Backtrack 5 Manual Revolution with GNOME graphical environment for WEP key

Before entering the field, we must remember that this distribution, its use depends on the user. These tools and the manual / tutorial are not designed for criminal purposes. Therefore the responsibility of the use made ​​of it, depends only on you. Make good use of this information.

The following steps have made a Crotalus USB Chipset Ralink 3070L 2000mW with. However, using other compatible cards these steps could also be valid, such as adapters with Realtek 8187L chipset. We have used the latest version, the BackTrack 5 Revolution with GNOME graphical environment.

  • Update: For this method to work properly, you must have at least one client connected to the network that will be audited.

We will use a program called Gerix Wifi Cracker. The program is located at: BackTrack → Applications → Tools → Wireless Exploitation Exploitation Exploitation → → WLAN gerix-wifi-cracker-ng.

This is the main program screen.

Now we turn to the Configuration tab:

The first step is to start the monitor mode wireless card to do that you click where it says:. Enable / Disable Monitor Mode will see that make us another network interface called mon0. This is what we use to decrypt the key.

The second step is to scan the networks around us, for that we have to click on Scan Networks.

We note how we appear several networks, we firstly the target network.

Now that we have chosen network we headed to the WEP tab, here we have to choose the option: Start Sniffing and Logging.

We'll see how it opens a terminal with the network that we want to associate. The next step is to authenticate to perform the attack. For that we have to lead WEP Attacks (with clients) and clicking Associate With AP using fake auth.

We note that puts OPN AUTH column. That means that the authentication was successful.

Then we will make an attack on the chosen network, for that click on ARP request replay.

We'll see how other terminal is opened (the left in the picture). This terminal is injecting packets need to decrypt the key that the number of terminal #Data right increases, we can try to figure out the key from the 5000 #Data, although there is no exact number, it all depends the length of the key.

When we have enough #Data headed to the Cracking tab and click on Aircrack-ng - Decrypt WEP password If we are successful we will get the following screen.:


We quote some of the cards we tested and work perfectly with the steps that follow in this manual:

Obviously these are not the only compatible but these are among the best we've tested.

Related Books

Related Articles:

Twitter Digg Delicious Stumbleupon Technorati Facebook

133 Responses to "Manual BackTrack 5 Revolution with GNOME graphical environment for WEP key"

  1. if disabling the laptop and activating wifi usb realtek in backtrack, and works me back track by the way: D.

  2. as if my network card supports that card back track and support

  3. Oieee, a question,
    I did everything q put in and everything went to perfection
    priate had more than 18mil # data did what the pass, and I throw some numbers and letters separated by 2 points, but ingesarlos tells me q is not the pass

    q I do?

  4. Hfreedy when you generate must enter the password without points saparación

  5. where q put the password?

  6. and someone known to decipher keys with WPA and WPA2 using the backtrack 5

  7. Today I tried the usb adapter TL-WN722N and it worked great

  8. and how do I get to the applications tab since beginning the program ????

  9. Ok now among the disc, but I installed the program and not how to get that part without the disk and how to make out of the same and off compu or just go to windows ...

  10. The Backtrack can not be installed on Windows. It is a Linux distribution. If you have a Live CD or Live USB, set the BIOS correctly and then start the computer from the Backtrack.

  11. Thanks for the tutorial I worked great

  12. I hear friend, have a card like the one you mention at the end, but in the back track 4 me rao recognized as and when I want to scan networks did not detect anything .... with a 5 if it worked? q I do?

  13. Hello!

    We always recommend using the latest distributions and in this case more because the new version of Backtrack is more intuitive. Try it! It costs you nothing.

    A greeting! ;)

  14. Hello.

    I have a problem in sgte part:

    "We note that puts OPN AUTH column. That means that the authentication was successful "

    No changes to OPN me, what I can do to make it me.


