digg

Facebook Connect Join Digg About

WEP Hacking with KisMac in 10mins

video.google.com This video is amazing! It shows how you can easily reveal a hidden SSID and hack WEP encryption in about 10mins on a Mac with just KisMac. (Unlike the way with Whoppix where you have to use several apps)

Who dugg this? Made popular Feb 3, 2006

Digg DudeWhat is Digg?

Digg is a place for people to discover and share content from anywhere on the web. Digg surfaces the best stuff as submitted and voted on by the community. Take the Tour to learn more.

62 Comments

show profanity settings
expand all
  • kevyn, on 10/12/2007, -0/+2yeah you would think that wouldnt you...

    http://digg.com/security/How_To_Crack_128_bit_Wireless_Networks_In_60_Seconds_inc_Video
  • manfesto, on 10/12/2007, -1/+3@Amishplumber

    The 0.75 build of KisMAC can do passive scanning with your Airport Extreme card - but as of right now only Prism cards can do packet injection.

    But hey, if you have the time (a few hours, actually) you can still crack it.

    The part they don't mention is how long it takes to hit the needed 100,000 to 200,000 unique IVs - it's easy in, say, your local coffee place (that doesn't let you sign on until you buy some coffee, bastards) where a good number of people are sending and receiving packets (with that much traffic, it can be as little as an hour), but don't expect to jump on your neighbor's WEP protected network unless you have a few days.

    If you're running Linux, I'd recommend FTS's tutorial - I forgot the tool they used, but they didn't need 100,000 packets to crack the WEP key.
  • nuxx, on 10/12/2007, -0/+1The only reason i still use WEP is because my Nintendo DS doesn't play nice with WPA. That and the fact that I live in the country and I know for a fact ('cos I'm the neighbourhood techy) that the only other Wi-Fi signal around here is at least 5-10 minutes up the road.
  • slamboy, on 10/12/2007, -0/+1WPA is crackable too. Quickly, no less.
    MAC filtering is a trivial wall to climb.
  • coolbru, on 10/12/2007, -0/+1Support for USB WiFi adapters on OS X is very poor indeed. the only official device I know of is the D-link DWL-122 - that's b only, their drivers absolutely suck, and its reception is absolutely awful - it's only just usable 3m from a router through 1 wall. Their Singapore office had some updated drivers which were better than the ones available from D-Link US, but eventually someone in their tech support emailed me a new version (1.4.5?) that was usably stable.
    ralink make OS X drivers for their chipset - I tried a Belkin FD5050 (or some similar name) and it was worse than the D-link - even slower even though it was on g! Apparently it works much better with D-Link and Linksys g adapters according to xlr8yourmac,com.
  • NotAPoet, on 10/12/2007, -0/+1Original video (.mov) torrent:
    http://www.mininova.org/get/215568
  • dwight0, on 10/12/2007, -0/+1i submitted this one with a few others a few days ago. has wep cracking, bluetooth, iis, sql injection, getting root and more. i suppose he presented it better.
    http://digg.com/security/hacking_exploit_videos
    http://dwightrau.blogspot.com/2006/01/hacking-sploit-video.html
  • anarchy99, on 10/12/2007, -0/+11)airport extreme doesn't do packet reijection and such cause only prism2 does that and it wont be added for airport extreme because to do it theres a certain way prism2 can handle raw data
    2)this is nothing new whats the big deal Ive been doing this with my DWL-122 with my ibook for months and linux on pc have done it for a long time
    3)mac filtering is easy view in passive mode copy there mac use spoofmac or you can use the terminal and other options and copy it its not hard(yet doing mac filtering with wep is secure enough for most users cause if your determined even wpa can be cracked its not as easy by far but still)

    since he didnt get a driver unplug warning i assume the only driver for his usb prism2 was the kismac one thats what happend to me with it installed but not when its not
    but anyway il take this chance to ask the masses
    is there a better general purpose driver for prism2 in osx
    because the dlink one is ***** it kernel panics and is unreliable
    (i know other prism2 chips can use it but i assume there not offical osx supported so they dont have drivers of ther own)
  • BryanTheCrow, on 10/12/2007, -0/+1Oh, and for anyone without a MAC, you can use a linux live CD, and this tutorial:

