Manual 5 Revolution Backtrack with GNOME graphical environment for WEP key
07. June, 2011 
108 Comments
Before entering the field, we must remember that this distribution, its use depends on the user. These tools and the manual / tutorial is not designed for criminal purposes. Thus the responsibility of the use made of it, depends only on you. Make good use of this information.
The following steps we have done with a USB Crotalus Ralink 3070L Chipset 2000mW with. However, using other cards supported these steps could also be valid, such as adapters Realtek 8187L chipset. We used the latest version, the Backtrack 5 Revolution with GNOME graphical environment.
- Update: For this to work correctly, you must be at least one client connected to the network that we audited.
We use a program called Wifi Cracker Gerix. The program can be found at Applications → BackTrack → Tools → Wireless Exploitation → Exploitation → Exploitation WLAN Gerix-wifi-cracker-ng.
This is the main screen.
Now we go to the Configuration tab:
The first step is to start the monitor mode wireless card to do that we click where it says: Enable / Disable Monitor Mode. We will see that we create another network interface called mon0. This is what we use to decrypt the key.
The second step is to scan the networks around us, for that we have to click on Scan Networks.
Note how we are several networks, we first target network.
Now that we have chosen network we address the WEP tab, here choose the option: Start Sniffing and Logging.
We'll see how it opens a terminal with the network you want to bind us. The next step is to authenticate to perform the attack. For that we have to run WEP Attacks (with clients) and click on Associate with AP using fake auth.
We note that the AUTH column puts OPN. That means that the authentication is successful.
Then we will have a network attack is chosen, for that press in ARP request replay.
We will see how to open another terminal (on the left in picture). This terminal is the injected packets in order to decrypt the key we need the number of # Data from the terminal to the right increases, we can try to find the key from the 5000 # Data, although there is no exact number, it all depends the length of the key.
When we have enough # Data we went to the Cracking tab and click on Aircrack-ng - Decrypt WEP password. If we succeed we will get the following screen:
Update
We quote some of the cards we've tested and work perfectly with the steps we take in this manual:
Obviously these are not the only compatible but these are the best we've tested.
Related Books
if disabling the wifi of the laptop and activating the realtek usb on backtrack, I work the back track for a
.
as if my network card is compatible with that card back track and support
Oieee, a question,
q I put everything, and everything went to perfection
QUAD had more than 18mil # data did what the pass, and I threw some numbers and letters separated by 2 points, but ingesarlos tells me is not the pass q
q I?
Hfreedy when you generate the password you must enter no points saparación
where q set the password?
and someone known to crack WPA and WPA2 passwords with backtrack using the 5
Today I tried the usb adapter TL-WN722N and worked perfectly
and how do I get to the applications tab since the beginning of the program???
Ok now among the disc, but I have installed the software and not how to get that part without the disk and how to make out of this and off the computational or just go to windows ...
help
The Backtrack not be installed on Windows. It is a Linux distribution. If you have a Live CD or Live-USB, set the BIOS correctly and then start the computer from the Backtrack.
Thanks for the tuto I worked a great
hey friend, I have a card as you mentioned at the end, but in the back track 4 me rao recognized as and when I scan networks I find anything .... with 5 if it worked? q I?
Hello!
We always recommend using the latest distributions and in this case because the new version of Backtrack is more intuitive. Try it! It costs you nothing.
A greeting!
Hey.
I have a problem sgte part:
"We note that AUTH column puts OPN. That means that the authentication was successful "
OPN does not change me, what I can do to get it.
Greetings.
good afternoon the backtrack 5 can be installed on windows 7 or do I have to install windows xp to install one there please answer my question
Oooooh had bought a new laptop and it weighed almost did not work would change but the error was mine and I resolved to your manual grs I worked great. to'y very happy lol
Hey.
I tried using this method is effective but not me because there are no clients connected. Based on this when choosing "WEP Attacks (non-client)" and try to use the fragmentation attack chop-chop or I get a new terminal in which I get a series of network data and a few numbers with type characters . "A '... 8 +7 ..?. I." and says, "use this packet?".
My question is, am I doing something wrong or I do something else?
Thanks in advance
Hello My problem now is that as if a client connected or if there is a lot of traffic? another question in a net charge me fast the number of datas but when I use with clients attaks column does not appear in the OPN AUTH.
Hey man when I open ARP request replay everything goes ok just in the console bash-c "aireplay" I read the package but what it says in parentheses is not moving around to 0.
prinsipiante'm in this and buy the disc for a lap win 7 but not how to install
Hello good I have a problem with WEP is that I do not attack me when I start receiving data has explain to attack not receive data because it is and how I can do to receive a greeting thank DATA
To MIGUEL PEREZ, I think I've commented on here, but I repeat. The Backtrack is a Linux distribution and therefore can not be "installed" in Windows 7. Anyway, read the following tutorial, you'll surely help:
http://www.lacuevawifi.com/2011/11/05/como-crear-un-live-usb-persistente-con-backtrack-5-revolution/
To Sergio: If you do not climb the datas is because the network in question has no traffic and no really effective method to do an audit on a network without traffic.
hello I'm not very knowledgeable ... I have a 802.11n bradcom brack I downloaded the track 5 but k 64b .... (I forget the rest) let the following gnome.
data does not give me none.
I wonder if no solution if q I have to get off ... or else what I have to do ... in plan step by step, because if not I find (as these manuals are very good!)
Hello, Mary:
It seems that broadcom cards are not very good in audit. I would say the problem is that the chipset of your card is not valid for monitor mode. Have you tried with other cards?
A greeting!
How about, I've used the back track 5 with vm ware and it has worked very well, but with a TP link wireless card, does anyone know how to use and operate the card that brings laptot? (802.11b / g WLAN)
thanks and regards
Hi, Luis:
What brings the wireless chipset in your laptop?
