How to hack a wi-fi network

Doesn’t it suck when you see your laptop’s catching so many wi-fi signals but none of them is accessible.. don’t you feel like “I wish I could some how break the password and dive into the deep oceans of the information” I beleive everyone should be able to have free internet. If someday I make it big enough and I’ll be having ample money.. I promise I’ll provide free wifi hotspots all over the places.. “Let there be INTERNET”.. even If I don’t get rich.. I’ll become a politician and would make Internet a Fundemental right to every citizen.. Now that would be something..
That’s enough with the Castles in the air.. now lets get back to reality..
What I can do for you right now is that I can tell you how to hack a wifi network to access Internet.. Some would call it stealing.. some like me won’t..
I’ll call it Sharing.. Sharing is what on which the whole Internet is build upon…
So.. Here’s how we do it..

1) First we need to scan for available wireless networks.
Theres this great tool for windows to do this.. calledNetStumbleror Kismet for Windows and Linux and KisMac for Mac
Below is a screenshot of NetStumbler.. It will show you a list of all the wireless access points in your range.
It’ll also show how the Wi-fi network is secured..
The two most common encryption types are:
1) WEP

2) WAP
WEP i.e Wire Equivalent Privacy is not consideres as safe as WAP i.e Wireless Application Protocol.
WEP have many flaws that allows a hacker to crack a WEP key easily.. whereas

WAP is currently the most secure and best option to secure a wi-fi network..
It can’t be easily cracked as WEP because the only way to retreive a WAP key is to use a brute-force attack or dictionary atack.
Here I’ll tell you how to Crack WEP
To crack WEP we will be using Live Linux distribution called BackTrack to crack WEP.
BackTrack have lots of preinstalled softwares for this very purpose..
The tools we will be using on Backtrack are:
Kismeta wireless network detector
airodumpcaptures packets from a wireless router
aireplay forges ARP requests
aircrackdecrypts the WEP keys
1) First of all we have to find a wireless access point along with its bssid, essid and channel number. To do this we will run kismet by opening up the terminal and typing in kismet. It may ask you for the appropriate adapter which in my case is ath0. You can see your device’s name by typing in the command iwconfig.
How to Hack a Wifi network | WEP Hacking | Wifi Hacking
2) To be able to do some of the later things, your wireless adapter must be put into monitor mode. Kismet automatically does this and as long as you keep it open, your wireless adapter will stay in monitor mode.
3) In kismet you will see the flags Y/N/0. Each one stands for a different type of encryption. In our case we will be looking for access points with the WEP encryption. Y=WEP N=OPEN 0=OTHER(usually WAP).
4) Once you find an access point, open a text document and paste in the networks broadcast name (essid), its mac address (bssid) and its channel number. To get the above information, use the arrow keys to select an access point and hit <ENTER> to get more information about it.
How to Hack a Wifi network | WEP Hacking | Wifi Hacking
5) The next step is to start collecting data from the access point with airodump. Open up a new terminal and start airodump by typing in the command:
airodump-ng -c [channel#] -w [filename] –bssid [bssid] [device]
In the above command airodump-ng starts the program, the channel of your access point goes after -c , the file you wish to output the data goes after -w , and the MAC address of the access point goes after –bssid. The command ends with the device name. Make sure to leave out the brackets.
6) Leave the above running and open another terminal. Next we will generate some fake packets to the target access point so that the speed of the data output will increase. Put in the following command:
aireplay-ng -1 0 -a [bssid] -h 00:11:22:33:44:55:66 -e [essid] [device]
In the above command we are using the airplay-ng program. The -1 tells the program the specific attack we wish to use which in this case is fake authentication with the access point. The 0 cites the delay between attacks, -a is the MAC address of the target access point, -h is your wireless adapters MAC address, -e is the name (essid) of the target access point, and the command ends with the your wireless adapters device name.
7) Now, we will force the target access point to send out a huge amount of packets that we will be able to take advantage of by using them to attempt to crack the WEP key. Once the following command is executed, check your airodump-ng terminal and you should see the ARP packet count to start to increase. The command is:
aireplay-ng -3 -b [bssid] -h 00:11:22:33:44:5:66 [device]
In this command, the -3 tells the program the specific type of attack which in this case is packet injection, -b is the MAC address of the target access point, -h is your wireless adapters MAC address, and the wireless adapter device name goes at the end.
8) Once you have collected around 50k-500k packets, you may begin the attempt to break the WEP key. The command to begin the cracking process is:
aircrack-ng -a 1 -b [bssid] -n 128 [filename].ivs
In this command the -a 1 forces the program into the WEP attack mode, the -b is the targets MAC address, and the -n 128 tells the program the WEP key length. If you don’t know the -n , then leave it out. This should crack the WEP key within seconds. The more packets you capture, the bigger chance you have of cracking the WEP key.
How to Hack a Wifi network | WEP Hacking | Wifi Hacking
I am sure it might have helped.:)
So keep reading and do subscribe to Learn Hacking
Feel Free to Post comments.

