Step by step kali linux and wireless hacking basics wep hacking part 3

Part 1: Capturing WPA Handshake

what is WPA handshake
Before reading this post, many of you have tried to guess wifi password. Suppose you can guess passwords without any signal. WPA handshake file can do it. In other words, it is a file of a particular wireless network where you can try passwords without signal. One more thing system will guess passwords with speed of 1000w/s, or more depends on your hardware.

Power on your Machine and open terminal.

Type su.

If you are not log in as the root user, then it will ask for root password.

Next step type ifconfig and press enter. It will show all available network interface. Take a  look all of these. If there is wlan0 is present, then you can go ahead. In some distribution, it is named something different like wlXXXX. It indicates that you can use wifi.


Next step is about killing your internet. It is important. Here is the command.

ifconfig wlan0 down

Next step is about enables monitor mode.

iwconfig wlan0 mode monitor

Above command will enable monitor mode. You have to enable monitor mode. Monitor mode is used see information about wifi networks that are available in our range. For disconnecting the client from network monitor mode is important (read full post you will understand what I am talking about).

After that, you need to kill (stop) some computer process.

airmon-ng check kill

It will kill all the process that can cause a problem in wifi hacking.  For e.x. Network manager. We all of us enable auto-connect to our network. For hacking, it causes a problem, so you have to stop this process.

After that, you can see all available network (depend upon your wireless card range). I from a village so there is only one wifi network available. To do this run following command.

airodump-ng wlan0

It will show all network with a lot of information. It will continue until you did not stop it.

Press ctrl+c to stop it.

Next step is important to See everything about your target network BSSID is mac address ESSID is the name of Network. ENC shows security used network. Before going ahead make sure it is WPA or wpa2. CH shows your channel number.

Depending upon your target you have to change channel number. In my case, it is eight look it above screenshot.

iwconfig wlan0 channel 8

Your adapter channel will change from anything to 8.

Using following command you can capture WPA handshake.

airodump-ng -c 1 -bssid 90:8D:78:73:34:12 -w scan wlan0

Here -c is channel no. and –bssid is the id of a target network. -w is the file where we want to save handshake with the name of the scan.

This will try to capture handshake mean wait until somebody is not joining your wifi (which makes no sense). But you did need to wait. Open a new terminal and run this aireplay-ng -0 0 -a bssid here. Here is the full command.

aireplay-ng -0 0 -a 90:8D:78:73:34:12 wlan0

It will launch dos attack on Router so all connected devices(client) will be disconnected. When any device disconnects from the router, you will see WPA Handshake captured in the previous terminal.

When the handshake is captured press ctrl+c to stop aireplay-ng. It is important to stop because it stops internet of WiFI.

As you see I have posted the screenshot of both terminals. You can see WPA handshake is captured so no need of the second terminal.

Now part 1 is complete go back to your home. To confirm type ls if there is any file with the name of scan-01.Cap here is the screenshot.

Part 2

Now relax because next steps are bit different from above commands.

Now you can go back to your home because the next steps can be done from anywhere in the world.

We have captured WPA handshake, but now we have to crack it using wordlist attack.

I hope you wordlist attack in hacking for beginners post ()

If you already know then great. We will create word list text file using crunch.

Command to create the wordlist.

crunch min max characters -o filename to save results


Crunch 8 10 1234567890 -o password.txt

it will create a wordlist of digits 1234567890 (you can use characters too) where minimum length is 8 and the maximum length is 10. All that words will be saved in the password.txt file.

Read How to use crunch in advance

Last step:

aircrack-ng -w password.txt scan.cap

it will try every word of password.txt as password. if password is in the file it will show you something like this.

Tips to Make cracking process faster:

  1. Close unnecessary tabs it will create process fast.
  2. Use More than One Computer with different word list files.

Task is not complete

Know you have hacked wifi, but you have to type some commands for disabling monitor mode and starting NetworkManager here are these commands

2) Hack WiFi using Wibr+

WIBR+ is an amazing wifi password hacking application by which you can hack any wifi password on an android phone. WIBR plus wifi hacking app works on brute force attacks.

WiFi Brute Force Hack Apk is a tool for detection and penetration testing, particularly of WPA/WPA2PSK WiFi networks and also enables users to hack any wifi by using dictionary lists.

