUMX ã€ã®ãã£ãã«ã§ã®ã¿ãªãã¹ã³ããåŸã§ãããã³ã°ã«äœ¿çšã§ããããã«ããã¹ãŠã®ããŒã¿ããã£ã¹ã¯ã«æžã蟌ã¿ãŸãã
airodump-ng -c 11 --bssid 00:01:02:03:04:05 -w dump wlan0mon
ãã©ã¡ãŒã¿ã®äœ¿çš -Ñ
ãã£ã³ãã«ãšãã©ã¡ãŒã¿ãéžæããåŸã -w
ã¯ããã£ã¹ã¯ã«æžã蟌ãŸãããããã¯ãŒã¯ ãã³ãã®ãã¬ãã£ãã¯ã¹ã§ãã ãã©ã° âbssid
ã¢ã¯ã»ã¹ ãã€ã³ãã® MAC ã¢ãã¬ã¹ãšãšãã«ãåä¿¡ãããã±ããã XNUMX ã€ã®ã¢ã¯ã»ã¹ ãã€ã³ãã«å¶éããŸãã ãã©ã° âbssid
æ°ããããŒãžã§ã³ã§ã®ã¿å©çšå¯èœ ã¢ã€ããã³ãNG.
WEP ãã¯ã©ãã¯ããåã«ã40 ïœ 000 ã®ç°ãªãåæåãã¯ãã« (IV) ãå¿
èŠã«ãªããŸãã åããŒã¿ ãã±ããã«ã¯åæåãã¯ãã«ãå«ãŸããŠããŸãã ãããã¯åå©çšã§ãããããéåžžããã¯ãã«ã®æ°ã¯ãã£ããã£ããããã±ããã®æ°ãããããã«å°ãªããªããŸãã
ãããã£ãŠã40k ïœ 85k ã®ããŒã¿ ãã±ãã (IV ã䜿çš) ããã£ããã£ãããŸã§åŸ
ã€å¿
èŠããããŸãã ãããã¯ãŒã¯ãæ··éããŠããªãå Žåãããã«ã¯éåžžã«é·ãæéãããããŸãã ã¢ã¯ãã£ããªæ»æ (ãŸãã¯ãªãã¬ã€æ»æ) ã䜿çšãããšããã®ããã»ã¹ãé«éåã§ããŸãã ãããã«ã€ããŠã¯æ¬¡ã®ããŒãã§èª¬æããŸãã
ãããã³ã°
ãã§ã«ååãªéã®ååããã IV ã XNUMX ã€ä»¥äžã®ãã¡ã€ã«ã«ä¿åãããŠããå Žåã¯ãWEP ããŒã®è§£èªãè©Šã¿ãããšãã§ããŸãã
aircrack-ng -b 00:01:02:03:04:05 dump-01.cap
ãã©ã°ã®åŸã®MACã¢ãã¬ã¹ -b
ã¯ã¿ãŒã²ããã® BSSID ã§ããã dump-01.cap
ååããããã±ãããå«ããã¡ã€ã«ã§ãã è€æ°ã®ãã¡ã€ã«ã䜿çšã§ããŸããã³ãã³ãã«ãã¹ãŠã®ååãè¿œå ããããã¯ã€ã«ãã«ãŒãã䜿çšããŸããããšãã°ã dump*.cap
.
ãã©ã¡ãŒã¿ã«é¢ãã詳现æ
å ±
ããŒã解èªããããã«å¿ èŠãªåæåãã¯ãã«ã®æ°ã¯ç¡å¶éã§ãã ããã¯ãäžéšã®ãã¯ãã«ãä»ã®ãã¯ãã«ããã匱ããããå€ãã®éèŠãªæ å ±ã倱ãããã«çºçããŸãã éåžžããããã®åæåãã¯ãã«ã¯ãã匷åãªãã¯ãã«ãšæ··åãããŸãã ãããã£ãŠãéãè¯ããã°ãããã 20 åã® IV ã§ããŒã解èªã§ããŸãã ãã ããããã ãã§ã¯äžååãªå Žåãå€ãã èªç©ºæ©ã®ng é·æé (ãšã©ãŒã倧ããå Žå㯠40 é±é以äž) å®è¡ãããããŒãã¯ã©ãã¯ã§ããªãããšãéç¥ãããããšããããŸãã åæåãã¯ãã«ãå€ãã»ã©ããããã³ã°ã¯ããéãè¡ãããéåžžã¯æ°åãå Žåã«ãã£ãŠã¯æ°ç§ã§è¡ãããŸãã çµéšäžããããã³ã°ã«ã¯ 000 ïœ 85 åã®ãã¯ã¿ãŒã§ååã§ããããšãããã£ãŠããŸãã
ç¹å¥ãªã¢ã«ãŽãªãºã ã䜿çšããŠåŒ±ã IV ãé€å€ãããããé«åºŠãªã¢ã¯ã»ã¹ ãã€ã³ãããããŸãã ãã®çµæãã¢ã¯ã»ã¹ ãã€ã³ããã N åãè¶
ãããã¯ã¿ãŒãååŸã§ããªããªãããããŒã解èªããã«ã¯æ°çŸäžã®ãã¯ã¿ãŒ (ããšãã°ã5 ïœ 7 äž) ãå¿
èŠã«ãªããŸãã ããªãã¯ã§ãã
ç©æ¥µçãªæ»æ
ã»ãšãã©ã®ããã€ã¹ã¯ãå°ãªããšããã©ã€ããŒã«ããããåœãŠãããŠããªãéããã€ã³ãžã§ã¯ã·ã§ã³ããµããŒãããŠããŸããã ç¹å®ã®æ»æã®ã¿ããµããŒããããã®ããããŸãã ã«è©±ã
