Aircrack/Cracking: Difference between revisions
From charlesreid1
No edit summary |
|||
| Line 19: | Line 19: | ||
More on processing the output of Cewl to make wordlists more useful: [[Cewl/Wordlists]] | More on processing the output of Cewl to make wordlists more useful: [[Cewl/Wordlists]] | ||
==Using Raw Wordlists to Generate Passwords== | |||
[[John the Ripper]] is an excellent password cracker, but it is also good at generating passwords from wordlists. You can use some canned command line options to make it try no variations, some variations, or go hogwild, but you can also be more precise and give it rules for things to try. | |||
The wordlists generated by Cewl are useful to feed to John the Ripper to come up with longer lists of passwords to try. | |||
Revision as of 20:32, 16 August 2015
The Basics
To crack a WPA passphrase with aircrack is pretty simple, as long as the password is in the wordlist you feed aircrack.
$ aircrack-ng -w my_wordlist.txt my_capfile.cap
The Tricks
The tricks are all related to how you pick your wordlist.
Generating Raw Wordlists
You can create a raw wordlist using Cewl. You feed it a URL, it crawls the page, and it builds wordlists from the result. Be patient and choose your max depth wisely.
More information on basic usage of Cewl: Cewl
More on processing the output of Cewl to make wordlists more useful: Cewl/Wordlists
Using Raw Wordlists to Generate Passwords
John the Ripper is an excellent password cracker, but it is also good at generating passwords from wordlists. You can use some canned command line options to make it try no variations, some variations, or go hogwild, but you can also be more precise and give it rules for things to try.
The wordlists generated by Cewl are useful to feed to John the Ripper to come up with longer lists of passwords to try.