How Do I Change My Wifi Password Cox

Download Article

Want to find out if your Wi-Fi network is like shooting fish in a barrel to hack? As a Kali Linux user, you have hundreds of pre-installed security auditing and penetration testing tools at your disposal. These tools are intended for ethical hacking—finding and repairing weak spots in a network—and not for illegal purposes. To find out if a WPA/SPA PSK network is susceptible to a brute-force password attack, you can utilize a suite of tools chosen aircrack-ng to hack the central. Nosotros'll prove you how!

1
Log into your Kali desktop as root. This logs you in to the desktop environment every bit the root user.
- If y'all haven't enabled root logins in Kali and are using KDE or GNOME, run sudo apt install kali-root-login at the prompt.^[1] One time installed, you can set a root password by running sudo password (no username) and entering a new root password. At that point, you can log in to the desktop as root.
2
Plug your Wi-Fi card (if needed). If you don't have a Wi-Fi card that allows monitoring (RFMON) or you lot're using Kali Linux in a virtual machine, you'll demand to attach an external carte du jour that does.
- In most cases, just attaching the card to your computer will be enough to gear up information technology up. Check the instructions for your Wi-Fi carte du jour to be sure.
- If you lot're not sure if your Wi-Fi carte supports monitoring, information technology doesn't hurt to try these next few steps.
Advertising
3

Disconnect from Wi-Fi. To successfully examination a network, you'll desire to make sure your computer is not actively connected to Wi-Fi—not even to the network you're testing.
4
In a terminal window, run the airmon-ng command. This tool come with Kali Linux as a part of the aircrack-ng package, and will show you lot the names of the connected Wi-Fi interface(s). You'll want to take annotation of what you meet under the "Interface" header for your card.
- If y'all don't meet an interface name, your Wi-Fi carte doesn't support monitoring.
5
Run airmon-ng start wlan0 to starting time monitoring the network. If the name of your Wi-Fi interface isn't wlan0, supplant that part of the command with the correct name. This gives you lot a new virtual interface proper name, which will unremarkably be something like mon0, which you'll come across side by side to "(monitor style enabled)."
- If you lot see a message that says "Found processes that could cause problem," run airmon-ng check kill to impale them.
vi

Run airodump-ng mon0 to view the results. Replace mon0 with the correct virtual interface proper noun if that's not what you saw earlier. This displays a data table for all Wi-Fi routers in range.
seven
Find the router yous want to hack. At the end of each string of text, you'll run across a router name.
- Make sure the router is using WPA or WPA2 security. If y'all see "WPA" or "WPA2" in the "ENC" column, you can proceed.
viii

Find the BSSID and channel number of the router. Now you'll desire to brand note of the values of the "BSSID" and "CH" fields for the router you want to hack. These pieces of data are to the left of the network'southward name.
nine
Monitor the network for a handshake. A "handshake" occurs when an particular connects to a network (eastward.grand., when your calculator connects to a router). Y'all demand to wait until a handshake occurs so y'all capture the data necessary to crack the password. To start monitoring, run the post-obit command:
- airodump-ng -c number --bssid xx:xx:20:twenty:xx:xx -w /root/Desktop/ mon0
- Replace the discussion number with the channel number you saw, and the twenty:xx:xx:twenty:xx:xx with the BSSID.
- As long as this command stays running, you lot'll be monitoring for all connections and new handshakes.
Advertisement

1
Understand what a deauth attack does. A deauth attack sends deauthentication packets to the router y'all're trying to interruption into, causing uses to disconnect and requiring them to log back in. When a user logs back in, yous volition exist provided with a handshake. If you don't practise a deauth attack, you might have to wait around for a long time for a handshake to consummate—yous'll demand that handshake to crack the countersign.
- If you already encounter a line with the tag "WPA handshake:" followed by a MAC address in the output of the airodump-ng command, skip to Step v—you have what y'all need to crack the password and don't demand to send deauth packets.
- Think—use these tools for ethical purposes only.
2

Wait for something to connect to the network. In one case you see 2 BSSID addresses appear adjacent to each other—1 labeled BSSID (the Wi-Fi router) and the other labeled STATION (the figurer or other device)—this this means a customer is connected. To forcefulness them into a handshake, you'll now transport them deauth packets that kill their connectedness.
iii