ãŸãããããã¯ãŒã¯ ã«ãŒããšãã©ã€ããŒã§ãã±ãã ã€ã³ãžã§ã¯ã·ã§ã³ãå®éã«æ©èœããããšã確èªããå¿ èŠããããŸãã ãã§ãã¯ããæãç°¡åãªæ¹æ³ã¯ããã¹ã ã€ã³ãžã§ã¯ã·ã§ã³æ»æãå®è¡ããããšã§ãã ç¶è¡ããåã«ããã®ãã¹ãã«åæ ŒããŠããããšã確èªããŠãã ããã 次ã®æé ãå®äºããã«ã¯ãã«ãŒããæ¿å ¥ã§ããå¿ èŠããããŸãã
MAC ã¢ãã¬ã¹ (èªåã®ã¢ãã¬ã¹ãªã©) ã§ãã£ã«ã¿ãªã³ã°ãããã䜿çšå¯èœãªç¯å²å ã«ããã¢ã¯ã»ã¹ ãã€ã³ãã® BSSID (ã¢ã¯ã»ã¹ ãã€ã³ãã® MAC ã¢ãã¬ã¹) ãš ESSID (ãããã¯ãŒã¯å) ãå¿ èŠã§ãã
ã䜿çšããŠã¢ã¯ã»ã¹ãã€ã³ãã«æ¥ç¶ããŠã¿ãŠãã ãã
aireplay-ng --fakeauth 0 -e "your network ESSID" -a 00:01:02:03:04:05 wlan0mon
åŸã®æå³ -а
ã¯ã¢ã¯ã»ã¹ãã€ã³ãã®BSSIDã«ãªããŸãã
次ã®ãããªè¡šç€ºãããã°ãã€ã³ãžã§ã¯ã·ã§ã³ã¯æåããŸããã
12:14:06 Sending Authentication Request
12:14:06 Authentication successful
12:14:06 Sending Association Request
12:14:07 Association successful :-)
ããã§ãªãå ŽåïŒ
- ESSID ãš BSSID ãæ£ããããšãå確èªããŠãã ããã
- ã¢ã¯ã»ã¹ ãã€ã³ã㧠MAC ã¢ãã¬ã¹ ãã£ã«ã¿ãªã³ã°ãç¡å¹ã«ãªã£ãŠããããšã確èªããŠãã ããã
- å¥ã®ã¢ã¯ã»ã¹ ãã€ã³ãã§ãåãããšãè©ŠããŠãã ããã
- ãã©ã€ããŒãé©åã«æ§æããããµããŒããããŠããããšã確èªããŠãã ããã
- ã0ãã®ä»£ããã«ã6000 -o 1 -q 10ããè©ŠããŠãã ããã
ARPãªãã¬ã€
ãã±ãã ã€ã³ãžã§ã¯ã·ã§ã³ãæ©èœããããšãããã£ãã®ã§ãIV ã®ååã倧å¹
ã«é«éåããæ段ãã€ãŸãã€ã³ãžã§ã¯ã·ã§ã³æ»æãè¡ãããšãã§ããŸãã
äžå¿ææ³
ç°¡åã«èšãã°ãARP 㯠IP ã¢ãã¬ã¹ã«ãªã¯ãšã¹ãããããŒããã£ã¹ããããã® IP ã¢ãã¬ã¹ãæã€ããã€ã¹ãå¿çãéãè¿ãããšã«ãã£ãŠæ©èœããŸãã WEP ã«ã¯ãªãã¬ã€ã«å¯Ÿããä¿è·ããªãããããã±ãããçèŽããŠãæå¹ã§ããéãäœåºŠã§ãéä¿¡ã§ããŸãã ãããã£ãŠããã©ãã£ãã¯ãçæãã (ããã³ IV ãååŸãã) ããã«å¿ èŠãªã®ã¯ãã¢ã¯ã»ã¹ ãã€ã³ãã«éä¿¡ããã ARP ãªã¯ãšã¹ããã€ã³ã¿ãŒã»ããããŠåå®è¡ããããšã ãã§ãã
æ æ°ãªããæ¹
ãŸããŠã£ã³ããŠãéããŸã ã¢ã€ããã³ãNGããã©ãã£ãã¯ãçèŽããŸã (äžèšãåç §)ã airplay-ng О ã¢ã€ããã³ãNG åæã«äœæ¥ããããšãã§ããŸãã ã¯ã©ã€ã¢ã³ããã¿ãŒã²ãã ãããã¯ãŒã¯ã«è¡šç€ºãããã®ãåŸ ã£ãŠãæ»æãéå§ããŸãã
aireplay-ng --arpreplay -b 00:01:02:03:04:05 -h 00:04:05:06:07:08 wlan0mon
-b
ã¿ãŒã²ãã BSSID ãæããŸãã -h
æ¥ç¶ãããŠããã¯ã©ã€ã¢ã³ãã® MAC ã¢ãã¬ã¹ã«éä¿¡ãããŸãã
次ã«ãARP ãã±ãããå°çããã®ãåŸ
ã€å¿
èŠããããŸãã éåžžãæ°ååŸ
ã€å¿
èŠããããŸã (ãŸãã¯èšäºãããã«èªãã§ãã ãã)ã
éãè¯ããã°ã次ã®ãããªãã®ã衚瀺ãããŸãã
Saving ARP requests in replay_arp-0627-121526.cap
You must also start airodump to capture replies.
