Professional Documents
Culture Documents
LIFEHACKER THE A.V. CLUB DEADSPIN GIZMODO JALOPNIK JEZEBEL KOTAKU SPLINTER THE TAKEOUT THE ROOT THE ONION CLICKHOLE
MORE
How to Crack a Wi-Fi
VIDEO SKILLET TWO CENTSNetwork's
VITALS OFFSPRING WPA Password
THE UPGRADE with
APP DIRECTORY HOW I WORK
Reaver
VIDEO SKILLET TWO CENTS VITALS OFFSPRING THE UPGRADE APP DIRECTORY HOW I WORK
Adam Pash
1/09/12 8:00am • 6.5M 252 72
Your Wi-Fi network is your conveniently wireless gateway to the internet, and
since you're not keen on sharing your connection with any old hooligan who
happens to be walking past your home, you secure your network with a
password, right? Knowing, as you might, how easy it is to crack a WEP
password, you probably secure your network using the more bulletproof WPA
security protocol.
Read more
Here's the bad news: A new, free, open-source tool called Reaver exploits a
security hole in wireless routers and can crack most routers' current
passwords with relative ease. Here's how to crack a WPA or WPA2 password,
https://lifehacker.com/5873407/how-to-crack-a-wi-fi-networks-wpa-password-with-reaver 1/10
9/8/2018 How to Crackhow
step by step, with Reaver—and a Wi-Fi Network's
to protect WPA
your Password
network with Reaver
against Reaver
attacks.
In the first section of this post, I'll walk through the steps required to crack a
WPA password using Reaver. You can follow along with either the video or the
text below. After that, I'll explain how Reaver works, and what you can do to
protect your network against Reaver attacks.
First, a quick note: As we remind often remind readers when we discuss topics
that appear potentially malicious: Knowledge is power, but power doesn't
mean you should be a jerk, or do anything illegal. Knowing how to pick a lock
doesn't make you a thief. Consider this post educational, or a proof-of-concept
intellectual exercise. The more you know, the better you can protect yourself.
· A computer with Wi-Fi and a DVD drive. BackTrack will work with the
wireless card on most laptops, so chances are your laptop will work fine.
However, BackTrack doesn't have a full compatibility list, so no
guarantees. You'll also need a DVD drive, since that's how you'll boot into
BackTrack. I used a six-year-old MacBook Pro.
https://lifehacker.com/5873407/how-to-crack-a-wi-fi-networks-wpa-password-with-reaver 2/10
9/8/2018 How
more detail in the to Crack
"How a Wi-Fi
Reaver Network's
Works" WPA
section Password
how with Reaver
WPS creates the
security hole that makes WPA cracking possible.
· A little patience. This is a 4-step process, and while it's not terribly
difficult to crack a WPA password with Reaver, it's a brute-force attack,
which means your computer will be testing a number of different
combinations of cracks on your router before it finds the right one. When I
tested it, Reaver took roughly 2.5 hours to successfully crack my
password. The Reaver home page suggests it can take anywhere from 4-10
hours. Your mileage may vary.
At this point you should have BackTrack burned to a DVD, and you should have
your laptop handy.
To boot into BackTrack, just put the DVD in your drive and boot your machine
from the disc. (Google around if you don't know anything about live CDs/DVDs
and need help with this part.) During the boot process, BackTrack will prompt
you to to choose the boot mode. Select "BackTrack Text - Default Boot Text
Mode" and press Enter.
Reaver has been added to the bleeding edge version of BackTrack, but it's not
yet incorporated with the live DVD, so as of this writing, you need to install
Reaver before proceeding. (Eventually, Reaver will simply be incorporated with
BackTrack by default.) To install Reaver, you'll first need to connect to a Wi-Fi
network that you have the password to.
2. Select your network and click Connect, enter your password if necessary,
click OK, and then click Connect a second time.
Now that you're online, let's install Reaver. Click the Terminal button in the
menu bar (or click Applications > Accessories > Terminal). At the prompt, type:
apt-get update
If all went well, Reaver should now be installed. It may seem a little lame that
you need to connect to a network to do this, but it will remain installed until
you reboot your computer. At this point, go ahead and disconnect from the
https://lifehacker.com/5873407/how-to-crack-a-wi-fi-networks-wpa-password-with-reaver 3/10
9/8/2018 How toNetwork
network by opening Wicd Crack a Wi-Fi Network's
Manager againWPA
andPassword with Reaver
clicking Disconnect.
(You may not strictly need to do this. I did just because it felt like I was
somehow cheating if I were already connected to a network.)
In order to use Reaver, you need to get your wireless card's interface name, the
BSSID of the router you're attempting to crack (the BSSID is a unique series of
letters and numbers that identifies a router), and you need to make sure your
wireless card is in monitor mode. So let's do all that.
iwconfig
Press Enter. You should see a wireless device in the subsequent list. Most
likely, it'll be named wlan0 , but if you have more than one wireless card, or a
Put your wireless card into monitor mode: Assuming your wireless card's
interface name is wlan0 , execute the following command to put your wireless
This command will output the name of monitor mode interface, which you'll
also want to make note of. Most likely, it'll be mon0 , like in the screenshot
https://lifehacker.com/5873407/how-to-crack-a-wi-fi-networks-wpa-password-with-reaver 4/10
9/8/2018 How to Crack a Wi-Fi Network's WPA Password with Reaver
Find the BSSID of the router you want to crack: Lastly, you need to get the
unique identifier of the router you're attempting to crack so that you can point
Reaver in the right direction. To do this, execute the following command:
airodump-ng wlan0
(Note: If airodump-ng wlan0 doesn't work for you, you may want to try the
monitor interface instead—e.g., airodump-ng mon0 .)