  1. Download the WIBR+ APK file from the official website and then install it on your Android phone. It might not work with the latest version.
  2. Once installed, launch the WIBR+ app. Now from the list of wireless networks, select the WiFi network you want to hack.
  3. You will be prompted to select the attack type,i.e., dictionary or brute force. If you want to perform a dictionary attack, then you can either choose your wordlist file, or you can also use the predefined word lists provided by the app. And it is essential to note here that the minimum password length for WPA based WiFi password is eight characters, any password that is shorter than that will be automatically skipped.
  4. Once you have made your selection, you can begin the hacking attack on the WiFi network and wait for the app to try the correct password. The waiting time entirely depends on the length of the password. The total number of combinations will increase with the increase in password length. Moreover, Android is kind of slow in WiFi connection handling, so the app is capable of processing the maximum of eight passwords per minute. For example, if your selected dictionary list includes 1500 words, then it will take about three hours to complete the WiFi hacking attack. Also, it will consume a lot of battery power, too, since WiFi must have to be enabled all the time and brute-force computation.

WPA Cracking

WPA uses a 256 pre-shared key or passphrase for authentications. Short passphrases are vulnerable to dictionary attacks and other attacks that can be used to crack passwords. The following tools can be used to crack WPA keys.

  • CowPatty– this tool is used to crack pre-shared keys (PSK) using brute force attack.
  • Cain & Abel– this tool can be used to decode capture files from other sniffing programs such as Wireshark. The capture files may contain WEP or WPA-PSK encoded frames.

Internal vs. USB

If you choose to install Kali or BackTrack in a virtual machine (VMware or VirtualBox), you will need an external wireless adapter. This is because the virtual software hypervisor «pipes» your wireless access to a wired connection in your virtual machine. As a result, Kali does not have a wireless device to work with.

The small but mighty Panda PAU05 is the most-ordered antenna on Null Byte. Image by SADMIN/Null Byte

If you choose to install Kali as a dual boot system, you can use your built-in wireless adapter for wireless hacking, if its on the Aircrack-ng compatibility list. Although you can hack with wireless cards not on that list, you had better be very patient as this process make take you days or weeks without the proper adapter.

To effectively hack Wi-Fi passwords, you will need a proper wireless adapter. Make certain that you check the Aircrack-ng compatibility list to make certain that your wireless adapter has the necessary features to make your Wi-Fi hacking fast and effective.

The Kali Pi can get you started hacking most networks. Image by SADMIN/Null Byte

To learn more on this subject, stay tuned to my Wi-Fi Hacking series.

Wireless Network Authentication

No matter, how protected your data is, there’s still a chance of getting your information leaked. Due to this security issue, various Wireless Network Authentication techniques have been developed from time to time to protect internet users. Let’s have a look at those Wireless network authentication techniques:

1. Wired Equivalent Privacy (WEP)

Wired Equivalent Privacy, most commonly known as WEP is a wireless authentication protocol which protects your data from being hacked by others. It was developed back in 1999 and supposed to provide the same security as of wired networks.

WEP Authentication

WEP Authentication uses two kinds of techniques. The first one is the Open System and the other one is Shared Key authentication.

In the open system, it shares its access to every device which sends a connection request, whereas the shared key authentication is somewhat more secure. In the shared key authentication, the client has to provide a pre-existing passcode to have access to the network.

WEP Weaknesses

  • It uses a lower Initial value and secret key which makes it easier to crack.
  • Weak initial values combination doesn’t provide enough security to protect it from attackers.
  • The entire security system is based on passwords which make it vulnerable to attackers.
  • The secret key management system isn’t efficient which makes it quite difficult for a user to change passwords frequently.

2. Wi-Fi Protected Access (WPA)

In 2004, the WEP system was abandoned and a new system came into action known as Wi-Fi Protected Access. It was developed to outperform the weaknesses of the WEP network. It uses higher initial values and security key values which makes this system secure as compared to its counterpart.

WPA Weaknesses

  • Any network which uses the WPA authentication can be hacked by the denial of service attack.
  • It uses a weak combination of passphrases which makes it vulnerable to dictionary attacks.


