Cracking WEP

ivlist

Tom’s Networking is running a two part series on how to crack WEP. WEP was pretty much broken from the early days of wireless networking. For starters the key length is misleading; a 64-bit key only has 40 unique bits. Some manufactures implemented poor random number generation. The seeds for the numbers are also reused which would never happen in good cryptography. This article covers the techniques the the feds used when they cracked a WEP key in three minutes. This works by grabbing a properly encrypted packet and then constantly sending it back to the access point generating more traffic. The more traffic you can capture the faster you can crack the network. Check out the article. I’ll be trying this out in the future when I get a Prism2 card and that DirecTV antenna wired up.

62 thoughts on “Cracking WEP

  1. I’ve got aircrack set up and running on Windows, but I’m having a lot of trouble generating wireless packets with only one computer (or even with two computers) for airodump to capture.

    I’m trying to get Cygwin set up right now to run the Linux scripts that are listed in the documentation, but without luck so far.

    Does anybody have any suggestions?

  2. Is it possible to use a ppc to generate packets? I have an dell Axim x50v which has wifi i wonder if that will have the ability to generate some traffic on the network somehow.

  3. i use a Lucent Tech Orinoco card which isnt prism 2 based but it works. I use a Knoppix STD linux live CD… run kismet which auto patches the cards drivers to work then run airsnort. it’s easy.. oh.. and i mentioned the orinoco card cuz it has an external antenna connector. I got a orinoco silver AND a netgear wireless b router(which i took apart to remove a pcmcia wifi card which is prism 2 based) off ebay for $25 shipped. you really cant beat that. once again i suggest knoppix std for all you windows users that don’t want to switch over.

  4. I successfully did this to my own network using an ACX100 card. It was kinda a pain to setup though (and operate on modules). Aircrack and Airsnort worked fine with it.

  5. I have a DELL Inspiron 2650 , im trying to load knoppix i couldn’t figure out how to get it to load up correctly – untill i had to load up the system with “knoppix noscsi” and after that, it loaded fine.. and didn’t get stuck anymore… so im in the system and i don’t know how to setup the orinoco wifi do i need drivers? is there a program i load up? is there a step by step process out there, i can’t find the how-tos in knoppix the wifi card has no power. Please email me at my g-mail account and also if u can tell me how to get the 56k modem to work because its not detecting my 56k on the laptop…. EMAIL ME dialntone@gmail.com

  6. Id’e like to say I’m actually on the receiving end of this hack and actually twice by the same person. Now I’m not wireless at all but at one point my DSL Modem had its wireless on in conjunction with the wireless capabilities my PC has it configured it self to the modem. Anyway now the hacker has taken over my Bios as well as the computer an HP AMD 64 2.4 gh not to mention my husbands computer a QP AMD athlon 900 and blew up my 6&8 yr olds amd duran 950. So my question to you guys is how do I get rid of this person or is someone willing to help?

  7. Gwen,
    I would try 1 method

    Set up a fake router.
    Secure it, Crank up the signal and see how many times he trys to get in keep a look in the log for his Mac address – at least you will be close to getting somthing on him, his mac is uniq unless he changes it. Than on a laptop run Kismet – or netstumber use the signal to noise ratio to pinpont his house – one the signil is bigger the the noise you should be look at his fron porch.
    Now for the fun part, ring the doorbell and punch him in the nose@!

  8. Gwen,
    I would try 1 method

    Set up a fake router.
    Secure it, Crank up the signal and see how many times he trys to get in keep a look in the log for his Mac address – at least you will be close to getting somthing on him, his mac is uniq unless he changes it. Than on a laptop run Kismet – or netstumber use the signal to noise ratio to pinpont his house – one the signil is bigger the the noise you should be look at his fron porch.
    Now for the fun part, ring the doorbell and punch him in the nose@!

  9. reply to: n2thepowerofn@yahoo.co.uk

    i just got a hp hx2790 pda and after running through all the wireless tools i could find, i has success with wififofum. none of the other usual packages would work with the built in card.
    now im on the lookout for a packet sniffer for it. anyone know a good simple program to run on wm5?

  10. Amazing to watch the comments here devolve into pure shite about “crackin my neighbors wifi”, “hack stuff” and (LOL) “cracking” a hotmail account. LMMFAO!

    And no, no Centrino chipsets are supported.
    Buy a cheap Netgear WG511.

  11. Can some1 plz help me out i have acer aspire 3000 laptop running windows xp with a wireless bilkin adapter and im trying to hack into my school’s wireless internet but its encrypted with WEP does anybody now how to crack the code if anybody with the knowledge to do this plz contact me at kelaby89@hotmail.com

  12. ok I need to find the wep code for a certain 2wire913 ok, It is my friends computer. He will let me use the wireless connection but only if I can get the WEP code I have to get it soon or its off. Can you help me? please anyone even visitors to the site please help me. email me at pyro1217@hotmail.com

    thanx -Dante

  13. I am using wireless netgear usb adapter 802.11g, 54mbps, 2.4ghz i am getting 2 unsecured, 2 WEP secured , 1 WPA-PSK, i gone with the setup i downloaded to hack WEP Key, the drivers are not working to my usb adapter any other solutions guys… unsecured networks are 0% – 5% connecting where secured connections are 50% i want to hack it now ..plz any one have to hack

Leave a Reply

Please be kind and respectful to help make the comments section excellent. (Comment Policy)

This site uses Akismet to reduce spam. Learn how your comment data is processed.