Open up a new last. Brand sure airodump-ng is still running in original final window, and drag it to some other place on your desktop then both terminals are visible.
4
Ship the deauth packets. Run this command, replacing STATION BSSID with the BSSID of the client that connected to the network, and NETWORK BSSID with the router'due south BSSID: aireplay-ng -0 2 -a STATION BSSID -c NETWORK BSSID mon0.
- This control will transport 2 deauth packets to disconnect the client from the network.^[2] Don't try to send more than this—sending besides many packets could prevent the client from reconnecting and generating the handshake.
- Equally long equally you're close enough to the target client, they'll be disconnected from the router and forced to reconnect with a handshake. If this doesn't piece of work, move closer to the client.
- Equally soon every bit the customer reconnects, all of the information you'll need to crack the password volition be available.
5

In the original terminal window, press Control+C to quit airodump-ng. This stops the dump and saves a file ending with .cap to your desktop.
6
Decompress the rockyou.txt wordlist. To crack the countersign, yous'll demand a wordlist. Fortunately, since you're using Kali Linux, you accept several already in /usr/share/wordlists.^[3] The one we'll want to apply is called rockyou.txt, but it's zipped up by default. To unzip information technology, run gzip -d /usr/share/wordlists/rockyou.txt.gz.
- You won't be able to fissure the password if information technology's non in the wordlist. Yous can always effort one of the other wordlists if rockyou.txt doesn't crack the password.
7
Run the command to cleft the password. You'll use a tool called aircrack-ng, which come up with Kali Linux, to do and so. The command is aircrack-ng -a2 -b NETWORK BSSID -w /usr/share/wordlists/rockyou.txt /root/Desktop/*.cap. Supplant NETWORK BSSID with the BSSID for the router.
- Depending on the strength of the password and the speed of your CPU, this process tin take anywhere from a few hours to a few days.
- If you're peachy static WEP key network instead of a WPA/WPA2-PSK network, replace -a2 with -a1.^[iv]
8

Look for "KEY Plant!" in the terminal window. When yous see a "KEY FOUND!" heading appear, aircrack-ng has found the password, which will appear in plain text.

Advertisement

Add New Question

Question

What is a word list, and how do I detect ane?

A word list is a file with passwords in information technology. RockYou is a good one.
Question

Where can I download Kali Linux?

Get to kali.org. At the top of the page, there is a Download tab. Once y'all open that, information technology will pull up the listing of current downloads.
Question

Who created Kali Linux?

Kali Linux is a Debian-derived Linux distribution designed for digital forensics and penetration testing. It is maintained and funded past Offensive Security Ltd. Mati Aharoni, Devon Kearns and Raphaël Hertzog are the core developers.
Question

Why are some commands are not working in the Kali Linux in VirtualBox?

With VirtualBox, you lot'll demand an external WiFi Adaptater, and this adaptater must handle monitor style.
Question

Is it simply for randomly generated passwords?

Non exactly, information technology is able to crevice specific selected passwords just it may not be able to hack something complicated.
Question

How much fourth dimension will it take for nifty the countersign?

Sourabh Joshi

Community Answer

It may take few seconds or many hours. It depends on how hard the password is. Hacking is not an piece of cake chore, you need to be patient.
Question

Will I discover whatever symptoms on my router when I attempt this?

Y'all should non notice any symptoms if there is no Wi-Fi connection indicator. In some cases, LED lamp on your router starts blinking if the connectedness is being established.
Question

Is this similar a dictionary attack?

Partly, it could be considered lexicon attack, simply often the wordlists contain much more than than just words from the lexicon. The words could be fabricated up of numbers, letters and special characters.
Question

What is a wink bulldoze?

A "flash drive" is a USB retentivity stick.
Question

After attempting to run naivehashcat, I got "dicts/rockyou.txt: No such file or directory". What does that mean? What should I exercise?

This ways that the file you are trying to target does non be. Make sure you copy the path of the file correctly into the terminal.

Show more answers

Ask a Question

200 characters left

Include your email accost to get a bulletin when this question is answered.

Submit

Advertising

Using this method to test your own Wi-Fi for weak spots earlier launching a server is a skilful manner to set your organization for similar attacks.

Sending more than than 2 death packets may cause your target figurer to crash, thus arousing suspicion.
Hacking into anyone'south Wi-Fi without permission is illegal in most countries. Only perform the in a higher place steps on a network that either belongs to you or for which you lot have explicit consent to test.

Most This Commodity

Commodity Summary Ten

Log into your Kali Linux calculator as root and plug a Wi-Fi card into your computer. Next, open your computer's last. From here, you'll exist able to begin monitoring the network and listen to nearby routers. When you find the router y'all want to hack, scout it for a handshake, which will give you the code to enter the network. To learn how to use Aircrack-Ng for Non-GPU computers, keep reading!

Did this summary help you?

Thanks to all authors for creating a page that has been read 1,027,448 times.