CoWPAtty is an automated dictionary attack tool for WPA-PSK. It runs on Linux OS. This program has a command line interface and runs on a word-list that contains the password to use in the attack.

Using the tool is really simple, but it is slow. That’s because the hash uses SHA1 with a seed of SSID. It means the same password will have a different SSIM. So, you cannot simply use the rainbow table against all access points. So, the tool uses the password dictionary and generates the hack for each word contained in the dictionary by using the SSID.

The new version of the tool tried to improve the speed by using a pre-computed hash file. This pre-computed file contains around 172000 dictionary file for around 1000 most popular SSIs. But if your SSID is not in those 1000, you are unlucky.

Download CoWPAtty:

#16 WIBR+

WIBR+ was also a best and great app created for testing the integrity and security of Wi-Fi networks. This App uses Brute force and Dictionary Based methods for helping you and answering questions like “How to Hack WIFI networks”. You can also use custom dictionary methods to attack and find WIFI passwords of any person. Depending upon your priority and the type of network, you can choose different options such as numbers, lowercase, uppercase, and special characters – for performing a different dictionary-based attack. Depending upon your password strength, WIBR+ takes time to crack the password, so this a Face Down for this app.

About This Article

wikiHow is a “wiki,” similar to Wikipedia, which means that many of our articles are co-written by multiple authors. To create this article, 49 people, some anonymous, worked to edit and improve it over time. This article has been viewed 3,877,935 times.

How helpful is this?

Co-authors: 49

Updated: August 11, 2019

Views: 3,877,935

Categories: Wi Fi

Italiano:Hackerare il WiFi Usando Android

Español:hackear WiFi usando Android

Português:Hackear uma Rede Wi Fi com o Android

Français:pirater un réseau Wifi avec un Android

Deutsch:Mit Android ein WLAN hacken

Bahasa Indonesia:Meretas WiFi Menggunakan Android

Русский:взломать Wi Fi, используя Android

Nederlands:Wifi hacken met behulp van Android


العربية:اختراق الشبكات اللاسلكية باستخدام أجهزة Android

हिन्दी:एंड्रॉयड का उपयोग करके वाई फाई हैक करें (Wi Fi ka Use Kar Android Hack Kaise Kare)

ไทย:แฮก Wi Fi ด้วย Android

Tiếng Việt:Truy cập trái phép mạng Wi Fi bằng Android

한국어:안드로이드 기기로 와이파이 해킹하는 법

日本語:Androidを使ってWi Fiをハックする

Türkçe:Android Kullanarak Wi Fi Nasıl Hack’lenir

Top 1. Wifi Hacker V3.2

Wifi Hacker V3.2 is a free Wi-Fi password cracker that allows you to hack an unlimited number of Wifi passwords in few minutes. It officially said that their Wifi Hacker V3.2 guarantees the hacking of any wireless network without any problems, and makes it easier.

However, according to wifi password hacker v3 review, to download the iso of wifi hacker v3 password .txt requires you to complete a quick survey to download your file. And some questions on the survey may involve personal info. Moreover, sometimes it will prompt you there are no surveys available for your country and won’t allow you to download. (If you can’t use it, go to Wi-Fi Password Recovery for help.)


Wifi Wps WpaTester

  • This app was designed to check if the APN’s is vulnerable or a victim of any malicious attacks or not but as the developers of the app started putting in different new features in the app and slowly added the wifi hacking feature aswell.
  • The app won’t need root access if the android version is 5.0 or more but would require root access if its not.
  • The best part is that it is available on playstore so you don’t have to search for it all through the internet to download it.
  • The app uses multiple algorithms and cracks WiFi password in less than a minute.

Wifi Master Key

  • This app being one of the most famous app for wifi hacking really does wonders when it comes to hacking a wifi network.
  • It is one of the most reliable and secure wifi hacker app which has got millions of users worldwide.
  • Now you will get the password without doing much as this app doesn’t hack the WiFi. It just shares it with its users from its directory and gives you the password in the most proper and legal way.
  • It automatically identifies nearby networks and it can also be used to share a wifi hotspot or use one.
  • You won’t have to worry with the language as it is available in 19 different languages which includes the worldwide used language English.