    http://www.tomsnetworking.com/Sections-article118-page3.php
  • inkswamp, on 10/12/2007, -0/+1MAC address filtering does serve a purpose in keeping casual users or know-nothing troublemakers off your network. Just because something isn't 100% secure doesn't mean it shouldn't be used.
  • harmlessinc, on 10/12/2007, -0/+1MAC address can be faked even easier
  • shizeon, on 10/12/2007, -0/+1If someone is determined to crack your WEP encryption, they will have no problem cloning your MAC address also.
  • cooldude127, on 10/12/2007, -0/+1gabspeck: for cracking WEP wireless encryption keys. let's you get into networks that are using poor encryption.
  • inactive, on 10/12/2007, -0/+1it says he used a prism2 usb adaptor... widely used, and pretty cheap, i.e. dLink DWL-122
  • manfesto, on 10/12/2007, -0/+1@bonlebon

    Was that a joke?

    //the Hak.5 guys said outright that you'll never see a WEP cracking segment on Hak.5
  • TennBikeBerk, on 10/12/2007, -0/+1WEP encryption with a good key will protect you much better than MAC address filtering. It is very easy to spoof MAC addresses...you merely need to sniff some network traffic, and then when a packet goes by with a MAC address of an authenticated computer on it, you can use that MAC address of your own.

    The only real way to secure a wireless network is using WPA encryption, with either a pre-shared key, or a RADIUS server (usually commercial applications only).
  • kaje, on 10/12/2007, -2/+2Sorry but unless a network is using an extreme amount of bandwidth, you will not crack it that fast. A standard household wireless network would probably take more than a month.
  • T8_um, on 10/12/2007, -0/+0atheros on Whax and Auditor= BackTrack
    http://new.remote-exploit.org/index.php/Main_Page
  • redfox2600, on 10/12/2007, -0/+0Anyone where to get a prism 2 card? Prism 54 (B/G cards) are the only one now on sale that I can find and thanks to soft-mac the don't work as well. And no Ebay is not an option.
  • inactive, on 10/12/2007, -0/+0Think hak 5 should do a video abouth this.
  • trevorsm, on 10/12/2007, -0/+0lol @ all the people that were taking the MAC address filtering joke seriously.
  • geekster, on 10/12/2007, -0/+0It was featured in 'From The Shadows - Box 3.0'

