Mhoroi mose. Mukutarisira kutanga kwekosi
Nhasi chidzidzo chinokufambisa iwe kuburikidza nekutanga kwekutanga nepakeji aircrack-ng. Ehe, hazvibviri kupa ruzivo rwese rwunodiwa uye kuvhara mamiriro ese. Saka gadzirira kuita basa rako rechikoro uye tsvakurudzo uri wega. On
Kunyangwe isingavhare matanho ese kubva pakutanga kusvika pakupedzisira, gwara
Kumisa michina, kuisa Aircrack-ng
Nhanho yekutanga mukuona kushanda kwakakodzera aircrack-ng pane yako Linux system ndeye kupeta uye kuisa mutyairi akakodzera kunetiweki kadhi rako. Makadhi mazhinji anoshanda nevatyairi vakawanda, mamwe acho anopa mashandiro anodiwa ekushandisa aircrack-ng, vamwe havadaro.
Ini ndinofunga zvinoenda pasina kutaura kuti iwe unoda network kadhi inoenderana nepakeji aircrack-ng. Ndiko kuti, Hardware inoenderana zvizere uye inogona kushandisa jekiseni repaketi. Uchishandisa kadhi retiweki rinoenderana, unogona kubira nzvimbo isina waya yekupinda mukati isingasviki awa.
Kuti uone kuti kadhi rako nderipi, tarisa peji
Kutanga, iwe unofanirwa kuziva kuti chipset kadhi rako retiweki rinoshandisa chii uye mutyairi wauchazoda kwairi. Iwe unofanirwa kuona izvi uchishandisa ruzivo rwuri mundima iri pamusoro. Muchitsauko
Kuisa aircrack-ng
Iyo yazvino vhezheni yeaircrack-ng inogona kuwanikwa kubva
Kuisa aircrack-ng kureva
IEEE 802.11 Basics
Zvakanaka, ikozvino sezvo isu tese tagadzirira, yave nguva yekumira tisati tatanga uye kudzidza chinhu kana zviviri nezve mashandiro asina waya network.
Chikamu chinotevera chakakosha kuti unzwisise kuitira kuti iwe ugone kuzvifungidzira kana chimwe chinhu chisingashande sezvaitarisirwa. Kunzwisisa kuti zvese zvinoshanda sei zvinokubatsira kuti uwane dambudziko, kana kuti ritsanangure nemazvo kuti mumwe munhu akubatsire. Zvinhu zvinowana arcane diki pano uye ungangoda kusvetuka ichi chikamu. Nekudaro, kubira mawireless network kunoda ruzivo rushoma, saka kubira kunopfuura kungotaipa murairo mumwe chete uye kurega aircrack ichikuitira iwe.
Nzira yekuwana sei wireless network
Ichi chikamu sumo pfupi kune inotungamirwa network inoshanda nenzvimbo dzekuwana (AP). Imwe neimwe nzvimbo yekupinda inotumira anenge gumi anonzi mabhekoni mafuremu pasekondi. Aya mapakeji ane ruzivo runotevera:
- Network zita (ESSID);
- Kunyangwe encryption ichishandiswa (uye chii encryption inoshandiswa, asi cherechedza kuti ruzivo urwu runogona kunge rwusiri rwechokwadi nekuda kwekuti nzvimbo yekuwana inoshuma);
- Ndeapi mareti ekufambisa data anotsigirwa (muMBit);
- Netiweki iri pa chiteshi chipi?
Irwo ruzivo urwu runoratidzwa mumudziyo unobatanidza zvakananga kune iyi network. Zvinoonekwa kana iwe uchibvumira kadhi kuongorora network uchishandisa
uye paunozviita iwlist <
interface> scan
Imwe neimwe nzvimbo yekuwana ine yakasarudzika MAC kero (48 bits, 6 hex pairs). It looks something like this: 00:01:23:4A:BC:DE. Imwe netiweki mudziyo une kero yakadaro, uye maturusi etiweki anotaurirana achiashandisa. Saka imhando yezita rakasiyana. MAC kero dzakasiyana uye hapana maviri maturusi ane yakafanana MAC kero.
Kubatanidza kune network
Pane zvakawanda zvingasarudzwa zvekubatanidza kune wireless network. Kazhinji, Open System Authentication inoshandiswa. (Sarudzo: Kana iwe uchida kudzidza zvakawanda nezve chokwadi,
Vhura System Authentication:
- Inokumbira mvumo yekuwana nzvimbo;
- Nzvimbo yekupinda inopindura: Zvakanaka, wakatendeseka.