Also read: How To Hack WiFi Using Fluxion In Kali Linux

Wifi Pass Key

  • If you are still unsure about hacking a wifi with a non-rooted device. What if I tell you that you just have to tap on the network and the app will connect your device to it? Yes this app works the same way.
  • All you have to do is open the app and select any of the nearby network and the apps smart interface will automatically connect your device to the network.
  • With this app you can also safeguard your wifi and avoid the risk of hackers.
  • You can also share the passwords and this app is totally legal and is also available on playstore.

My suggestion would be to hit the WEP or WPA type first if any in your area as the security of these two types are not as strong as the WPS which is the latest. So if you find any of the WEP or WPA type APN, your work would reduce to half but its not that the WPS is impossible to crack as I already said. Its just that it might take you a little more time and effort than the other ones but you will surely be able to crack it.

Avoid the use of nexus devices or any other devices which have their own specially designed processors or chip-sets as you might not get the results you are looking for.

With the list coming to the end, these are the best possible ways and best apps that would help you in hacking a WiFi network. The working of these apps and techniques varies from device to device and the one that worked for your friend may not be the one that would work for you as well. So try and use these apps properly and I assure you that you will succeed in cracking the password of any of the WiFi network in your neighborhood.

Hacking Activity: Crack Wireless Password

In this practical scenario, we are going touse Cain and Abel to decode the stored wireless network passwords in Windows. We will also provide useful information that can be used to crack the WEP and WPA keys of wireless networks.

Decoding Wireless network passwords stored in Windows

  • Download Cain & Abel from the link provided above.
  • Open Cain and Abel
  • Ensure that the Decoders tab is selected then click on Wireless Passwords from the navigation menu on the left-hand side
  • Click on the button with a plus sign

Assuming you have connected to a secured wireless network before, you will get results similar to the ones shown below

The decoder will show you the encryption type, SSID and the password that was used.


CloudCracker is the online password cracking tool for cracking WPA protected wi-fi networks. This tool can also be used to crack different password hashes. Just upload the handshake file, enter the network name and start the tool. This tool has a huge dictionary of around 300 million words to perform attacks.

Try Cloudcracker:


In this post, I discussed 13 wireless hacking tools. A few wireless hacking tools are for cracking the password to get unauthorized access, and a few are for monitoring and troubleshooting the network. But most of the people really interested in tools to crack wireless hotspots just want to get free Internet access.

The above collection also contains those tools which try a dictionary attack to crack wi-fi passwords to allow you to get free Internet access. But be sure not to use these tools in a risky place. Hacking wireless networks to get unauthorized access may be a crime in your country. You may get into trouble for using these tools. So, please do not use these tools for illegal works. As I already mentioned, you should never use the WEP encryption key in your home or wireless network. With available tools, it is child’s play to crack the WEP keys and access your wi-fi network.

Wireless monitoring and troubleshooting tools are basically for network admins and programmers working on wi-fi based software. These tools really help when some of your systems face problems in connecting to the network.

I hope you enjoyed this article and got relevant information about popular wireless hacking and password cracking tools. I tried my best to compile this list of password hacking tools, but as a human error, I may miss something. If I forgot any important tool in this, please let me know in the comments.

2. Crack WPS

Many Wi-Fi APs were equipped with Wi-Fi Protected Setup, or WPS, to make it simpler for the average home user without knowledge of Wi-Fi security measures to set up their wireless AP. Fortunately for us, if we can crack that WPS PIN, we can then access the control panel of the AP.

This PIN is relatively simple; just eight digits with one being a checksum, leaving just seven (7) digits, or 10,000,000 possibilities. A single CPU can usually exhaust those possibilities in a few days. Although this might seem slow, brute-forcing the PSK with many times the possibilities can take much longer.

  • Don’t Miss: How to Break a WPS PIN to Get the Password with Reaver
  • Don’t Miss: How to Break a WPS PIN to Get the Password with Bully

How to Secure Wireless Networks?

Here’s a list of few tips which will make your wireless network secure and better than before:

  • Change the default passwords that come along with the hardware.
  • Allow access to some registered and selected devices.
  • Restrict the number of devices which can connect at a given time.
  • Use a combination of numbers, alphabets, special characters in your password to protect it against any kind of attacks.
  • Using a Firewall can protect your network from any kind of unauthorized attacks.