    http://stashbox.fromtheshadows.tv/download.php?b=3.0
    http://stashbox.fromtheshadows.tv/box.php?b=3.0
  • maseone, on 10/12/2007, -1/+1takes me back to the days of phreaking telephone lines in the back of buildings downtown to order items that billed to the telephone bill... yeah.. way back.
  • anarchy99, on 10/12/2007, -0/+0"Had to be a ton of traffic on that network for that to work that fast."
    not necessarily i cracked one at my sisters apartment of a neibour using it for general purpose surfing emalil and occasional p2p for music
    i cracked it with my ibook it just under 7 hours with no help then 14min using the same process as this video
    ive had about a dozen other successes stories in this time limit
    why does everyone think its usually not that fast thats what the authentication flood and reinjection do
    people say you need a network with lots of data moving it s a lie those 2 features create that high traffic needed
  • Amishplumber, on 10/12/2007, -0/+0Anyone know what USB wifi card he used, or know where to reach this guy, cuz I've been looking for a USB wifi card to work with kismac and my ibook for a while now.
  • sneakerelph, on 10/12/2007, -0/+0notapoet:
    that video is great, great quality, high res, and only 9 megs? not bad man, everyone should be downloading this torrent instead of watching the google video.
  • JDStone, on 10/12/2007, -0/+0The video is pretty blurry. You can't exactly see what they're doing.
  • natez, on 11/18/2007, -0/+0this is great
  • inactive, on 10/12/2007, -0/+0Is this 64-bit or 128-bit WEP?
  • SnakeO, on 10/12/2007, -0/+0How do you sniff out a MAC address on kismac (passive card available)
  • mrASSMAN, on 10/12/2007, -0/+0yeahhhh.. nothing is uncrackable. your ***** no matter what you do if someone is determined.
  • winkyeye, on 10/12/2007, -1/+1For maximum security use WPA with a looong encryption key. Don't use WEP.
  • bobb243, on 10/12/2007, -0/+0WEP is so weak... that's why long ago I changed to wpa2
  • inactive, on 10/12/2007, -1/+1Yeah forget MAC address filtering, Bill Gates was gracious enough to help you change it in Windoze...
  • jzamoras, on 10/12/2007, -0/+0How can I find out which are the valid MACs for a given router using MAC filtering? I tried to change mine to router mac with no luck.
  • wifiway, on 10/11/2007, -0/+0cool tuto with packet injection for xp http://en.airdump.net/hacks/packet-injection-windows/
  • Brennan, on 10/12/2007, -1/+1Prove how WPA is so crackable.
  • toams7, on 04/09/2008, -0/+0Damn, i worked for like so long on this and then my Airport Extreme card doesn't inject. I guess ill just forget it unless you can use a Hawking HWC54G on windows. im hacking my schools network, they have WEP.
  • evilsuper, on 12/22/2007, -0/+0Hi,
    I am not as technically advanced as everyone here seems to be, but if I may ask, is there a way I can see if someone has hacked into my computer (except for the fact that two of my mac hard drives were destroyed in a half hour of each other)? I think my super is hacking into my computer... and would like to know if there is a way of actually seeing any record of someone else being on my computer, or pulling up my screen elsewhere.. as, from what I am reading seems possible. I have two mac laptops.. and I'm using a modem. and I have the firewall on (now), but from reading this stuff.. it looks like that can be easily skipped over.
    any thoughts suggestions would be appreciated.
  • PathDaemon, on 10/12/2007, -1/+0BTW, you can get R75 here: http://binaervarianz.de/downloads.php/redir.html?action=download&mirror=http&file_id=36

    It's überalpha, so don't expect it to put your Extreme into passive every time — I've had it fail and kill my card until a reboot. And no, it doesn't do packet injection.
  • Chaos12, on 10/12/2007, -1/+0Mac address filters are worthless, anyone worthwhile knows how to bypass them
  • robbh66, on 10/12/2007, -1/+0Had to be a ton of traffic on that network for that to work that fast.
  • foxhoundadmin, on 10/12/2007, -1/+0wow. this would attract the retards who don't know how to write a proper sentence.

    you know... it's funny. there are programmers who can learn computer language syntax, but whom cannot learn the ENGLISH LANGUAGE syntax. how utterly lame. not that i'm saying there are any people in this thread with enough brain power to learn a computer langauge. just an observation in general. most of the people in this thread are script kiddies.
  • djnick, on 10/12/2007, -2/+1how can this be done on a windows box?
  • NewEvolution, on 10/12/2007, -1/+0MAC address filters indeed...
  • geekster, on 10/12/2007, -1/+0I mean FTS don't feature this video. FTS has a WEP cracking segment on its own.
  • maseone, on 10/12/2007, -1/+0this is so 80's.
  • inactive, on 10/12/2007, -1/+0damn, that is a cool 'tutorial'. The kismac team should link to this..
  • BryanTheCrow, on 10/12/2007, -2/+1Keep in mind, that demo was against 64bit encryption. 128bit still takes several hours to break...
  • sofa0ne, on 10/12/2007, -1/+0*yawn this topic again
  • Fetching more discussions...
    Show 51 - 62 of 62 discussions

  • Add a Comment

    Login or register to comment!
    Or, sign-in super fast with your Facebook account ...


© Digg Inc. 2009 — Content created and posted by Digg users is dedicated to the public domain | Terms of Use Updated | Privacy Policy
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.