- Inokumbira mubatanidzwa wenzvimbo yekuwana;
- Nzvimbo yekupinda inopindura: Zvakanaka, wakabatana.
Iyi ndiyo nyaya yakapusa, asi matambudziko anomuka kana usina kodzero dzekuwana nekuti:
- Inoshandisa WPA/WPA2 uye unoda APOL kuvimbiswa. Nzvimbo yekupinda icharamba mudanho rechipiri.
- Nzvimbo yekupinda ine runyorwa rwevatengi vanotenderwa (MAC kero) uye haibvumire chero munhu kuti abatanidze. Izvi zvinonzi MAC kusefa.
- Nzvimbo yekupinda inoshandisa Shared Key Authentication, zvichireva kuti iwe unofanirwa kupa chaiyo WEP kiyi yekubatanidza. (Ona chikamu
"Ndoita sei fake yakagovaniswa key authentication?" kuti uwane zvakawanda nezvazvo)
Kufemba kwakapusa uye kubira
Network kuwanikwa
Chinhu chekutanga kuita kutsvaga chingangove chinangwa. Iyo aircrack-ng package inayo yeizvi
Usati watsvaga manetwork, unofanira kushandura kadhi rako kune inonzi "monitoring mode". Monitor mode imhando yakakosha inobvumira komputa yako kuteerera kunetiweki mapaketi. Iyi modhi inobvumirawo majekiseni. Tozotaura zvemajekiseni nguva inotevera.
Kuisa kadhi retiweki mune yekutarisa maitiro, shandisa
airmon-ng start wlan0
Nenzira iyi iwe uchagadzira imwe interface uye wowedzera kwairi "mon". Saka, wlan0 ichava wlan0mon. Kuti utarise kana network kadhi iri mukutarisa maitiro, mhanya iwconfig
uzvionere wega.
Zvadaro, mhanya
airodump-ng wlan0mon
kana airodump-ng haizokwanisi kubatana kune WLAN mudziyo, uchaona chimwe chinhu chakadai:
Chanera chazvino chinoratidzwa kumusoro kuruboshwe.
Mushure mechinguva pachave nenzvimbo dzekuwana uye (netariro) vamwe vatengi vanobatana navo.
Iyo yepamusoro block inoratidza yakaonekwa nzvimbo dzekuwana:
bssid
mac kero yekuwana nzvimbo
pwr
chiratidzo chemhando kana chiteshi chasarudzwa
pwr
chiratidzo chesimba. vamwe vatyairi havazvitauri.
beacon
nhamba yemabhikoni akagamuchirwa. kana iwe usina chiratidzo chesimba chiratidzo, unogona kuchiyera mumabhekoni: iyo yakawanda mabhekoni, zviri nani chiratidzo.
dhata
nhamba yemafuremu edata akagamuchirwa
ch
chiteshi panoshanda nzvimbo yekupinda
mb
kumhanya kana kuti yekuwana poindi modhi. 11 yakachena 802.11b, 54 yakachena 802.11g. kukosha pakati pezviviri izvi musanganiswa.
on
encryption: opn: hapana encryption, wep: wep encryption, wpa: wpa kana wpa2, wep?: wep kana wpa (hazvisati zvajeka)
essid
network name, dzimwe nguva yakavanzwa
Iyo yepasi block inoratidza vatengi vakaonekwa:
bssid
mac kero iyo mutengi anodyidzana nayo nenzvimbo iyi yekupinda
chiteshi
mac kero yemutengi pachayo
pwr
chiratidzo chesimba. vamwe vatyairi havazvitauri.
mapaketi
nhamba yemafuremu edata akagamuchirwa
michina
Mazita etiweki (essids) atoongororwa nemutengi uyu
Iye zvino iwe unofanirwa kutarisa chinangwa chetiweki. Anenge mutengi mumwe chete anofanira kunge akabatana nayo, sezvo kubira network pasina vatengi iri nyaya yakaoma kunzwisisa (ona chikamu
In the example above there is a network 00:01:02:03:04:05. Yakazove iyo chete chinangwa chinogoneka, sezvo chiri icho chete chakabatana nemutengi. Iinewo chiratidzo chakanaka, zvichiita kuti ive chinangwa chakakodzera chekudzidzira.