  15. good afternoon the backtrack 5 can install on windows7 or have to install windows xp to install there a favor answer my question

  16. Oooooh had bought a new laptop and weighed it did not work I almost would change but the error was mine and I resolved grs your hand I worked wonderfully. to'y very happy lol

  17. Hello.
    I have tried using this method but it is not effective as there is no connected clients. Based on this when choosing "WEP Attacks (non-client)" and try to use the fragmentation attack or chop-chop I get a new terminal in which I get one series of network data and numbers with a character type "?.. .A '... 8 + 7 .. I" and says "use packet esta?".
    My question is; Am I doing something wrong or I do something else?
    Thanks in advance

  18. Hello My problem now is that as if a client connected or if there is a lot of traffic ?? another question on a network I quickly load the number of datas but when attaks With customers use the AUTH not appear in the OPN column.

  19. Hey man when I open ARP request replay everything goes ok just in the bash-c "aireplay" reads the packets console me but what he says in brackets is not moving around to 0.

  20. I am prinsipiante on this and buy the record for a lap win 7 but not how to install it

  21. Hello good I have a problem and that they want to attack the WEP does not receive data has explain me when I start to attack'm not getting data that is due and how can I do to receive a greeting thanks DATA

  22. For MIGUEL PEREZ, I think I mentioned around here, but I repeat. The Backtrack is a Linux distribution and therefore can not be "installed" in Windows 7. Anyway, read the following tutorial, you will surely help:

  23. Sergio: If you do not climb the datas is because the network in question has no traffic and no really effective method to audit on a network without traffic.

  24. hi i am not very knowledgeable ... I have a bradcom 802.11n me track down the brack 5 But 64b k .... (Can not remember the rest) let the following gnome.

    does not give me any details.
    I wonder if no solution if q have to get off something else ... or what I have to do ... in step plan, otherwise I do not hear (like these manuals are very well !!!)

  25. LaCuevaWifi 15. Nov 2011 at 18:31

    Hello, Marian:

    It appears that the broadcom cards are not going well in auditing. I would say the problem is that the chipset of your card is not valid for monitor mode. Have you tried with other cards?

    A greeting!

  26. How about, I've already used the back track 5 with vm ware and it has worked very well, but with a wireless card TP link, does anyone know how to use and operate the card that brings laptot? (802.11b / g WLAN)

    thanks and regards

  27. LaCuevaWifi 18. Nov 2011 at 11:58

    Hello, Luís:

    What brings wireless chipset your laptop?

  28. It's an Atheros AR5009 802.11a / g / n wifi adapter

  29. Tutorial me worked like a charm. thanks for the tutorial, by the way anyone knows how to do it with WPA and WPA2?

  30. hey friend, I have the BT5 on a cd, I tried it on my desktop Pc to take a wep key and if I worked, if I detect networks. but I tried it on a laptop of a friend and ne me niguna detects network: / ke ago?
    (When I enter the alp windows if I apraesen bt5 networks but no .__.)

  31. LaCuevaWifi 23. Nov 2011 at 11:09

    Luis, so I could find out your laptop chipset has some problems to inject. Which is essential for audit. For now, you'll have to use the TP-Link card that works for you.

    Bassmarterz, probably your problem also is related. Your card may not be valid for monitor mode.

    krdnt2, I leave a link to backtrack 5 WPA:

  32. Hello! good tuto! but I have a problem when I want to go to gerix with my wlan usb (tp-link tl-WN821N Atheros AR9170) CONNECTED not even start the gerix now it off and starts to gerix wonder, I reconnect but I can not activate the monitor mode, I mean not detect the mon0 only detects wlan0. try to activate from the terminal and says it is in monitor mode. (I am using backtrack on VMware Workstation 8)

    I hope you can help me! Greetings!

  33. I do not go to download packages are packages can do without '???

  34. hello friend that such
    I have a problem, my card is a BroadCON but when put into monitor mode if I get, the problem is when I give in rscaner me nothing comes network card, you know it can be ?? ay chipset appears to me unknown

  35. Hello, cesar:

    Above have mentioned others who have similar problems to yours. It seems that many broadcom cards (like yours) do not work properly monitor mode. If you have another card hand with another chipset, try it!