ATHEROS AR5009 802.11a/g/n IS A wifi adapter
me to the tutorial worked like a charm. Thanks for the tutorial, by the way anyone know how to do it with WPA and WPA2?
regards
hey friend, I have the BT5 in a cd, I tried it on my desktop PC to get a wep key and if I worked, if I detect networks. but I tried it on a laptop from a friend and I ne ke :/ network detects niguna ago?
(When I enter windows in the alp if I apraesen BT5 networks but no. __.)
Louis, so I could find out the chipset of your laptop has some problems to inject. Which is essential for auditing. For now, you have to use TP-Link card that works for you.
Bassmarterz, surely your problem is also related. It is possible that your card is not valid for monitor mode.
krdnt2, I leave a link to backtrack 5 and WPA: http://www.lacuevawifi.com/2011/07/07/manual-backtrack-5-revolution-para-wpa-usando-gerix/
Hello! good tuto! but I have a problem, when I enter my Gerix usb wlan (tp-link tl-Atheros AR9170 WN821N) connected even start the Gerix now take it off and starts to wonder Gerix, the re-plug but I can not activate the monitor mode, ie, not detected mon0 only detects wlan0. I try to activate from the terminal and says it is already in monitor mode. (I'm using VMware Workstation backtrack in
I hope you can help! Greetings!
I go to download packages are packages I can do without '???
hello friend this
I have a problem, my card is a broadcon but when put in monitor mode if I get, the problem is when I give in rscaner no network card I get nothing, you know you can be? oh I get unknown chipset
Hello, cease:
Above have mentioned others who have similar problems to yours. It seems that many broadcom cards (like yours) do not work in monitor mode correctly. If you hand another card with another chipset, try it!
Anyway, you can also try to make it through commands.
A greeting!
grasias unanswered friend
and if and thought about buying a USB card supports backtrack epecial
but look you commented, and done already in command mode, in that if it makes me scan but no data traffic itself.
what I did was put my key burdamanete modem to connect and according crackearla as being connected Perform the steps in command mode and so if there was data traffic and if I throw my key, but aviamente should not be so for I supposed I have to know! regards
Hello teacher! You know all good but when I want to inject packets is "sending 0 packets ..." is that my card is not able to send packages? My card is an atheros. I hope your answer and greetings!
Hi, I'm new here and am trying to do with my own wifi network, install the Rev. BT5 and this hayando the # DATA.
But getting ahead of the facts, once I read:
KEY FOUND (xx: xx: xx: xx: xx)
As resolve or translate that information to make it the key? or is that just as is would enter?
Sorry but I really do not know. Moreover, and sorry again for so many questions, but if all goes well, how to increase the level of security in my network so that another person does not enter, or at least complicate the entry?
Thank you very much, great information, very detailed and very good disposition.
Embrace!
Hi, guys!
Rodrigo, we have not tested any Atheros card with this method. However, there are models that do not inject Atheros well.
Fernando, the best security is WPA2 encryption with the AES algorithm. In addition, following the recent vulnerability discovered, if your router has WPS disable it.
A greeting!
Greetings I have installed Ubuntu 11.10 and I deciphered several networks WEP key but I stop perfection wing to backtrack 5 and just what I always wanted good k, k the reason why I ask for help is to download the image of BT5 "BT5 -GNOME-64 "install in VMWare works well only k is a small problem, my internal card" Atheros AR9285 "does not appear k is installed and actualize the required patches down BT5 k Use in ubuntu so it can be put in monitor mode k everything and nothing happened I still can not scan it wiffi networks funny thing is k from BT5 if I can connect to internet pk appears like I'm connected right through ethernet and not so that I'm actually not from wiffi which is the problem I have or do not know how to activate the virtual machine wiffi from the BT5 I totally desconsertado good as it can not be possible k has been unable since the BT5 and I was easier from Ubuntu and what if I realize is that they are almost the same thing both operating syst
well I hope your answer soon with good news
Hello, edgar:
Other users have also had problems with the Atheros chipset when doing audits. In this manual, we have tested with the Realtek 8187L and 3070L Ralink are some of the most used by manufacturers of high power cards.
Greetings!
hey I wonder if this card Ralink RT3090 802.11b/g/n WiFi adapter as I did not recognize the chipset I get "unknown"
thanks! by the Institute!
Rick, I have not had the chance to try the RT3090. You may not be supported that particular chipset. Try doing the audit commands. I leave a link to a tutorial:
http://www.lacuevawifi.com/2011/06/13/manual-wifiway-2-para-claves-wep/
It is for WifiWay but the commands and steps are exactly the same.
Hello! Atheros AR5414 chipset is my, I'm trying the Back 5, previously had used the same card Back4 with this and I had worked with little more than 5mil packages
But now I have problems with the Back 5, does not give me the key ...
Why do you think it is?
Do with commands, is better? at the chipset
Hi, Anna:
Try it with commands. Perhaps the Gerix do not work properly with your chipset. There is also a known issue with this tool that does not work well when you install the Castilian language in Backtrack 5.
A greeting!
I have a laptop PORFABOR HALLUDARME exo ie all pole where he says ke ke interface kree doi cute but i will not me that's nothing growing porke desos nezesito a usb ke ke looking Benden networks? Porke my pc already has wifi ...
lacuevaWifi, just come to confirm that it works with this card BT5 Ralink RT3090 802.11b/g/n WiFi adapter
I served a lot of your tutorial thanks!
Hello,
I also I have a problem with this step:
"We note that AUTH column puts OPN. That means that the authentication was successful "
I changed to OPN.
Does anyone help me?
Thank you very much.
I worked my a great greetings!