Sniffing Initialization Vectors
Nekuda kwekubatanidza hopping, hausi kuzotora ese mapaketi kubva kune yakananga network. Naizvozvo, isu tinoda kuteerera chete pane imwe chiteshi uye nekuwedzera kunyora data rese kudhisiki, kuitira kuti isu tigone kuishandisa kubira:
airodump-ng -c 11 --bssid 00:01:02:03:04:05 -w dump wlan0mon
Kushandisa parameter -с
iwe unosarudza chiteshi uye parameter mushure -w
ndicho chivakamberi chekuraswa kwenetiweki yakanyorwa kudhisiki. Flag –bssid
pamwe chete nekero yeMAC yenzvimbo yekuwana, inomisa mapaketi anogamuchirwa kune imwe nzvimbo yekuwana. Flag –bssid
inongowanikwa mushanduro itsva airodump-ng.
Usati watsemura WEP, iwe uchada pakati pe40 ne000 akasiyana Initialization Vectors (IV). Imwe neimwe data packet ine yekutanga vector. Inogona kushandiswa zvakare, saka nhamba yemavheji kazhinji ishoma pane nhamba yemapakiti akatorwa.
Saka iwe uchafanirwa kumirira kutora 40k kusvika 85k data packet (ine IV). Kana network isina kubatikana, izvi zvinotora nguva yakareba kwazvo. Iwe unogona kumhanyisa chiitiko ichi nekushandisa kurwisa kunoshanda (kana replay kurwisa). Tichataura nezvavo muchikamu chinotevera.
Hacking
Kana uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchinge uchingerwa maIVs akachengetwa mune imwe kana akawanda faira, unogona kuedza kutsemura kiyi yeWEP:
aircrack-ng -b 00:01:02:03:04:05 dump-01.cap
MAC kero mushure memureza -b
ndiyo BSSID yechinangwa, uye dump-01.cap
ifaira rine mapaketi akabatwa. Iwe unogona kushandisa akawanda mafaera, ingo wedzera ese mazita kumurairo kana kushandisa wildcard, semuenzaniso dump*.cap
.
Mamwe ruzivo nezve parameters
Huwandu hwemavheti ekutanga anodiwa kupaza kiyi haina muganho. Izvi zvinoitika nekuti mamwe mavheji haana simba uye anorasikirwa neruzivo rwakakosha kupfuura mamwe. Kazhinji aya mavheti ekutanga anosanganiswa neakasimba. Saka kana uine rombo rakanaka, unogona kupaza kiyi ne20 IVs chete. Zvisinei, kazhinji izvi hazvina kukwana, aircrack-ng inogona kumhanya kwenguva yakareba (vhiki kana kupfuura kana kukanganisa kwakakwira) uye wozokuudza kuti kiyi haigone kutsemuka. Iyo yakawanda yekutanga mavheji yaunayo, iyo inokurumidza hack inogona kuitika uye kazhinji inozviita mumaminetsi mashoma kana kunyange masekonzi. Zvakaitika zvinoratidza kuti 40 - 000 mavheji anokwana kubira.
Kune mamwe mapoinzi epamberi ekuwana anoshandisa akakosha algorithms kusefa kunze asina kusimba maIV. Nekuda kweizvozvo, haugone kuwana anopfuura N vectors kubva panzvimbo yekuwana, kana iwe uchada mamirioni emavheji (semuenzaniso, 5-7 miriyoni) kutsemura kiyi. Unogona
Active kurwisa
Midziyo mizhinji haitsigire jekiseni, zvirinani pasina madhiraivha ane zvigamba. Vamwe vanongotsigira kumwe kurwiswa. Kutaura na
Kutanga iwe unofanirwa kuve nechokwadi chekuti jekiseni repaketi rinoshanda netiweki yako kadhi uye mutyairi. Nzira iri nyore yekutarisa ndeyekuita test jekiseni kurwisa. Ita shuwa kuti wapasa bvunzo iyi usati waenderera. Kadhi rako rinofanira kukwanisa kubaya jekiseni kuitira kuti upedze matanho anotevera.
Iwe unozoda iyo BSSID (MAC kero yenzvimbo yekupinda) uye ESSID (zita retiweki) yenzvimbo yekupinda iyo isingasefa nemakero eMAC (seyako) uye iri munharaunda iripo.
Edza kubatanidza kunzvimbo yekupinda uchishandisa
aireplay-ng --fakeauth 0 -e "your network ESSID" -a 00:01:02:03:04:05 wlan0mon
Zvichireva mushure -а
ichave iyo BSSID yenzvimbo yako yekuwana.