Final Words

I hope you like this article about wifi hacking apps of 2020. Please share it with your family and friends and also don’t forget to share it on your social networking sites like Facebook, Twitter, etc.


or USB wifi Adapter

2)Windows Operating System





7)Wpa/Wpa2 – WPS Networks Available with at least 8% signal

Links to Download the Required Software’s

1)Download Wincap – Download   

2)Download JumpStart
–  Download

3)Download NetFrameWork 4.5 — Direct

4)Download Dumpper – Download

Install all the applications in the order given above to avoid any unnecessary
errors. Download and Install all the above
given Applications one by one, even If a single software installation is missed
(Except Dumpper), lot of errors might occur which might disable the
functionality of other software that might result in failure of hack. Be careful
while downloading and installing these software’s.

Step 4: Run the Script

I’m going to use my USB wireless network adapter, so I’ll add an -i flag to the command and add the name of my network adapter. If I don’t, Wifiphisher will just grab whatever network adapter it can.

Don’t Miss: The Beginner’s Guide to Defending Against Wi-Fi Hacking

To start the script, I’ll run the following command.

Afterward, we should see a page showing every nearby network. We can select which network we want to attack here, and press Enter.

Next, the script will ask what attack you want to run. Select option 2.

After selecting the attack, it will immediately launch. A page will open to monitor for targets joining the network. Wifiphisher will also listen for devices trying to connect to networks that aren’t present, and it will create fake versions to lure those devices into connecting.

After a target joins, a pop-up will demand they enter the password.

When the target enters the password, we’re notified in the Wifiphisher screen.

That’s it! The script will exit and present you with the password you just captured.

Just like that, you’ve bypassed any password security and tricked a user into entering the Wi-Fi password into your fake network. Even worse, they’re still stuck behind this horrible slow-moving, fake loading screen.

1. Crack WEP

WEP, or the Wireless Equivalent Privacy, was the first wireless encryption technology developed. It was quickly found to be flawed and easily cracked. Although you will not find any new WEP-encrypted wireless access points being sold, there are still many legacy WEP APs still around. (On a recent consulting gig with a major U.S. Department of Defense contractor, I found nearly 25% of their APs were using WEP, so it’s still out there.)

WEP can easily be cracked with Aircrack-ng using a statistical cracking method. It is nearly foolproof (don’t prove me wrong on this). If you can collect enough packets (this is key), it’s a simple process. This is one of the reasons you need an Aircrack-ng compatible wireless adapter. You must be able to inject packets simultaneously to capturing packets. Most off-the-shelf wireless cards are incapable of this.

Don’t Miss: How to Crack WEP Passwords with Aircrack-ng

Attacking Techniques

  • WEP cracking technique: WEP uses a 40-bit key which is 8 characters long. Once enough data packets are captured, breaking this key should not take more than a few minutes. 

  • WPA/WPA2 cracking technique: Our devices have wireless passwords stored so that we do not enter the password on the same device again and again. The attackers take advantage of this by forcefully de-authenticating all the devices on the network. The devices will try to auto-connect to the access point by completing the 4-way handshake. This handshake is recorded and has the hashed password. The hashed password can be brute forced by using a rainbow table. 

  • WPS cracking: This technology uses an 8 digit pin to connect to the wireless router. Brute forcing the 8 digit pin will give access to the router. Various tools use various optimization techniques to increase the speed of this attack and crack the key in a couple of hours.

Related reading: Brute Force Attacks: Prominent Tools to Tackle Such Attacks


NetStumbler is a popular Windows tool to find open wireless access points. This tool is free and is available for Windows. A trimmed down version of the tool is also available. It is called MiniStumbler.

Basically NetStumblet is used for wardriving, verifying network configurations, finding locations with a poor network, detecting unauthorized access points, and more.

But the tool also has a big disadvantage. It can be easily detected by most of the wireless intrusion detection systems available. This is because it actively probes a network to collect useful information. Another disadvantage of the tool is that it does not work properly with the latest 64 bit Windows OS. This is because the tool was last updated back in April 2004. It has been around 11 years since the last stable release of the tool.

