DISCLAIMER: THIS WAS WRITTEN FOR EDUCATIONAL PURPOSES
ONLY.
Here
is everything you will ever need to know from start to finish about Wardriving
to find a network, Capturing packets from that network, Cracking the password
to the network, anonymously accessing the network with said password, and then
ARP/APR poisoning the network to collect cookies, USERNAME:PASSWORD combos,
etc...
To
begin with, download the pack I have accumulated.
http://filesmelt.com/dl/WiFi_Pack.zip
Antivirus results
Webroot
SA - 8.0.2.155 – 20.07.2013 - -
BitDefender
- 7.2 – 13.06.2013 - -
Emsisoft
Anti-Malware - 8.0.0.11 – 27.06.2013 - -
File info:
MD5:
7f559a6468aef4216301800a00c6356a
SHA1:
6afd93231127af25acc50971226a1c94d3753f7f
SHA256:
beb9f1b2f7c97968e4d68baa7faaddacde923d5a1d90d6c443c4c782071638a6
File
size: 34383 bytes
Scan
date: 24-07-2013 15:52:31 (UTC 8:00)
Begin
by installing the WinPcap drivers.
Next
step, reboot your computer.
Navigate
to the Passmark WirelessMon 3.1 (trees) folder and follow the instructions for
the crack.
Now,
go ahead and open up Wirelessmon. It's simply a scanning tool.
Walk,
skate, or drive around until you find a network worthy of your time.
When you find the network you want,
right click on it and select connect. Then copy the Mac address of that network
into notepad and capitalize all of the letters. Also, note the Channel
that network is on.
Now
that we have our target, close out Wirelessmon and install CCleaner
(ccsetup305.exe).
Open
up CCleaner, Click on registry, and scan for issues. If you have installed
Commview for WIFI in the past be sure for "Fix the issues", then scan
again to make sure it is gone.
Now
this computer is clean of all traces of Commview that I know how to find. We
are now going to install Commview for WiFi in a very specific way.
1.
Disconnect from the internet. Be it Wifi or Wired, disconnect it.
2.
Start the install of Commview for WiFi 6.3 until you choose what kind of
license you want. Select "Standard".
3.
On the "Additional Settings" Page, un-check "Launch Commview for
WiFi once the installation is complete", then continue until finished.
Now
go back to the notepad you have that mac address in (Remember should look like
"00:1A:2B:3C:4D:5E") and copy it to your clipboard.
Now,
the following must be done fairly quickly.
Open
Commview for WiFi
Go
to "Rules" tab and click on MAC address rules
Check
Mac Address rules, and select "Both" and Paste the MAC address of the
target network into the box and add it.
Click
the Blue "Play" button in the upper left
Select
the channel that the network it on and click capture.
Click
on the "Logs" tab and check the auto saving box.
I
know of no other way to better describe what to do, but if you don't understand
PLEASE WATCH THIS VIDEO AS AN EXAMPLE.
.avi
48.2 MB http://www.multiupload.com/N0W60Z0Z9R
Now,
minimize Commview. If you click on it again it may say your evaluation period
it up, so keep it minimized. What you do now is wait while you collect packets.
This can take a while so go eat a sandwich...
TAKE A BREAK. HAVE A
KITKAT
Now
that that's done, navigate to My Documents-> Commview for WiFi-> Logs and
make sure there is a decent amount of logs in there. If there isn't, go eat
more food. Eating is an important part of hacking ;)
After
you have enough logs Copy them to a separate folder and close out commview.
Then go to CCleaner and got to the Tools Tab. Uninstall Commview for Wifi. Then
Scan the Registry for Commview entries and remove any that are found. Now,
Reinstall Commview that same way as before, but this time once you open it hit
"CTRL+L", this opens the log viewer without clicking. File->Load
Commview Logs-> Select ALL of your logs. Then File->Save as-> .CAP
We
are now done with Commview :)
Now
navigate to Aircrack-ng->Bin->Aircrack-ng GUI.exe
Under
the Aircrack-ng Tab browse to your .CAP file
Now
you can use Aircrack-ng as you would in any other situation. I do not feel like
writing out how to use aircrack, so please use the search feature to find the
many tutorials written by others.
*You
go read another tut on aircrack, crack the password, then come back here*
Now
that we have the password what can we do with it other than connect? How do I
stay anonymous on their network?
Install
Technitium Mac changer - http://www.technitium.com/tmac/index.html
Follow
the instructions on their site, poof! You now have a spoofed MAC address.
Next
step is to connect to their network. If you don't know how to connect to a
wireless network, you're an idiot.
Now
install Cain (ca_setup.exe) and Wireshark (32-BIT-wireshark-win32-1.4.6.exe or
64-BIT-wireshark-win64-1.4.6.exe)
Start-up
Wireshark and hit CTRL+I, this will bring up your interfaces menu. The one with
packets going up is the one you want to "Start".
Now
Minimize Wireshark and open Cain.
Click
"Configure" at the top of the window and unde rthe sniffer tab select
the device that has an active IP address. Apply changes.
Go
to the sniffer tab and click the "Sniffer" button (top left,
microchip with arrow)
Then
wait for a router to show up on the list. Then right click it and Say
"Scan Mac addresses". Scan all possibilities. All other computers on
the network will show up. Next go to the APR tab at the bottom and click the
blue "Plus".
Select
the Router on the left hand side, and the IP of the computer you want to steal
from on the right. Then click "OK".
Now
activate APR (Radioactive looking symbol in top left).
You
are now APR poisoning that IP so that all network is routed through your
computer.
Collected
Usernames and Passwords will show up in the Passwords tab of Cain.
Want
their cookies instead? You're in luck! Since all network traffic is being
routed through your computer, Wireshark has been capturing everything! Open up
Wireshark and search for "http.cookie". It will bring up all the collected
cookies. Simply use an add on for Mozilla (I prefer Add 'n' Edit Cookies) to
create a cookie with the information found in Wireshark and then navigate to
that site. You will be logged in without the need of a username or password.
This
concludes the (brief) walkthrough of how to Wardrive using Windows, Crack WiFi
Passwords using Aircrack-ng and a bypass for Commview for WiFi's evaluation
period, Spoof a MAC address for anonymity, and steal cookies and login info to
top it all off.
If
you are afraid that someone may be able to see your data, use Anonbrowse
(Included in the package).
For
more info about anonbrowse go here
-http://www.hackforums.net/showthread.php?tid=1146071
0 comments:
Post a Comment