    Anyway, you can also try to make it through commands.

    A greeting! ;)

  36. grasias por answer Friend
    and if and thought about buying a usb epecial card with support for backtrack

    but look I commented, and already realized in command mode, in that if you scan me well but no data traffic itself.
    what I did was put my key burdamanete modem to connect and according crack it, and being connected Perform the steps in command mode and so if there was data traffic and if I throw my key, but aviamente should not be so by allegedly not me I have to know !!! regards

  37. Hello teacher !!! You know that all good but when I want to inject packets is "sending 0 packets ..." is that my card is not able to send packets? Is a atheros my card. I hope your answer and greetings !!

  38. Hi, I am new to this and I'm trying to do with my own wifi network, install the Rev. BT5 and this hayando the #DATA.
    But getting ahead of the facts, once you tell me:

    KEY FOUND (xx: xx: xx: xx: xx)

    As I resolve or translate that information into the key? or is that just as is would enter?

    Sorry but I really do not know. Furthermore, and sorry again for so many questions, but if all goes well, how to increase the level of security of my network so that other person does not enter, or at least complicate entry?

    Thank you very much, excellent information, very detailed and very good predisposition.


  39. Hi guys!

    Rodrigo, we have not tested any Atheros card with this method. However, there are models that do not inject Atheros well.

    Fernando, the best security is WPA2 encrypted with the AES algorithm. In addition, following the recent vulnerability discovered, if your router has WPS disable it.

    A greeting!

  40. Greetings I have installed ubuntu 11.10 and have deciphered several key WEP networks wing perfection but I came across the backtrack 5 just what k've always wanted good, the reason k I ask for help is to download the image bt5 "BT5 -GNOME-64 "install in VMWare works very well just k there is a small problem, my internal card" Atheros AR9285 "does not appear k is installed and actualize the required patches bt5 down k Use in ubuntu so it can be put in monitor mode k everything and nothing occurred to me you scan networks wiffi still funny thing is k from the bt5 if I connect to internet pk appears like I'm connected right through ethernet and not so because in reality I'm not from wiffi which is the problem that I have or do not know how to activate the wiffi from the virtual machine in good bt5 am totally desconsertado as it may not be possible k has been unable since bt5 and I were easier from Ubuntu and what if I di account is that they are almost the same thing both operating syst
    well I hope your answer soon with good news

  41. Hello, edgar:

    Other users have also had problems with the Atheros chipset when doing audits. In this manual, we have tested with Realtek 8187L and 3070L Ralink are some of the most used by manufacturers High Power cards.


  42. hey I wonder if this card Ralink RT3090 802.11b / g / n WiFi adapter does not recognize me as the chipset I get "unknown"
    thanks you! for the tutorial!

  43. Rick, I have not had the chance to try the RT3090. You may not be supported that particular chipset. Try doing the audit command. I leave a link to a tutorial:

    It is for WifiWay but the commands and steps are exactly the same.

  44. Hello! Atheros AR5414 chipset is me, I am testing the Back 5, had previously used the Back4 with this same card and I had worked with just over 5mil packets,
    But now I have problems with Back 5, do not give me the key ...

    Why do you think that is?

  45. Doing commands, is better? at the chipset

  46. Hello Anna:

    Try commands. Perhaps the Gerix do not work properly with your chipset. In addition there is a known issue with this tool does not work well when you install the Castilian language in Backtrack 5.

    A greeting! ;)

  47. HALLUDARME porfabor have a portable ie all flagpole where dize exo ke ke mono interface Kree but you doi me i did not believe anything that's porke desos nezesito one usb ke ke looking benden networks? Porke my pc already has wifi ...

  48. lacuevaWifi, just come to confirm that it works with BT5 with this card Ralink RT3090 802.11b / g / n WiFi adapter
    I served much your tutorial thanks!

  49. Hello,
    I also have a problem with this step:

    "We note that puts OPN AUTH column. That means that the authentication was successful "

    Do not switch to OPN.
    Does anyone help me?
    Thank you very much.

  50. I worked my greetings blast !!