Download Netstumbler:

WiFi Hacking Apps for Android


best wifi hacking apk

Here are Top 10 Best WiFi Wireless Password Hacker Apps for Android & So Many Crack WiFi Security Key With Your Android using Best Android Apps to Hack WiFi Network.

Best WiFi Hacking Apps for Android: Hey, Guys, After Lots of People Request Me then I am Posting the list of Best WiFi Hacking Apps of Android 2019, And Lost of peoples are also Asking me how to hack wifi password on android without root So Guys, You can use these all wifi password hacker apk Without Root in your android device. Which is Officially Available in Google Play Store. For You can use these apps, You don’t need any Root Access Your Android Device.

You can Simply Download these apps & use without root your android phone. We was also shared Stylish Girls Pic Without Face And you can Use in your android device right now for hack WiFi Password of friends & Neighbors With the help of Real WiFi hack app for Android. We was Also shared How to Hack WiFi Password on Android There are So Many Thousands of WiFi Password Hacker Download on Google Play Store, But there is one problem so many apps are fake and only just for fun. But After lots of research, I have found some WiFi code breaker Which you can use in your Android Device for Hacking WiFi Password from Android device easily And here Some Best WiFi Hacking Apps are available.

I know many people search on Google for Best WiFi Hacker Apps, but they are not able to use it in correct way. You Can Only Use Spotify Abroad 14 Days. Well, don’t worry if you are one of them. Here, in this article you will get Top WiFi Hacker for Android Apps which were much popular best Wi-Fi hacking apps for android smartphones.

                                                                                   Best WiFi Hacking Apps for Android

2 Hack WiFi from Windows Aircrack-ng

You can also Hack WiFi Password from Window PC with the help of Aircrack-ng Software.

Aircrack-ng is an 802.11 WEP and WPA-PSK keys cracking program that can recover keys once enough data packets have been captured. The application works by implementing the standard FMS attack along with some optimizations such as KoreK attacks, as well as the PTW attack. This will then make the attack much faster compared to other WEP cracking tools.

Aircrack-ng is a set of tools for auditing wireless networks. The interface is standard and some command use skills will be required in order to operate this application.

Download Aircrack-ng for Windows –

See this Video and know how this works.

3) Hack WiFi on android using Router Keygen

RouterKeygen is a free WPA/WEP key generator for several routers supported by the app. By using this app, we can generate plenty of keys to hack wifi routers


It only scans all the wifi networks around you and checks if it can generate the possible keys for the networks using its proprietary algorithms (Bruteforce wifi). They are only a few supported routers with new routers being added regularly.


Once you have the generated keys, one or more, you can test them, and if the key is correct, then you can connect to the network. It does take some time due to the Bruteforce technique.

4) Wifi mappers for hacking wifi

These are apps that contain a database of saved passwords from all over the world used for brute force wifi method. These may include passwords to public wifis or some local hacked wifi such as cafes and shops. You can hack wifi with the android app easily as compared to other methods. This wifi mapping apps contain a massive opportunity for people seeking free wifi.

Step 1: Download the app from the play store or the internet.

Step 2: Install the app and grant the app permissions to wifi and location.

Step 3: Now, the app will automatically find free wifi near your location.

5) Hack WiFi on android using Wifi kill

Well, with this app you can disable internet connection for any device on the same network. So if someone is stealing your internet or you want to block someone on their network, this is the ideal app. So now they cannot use the internet and waste precious bandwidth for some cat videos, you could kill their connection and stay happy with a full bandwidth just for yourself.

The procedure is simple.

Step 1: grab the connections you want to kick.

Step 2: Select kill all to remove and block the devices from the network.

BONUS: If you are Mi phone user then some of you may have an option of Sharing Wi-Fi which can give you the password of hacked Wi-Fi if your phone is not rooted.

Congratulations you have learned how to hack any wifi with WPS pin with three easy steps. With the help of this tool, you can probably hack most wifi networks. You can also try the Bruteforce wifi method and custom wordlist Bruteforce wifi method

Also read: How to hack windows account password.

Оцените статью
Рейтинг автора
Материал подготовил
Андрей Измаилов
Наш эксперт
Написано статей
Добавить комментарий