Jekiseni rakashanda kana ukaona chinhu chakadai:
12:14:06 Sending Authentication Request
12:14:06 Authentication successful
12:14:06 Sending Association Request
12:14:07 Association successful :-)
Kana zvisiri:
- Kaviri-tarisa kurongeka kweESSID neBSSID;
- Ita shuwa kuti MAC kero kusefa kwakadzimwa panzvimbo yako yekuwana;
- Edza zvakafanana pane imwe nzvimbo yekuwana;
- Ita shuwa kuti mutyairi wako akagadzirwa zvakanaka uye anotsigirwa;
- Panzvimbo pe "0" edza "6000 -o 1 -q 10".
ARP replay
Izvozvi zvatave kuziva kuti jekiseni repaketi rinoshanda, tinogona kuita chimwe chinhu chinokurumidzisa kubata IVs: jekiseni kurwisa.
Pfungwa huru
Nemashoko akareruka, ARP inoshanda nekutepfenyura chikumbiro kukero yeIP, uye mudziyo une IP kero inodzosera mhinduro. Sezvo WEP isingadziviriri pakudzokororwa, unogona kufembedza pakiti uye woitumira kakawanda sekunge iri kushanda. Saka, iwe unongoda kubata uye kudzokorodza chikumbiro cheARP chakatumirwa kunzvimbo yekuwana kuti ugadzire traffic (uye kuwana maIV).
Simbe nzira
Tanga wavhura hwindo ne airodump-ng, iyo inofembedza traffic (ona pamusoro). airplay-ng и airodump-ng inogona kushanda panguva imwe chete. Mirira kuti mutengi aonekwe pane yakananga network uye tanga kurwisa:
aireplay-ng --arpreplay -b 00:01:02:03:04:05 -h 00:04:05:06:07:08 wlan0mon
-b
inonongedza kune chinangwa BSSID, -h
kune kero yeMAC yemutengi akabatana.
Iye zvino unofanirwa kumirira kuti ARP packet isvike. Kazhinji unofanirwa kumirira maminetsi mashoma (kana kuverenga chinyorwa zvakare).
Kana uine rombo rakanaka, uchaona chimwe chinhu chakadai:
Saving ARP requests in replay_arp-0627-121526.cap
You must also start airodump to capture replies.
Read 2493 packets (got 1 ARP requests), sent 1305 packets...
Kana iwe uchida kumira kutamba, haufanirwe kumirira inotevera ARP packet kuti isvike, unogona kungoshandisa mapaketi akatorwa kare uchishandisa parameter. -r
.<
filename>
Paunenge uchishandisa ARP jekiseni, unogona kushandisa iyo PTW nzira yekutsemura kiyi WEP. Iyo inoderedza zvakanyanya kuwanda kwemapakeji anodiwa, uye pamwe navo nguva yekutsemura. Iwe unofanirwa kutora iyo yakazara pakiti nayo airodump-ng, ndiko kuti, usashandise sarudzo “--ivs”
pakuita murairo. For aircrack-ng shandisa
. (PTW ndiyo default kurwisa mhando)“aircrack -z <
file name>”
Kana nhamba yemapakiti e data yakagamuchirwa airodump-ng inomira kuwedzera, ungangoda kudzikisa kumhanya kwekutamba. Ita izvi neparameter -x
. Ndinowanzotanga pa50 uye ndinoshanda nzira yangu pasi kusvikira ndatanga kugamuchira mapaketi nguva dzose zvakare. Kuchinja chinzvimbo cheantenna kunogona kukubatsirawo. <
packets per second>
Aggressive nzira
Mazhinji masisitimu anoshanda anobvisa iyo ARP cache kana ichidzima. Kana vachida kutumira pakiti inotevera mushure mekubatanidza zvakare (kana kungoshandisa DHCP), vanotumira chikumbiro cheARP. Semhedzisiro, iwe unogona kuhwihwidza iyo ESSID uye pamwe iyo keystream panguva yekubatanidzazve. Izvi zviri nyore kana ESSID yechinangwa chako yakavanzwa kana ikashandisa yakagovaniswa-kiyi yekusimbisa.
Regai airodump-ng и airplay-ng vari kushanda. Vhura rimwe hwindo uye mhanya
zviri -a
- iyi ndiyo BSSID yenzvimbo yekuwana, -с
MAC kero yemutengi akasarudzwa.
Mirira masekondi mashoma uye ARP replay ichashanda.
Vazhinji vatengi vanoedza kubatanidza otomatiki. Asi njodzi yekuti mumwe munhu azive kurwiswa uku, kana kunyatsoteerera zviri kuitika paWLAN, yakakwirira kupfuura nekumwe kurwiswa.
Zvimwe zvishandiso uye ruzivo pamusoro pavo, iwe