Read 2493 packets (got 1 ARP requests), sent 1305 packets...
åçãåæ¢ããå¿
èŠãããå Žåã¯ã次㮠ARP ãã±ãããå°çãããŸã§åŸ
ã€å¿
èŠã¯ãªãããã©ã¡ãŒã¿ã䜿çšããŠä»¥åã«ãã£ããã£ãããã±ããã䜿çšããã ãã§ãã -r
.<
filename>
ARP ã€ã³ãžã§ã¯ã·ã§ã³ã䜿çšããå ŽåãPTW ã¡ãœããã䜿çšã㊠WEP ããŒãã¯ã©ãã¯ã§ããŸãã ããã«ãããå¿
èŠãªããã±ãŒãžã®æ°ã倧å¹
ã«åæžãããããã«äŒŽã£ãŠã¯ã©ãã¯ã«ãããæéãççž®ãããŸãã 次ã®ããã«ããŠå®å
šãªãã±ããããã£ããã£ããå¿
èŠããããŸã ã¢ã€ããã³ãNGã€ãŸãããªãã·ã§ã³ã䜿çšããŸããã â--ivsâ
ã³ãã³ããå®è¡ãããšãã ã®ããã« èªç©ºæ©ã®ng 䜿çšãã
ã (PTW ã¯ããã©ã«ãã®æ»æã¿ã€ãã§ã)âaircrack -z <
file name>â
åä¿¡ããããŒã¿ãã±ããã®æ°ã ã¢ã€ããã³ãNG å¢å ãæ¢ãŸã£ãå Žåã¯ãåçé床ãäžããå¿
èŠãããå ŽåããããŸãã ããããã©ã¡ãŒã¿ã§å®è¡ããŸã -x
ã ç§ã¯éåžžã50 ããå§ããŠãåã³ç¶ç¶çã«ãã±ãããåä¿¡ãå§ãããŸã§åŸã
ã«äžããŠãããŸãã ã¢ã³ããã®äœçœ®ãå€ããããšãå¹æçã§ãã <
packets per second>
ç©æ¥µçãªããæ¹
ã»ãšãã©ã®ãªãã¬ãŒãã£ã³ã° ã·ã¹ãã ã¯ãã·ã£ããããŠã³æã« ARP ãã£ãã·ã¥ãã¯ãªã¢ããŸãã åæ¥ç¶åŸã«æ¬¡ã®ãã±ãããéä¿¡ããå¿
èŠãããå Žå (ãŸãã¯åã« DHCP ã䜿çšããå Žå)ãARP èŠæ±ãéä¿¡ããŸãã å¯äœçšãšããŠãåæ¥ç¶äžã« ESSID ãšå Žåã«ãã£ãŠã¯ããŒã¹ããªãŒã ãçèŽããããšãã§ããŸãã ããã¯ãã¿ãŒã²ããã® ESSID ãé衚瀺ã«ãªã£ãŠããå ŽåããŸãã¯å
±æããŒèªèšŒã䜿çšããŠããå Žåã«äŸ¿å©ã§ãã
èãã㊠ã¢ã€ããã³ãNG О airplay-ng äœæ¥ããŠããŸãã å¥ã®ãŠã£ã³ããŠãéããŠå®è¡ããŸã
ãã㯠-a
â ããã¯ã¢ã¯ã»ã¹ ãã€ã³ãã® BSSID ã§ãã -Ñ
éžæããã¯ã©ã€ã¢ã³ãã® MAC ã¢ãã¬ã¹ã
æ°ç§åŸ
ã€ãšãARP ãªãã¬ã€ãæ©èœããŸãã
ã»ãšãã©ã®ã¯ã©ã€ã¢ã³ãã¯èªåçã«åæ¥ç¶ãè©Šã¿ãŸãã ãããã誰ãããã®æ»æãèªèãããªã¹ã¯ããŸãã¯å°ãªããšã WLAN ã§äœãèµ·ãã£ãŠãããã«æ³šæãæããªã¹ã¯ã¯ãä»ã®æ»æãããé«ããªããŸãã
ããã«è©³ããããŒã«ãšãã®æ
å ±ã«ã€ããŠã¯ã
åºæïŒ habr.com