19 Responses to “How to hack a wi-fi network”

  1. Kattyjung

    Feb 20. 2011

    From where i can get Backtrack. and is it workable on Window, or i have to have Linux too.

    Reply to this comment
  2. Kattyjung

    Feb 23. 2011

    i got Backtrack4

    but it’s .iso

    plz tell what to do next.

    Reply to this comment
    • Rakumashi

      May 26. 2011

      if you have backtrack 4 (which i use) you must first burn it using any kind of burning program (perferably Alcohol 120%) after burning it restart the computer… it will automatically boot you into backtrack 4 before it going into any menu you must enter the command (startx) then hit enter… from there backtack will continue to load and you will be in backtrack… what you do from there is all on you…. goodluck!

      Reply to this comment
    • I don't think you need it

      Nov 09. 2013

      Kattyjung, you need an app called poweriso or daemon tools. You can search for them

      Reply to this comment
  3. sat

    Feb 24. 2011

    how it works can i do it from win 7?

    Reply to this comment
  4. Polycom India Support

    May 06. 2011

    thanks for sharing this useful information the way of explaination is too good

    Reply to this comment
  5. mohit

    May 24. 2011

    I want to learn ethical hacking, but unable to found any such institute or any book to start with.
    can you please guide me the right and authentic way.

    Reply to this comment
  6. ABHISHEK

    Aug 07. 2011

    I use the wi-if in college and our college has blocked majority of sites and even restricted the downloading.can you tell me how to bypass and gain access to the blocked websites and also carry out the downloads with my IP not being detected.i used few tunnelling softwares but they worked only till certain extent.

    Reply to this comment
  7. ethicalmohit

    Aug 17. 2011

    Very Nice Posting ……………..

    Reply to this comment
  8. nasheet omar

    Sep 02. 2011

    i suppose above u r breaking wep encryption……does it break wap encryption…..it is used more

    Reply to this comment
  9. samarth

    Jan 04. 2012

    how to hack wi – fi for a mobile??

    Reply to this comment
  10. Mohammed Siadath Ali

    Jul 11. 2012

    I ll Try with these steps … hope this hacking tips works … thanks for the post.

    Reply to this comment
  11. starter

    Dec 16. 2012

    I feel stupid asking this, but isn thr a easier way explain onto how I can hack a wiFi connection. My internet service is pretty expensive and I cnt seem too keep all my programs up too date. Its a disaster!

    Reply to this comment
  12. BharthiSPB

    Jan 04. 2013

    Is there any other easy way to hack or crack a wi5 password using windows 7 itself?
    and without using any extra applications……….

    Reply to this comment
  13. Ck Tang

    Feb 21. 2013

    Actually… how to use kismet??? Do i need to dl it???

    Reply to this comment
  14. manu

    Nov 10. 2013

    its not very cool its very big proces sis there is any softawre which can crack password

    Reply to this comment
  15. Farshad-T3

    Dec 01. 2013

    How can I do that with my cellphone?
    I have Nokia 5800!!!

    Reply to this comment

Leave a Reply