You'll see a list of the wireless networks in range—it'll look something like the
screenshot below:
When you see the network you want, press Ctrl+C to stop the list from
refreshing, then copy that network's BSSID (it's the series of letters, numbers,
and colons on the far left). The network should have WPA or WPA2 listed under
the ENC column. (If it's WEP, use our previous guide to cracking WEP
passwords.)
Now, with the BSSID and monitor interface name in hand, you've got
everything you need to start up Reaver.
Now execute the following command in the Terminal, replacing bssid and
moninterface with the BSSID and monitor interface and you copied down
above:
For example, if your monitor interface was mon0 like mine, and your BSSID
was 8D:AE:9D:65:1F:B2 (a BSSID I just made up), your command would
look like:
https://lifehacker.com/5873407/how-to-crack-a-wi-fi-networks-wpa-password-with-reaver 5/10
9/8/2018 Press Enter, sit back,How
andtolet
Crack a Wi-Fi
Reaver work Network's WPA Password
its disturbing with Reaver
magic. Reaver will now
try a series of PINs on the router in a brute force attack, one after another.
This will take a while. In my successful test, Reaver took 2 hours and 30
minutes to crack the network and deliver me with the correct password. As
mentioned above, the Reaver documentation says it can take between 4 and 10
hours, so it could take more or less time than I experienced, depending. When
Reaver's cracking has completed, it'll look like this:
00:46 / 03:48
How to Set Up Your First Kitchen So You Can Finally Feed Yourself Like an
Adult
8/20/18 8:00am
Also of note, you can also pause your progress at any time by pressing Ctrl+C
while Reaver is running. This will quit the process, but Reaver will save any
progress so that next time you run the command, you can pick up where you
https://lifehacker.com/5873407/how-to-crack-a-wi-fi-networks-wpa-password-with-reaver 6/10
9/8/2018 How
left off-as long as you to Crack
don't shut adown
Wi-Fi your
Network's WPA Password
computer with
(which, if Reaver
you're
running off a live DVD, will reset everything).
Now that you've seen how to use Reaver, let's take a quick overview of how
Reaver works. The tool takes advantage of a vulnerability in something called
Wi-Fi Protected Setup, or WPS. It's a feature that exists on many routers,
intended to provide an easy setup process, and it's tied to a PIN that's hard-
coded into the device. Reaver exploits a flaw in these PINs; the result is that,
with enough time, it can reveal your WPA or WPA2 password.
Read more details about the vulnerability at Sean Gallagher's excellent post on
Ars Technica.
Since the vulnerability lies in the implementation of WPS, your network should
be safe if you can simply turn off WPS (or, even better, if your router doesn't
support it in the first place). Unfortunately, as Gallagher points out as Ars,
even with WPS manually turned off through his router's settings, Reaver was
still able to crack his password.
In a phone conversation, Craig Heffner said that the inability to shut this
vulnerability down is widespread. He and others have found it to occur with
every Linksys and Cisco Valet wireless access point they've tested. "On all of the
Linksys routers, you cannot manually disable WPS," he said. While the Web
interface has a radio button that allegedly turns off WPS configuration, "it's still
on and still vulnerable.
So that's kind of a bummer. You may still want to try disabling WPS on your
router if you can, and test it against Reaver to see if it helps.
You could also set up MAC address filtering on your router (which only allows
specifically whitelisted devices to connect to your network), but a sufficiently
savvy hacker could detect the MAC address of a whitelisted device and use MAC
address spoofing to imitate that computer.
https://lifehacker.com/5873407/how-to-crack-a-wi-fi-networks-wpa-password-with-reaver 7/10
9/8/2018 How to Crack a Wi-Fi Network's WPA Password with Reaver
How to Monitor Your Internet Usage So You Don't Exceed Your Data Cap
Internet data caps are becoming a reality and can seriously suck. If you're
stuck with the…
Read more
Further Reading
Thanks to this post on Mauris Tech Blog for a very straightforward starting
point for using Reaver. If you're interested in reading more, see:
Reddit user jagermo (who I also spoke with briefly while researching Reaver)
has created a public spreadsheat intended to build a list of vulnerable devices
so you can check to see if your router is susceptible to a Reaver crack.
Have any experience of your own using Reaver? Other comments or concerns?
Let's hear it in the comments.
https://lifehacker.com/5873407/how-to-crack-a-wi-fi-networks-wpa-password-with-reaver 8/10
9/8/2018 How to Crack a Wi-Fi Network's WPA Password with Reaver
Close friends are priceless. That doesn’t mean you can’t assess their value.
At least, that’s the logic presented by Blue Zones, an organization that says it
is, “Inspired by the world’s longest-lived cultures,” and shares articles and
quizzes to “help people live longer, better by improving their surroundings.”
And your friends are a major part of your surroundings—they’re the people
we’ve managed to connect with at school, at work, and other close quarters
where human contact is unavoidable. If we’re lucky, our friends show up for us
and we show up for them.
But what if your friend is taking more from you than they’re giving? The Blue
Zone is offering a “tribe” assessment checklist on their site, found via
Swissmiss, writing:
Research shows that friends can have a long-term impact on our health. In fact,
if your best friends are obese, you’re about twice as likely to be overweight. The
following exercise is for you only. You don’t need to turn this in. You don’t need
to share it. It’s just an honest assessment for your own reflection.
Kind of an odd example, but it is true that there are times when we want to
change or improve our lives and consider how the people in it are making that
easier and harder. The questions on the quiz range from “During the past
month, how often has this person felt sad or depressed?” to “How many
sweets or cans of soda pop does the person eat and drink daily?” to “How
often does the person attend religious activities?”
You also have to answer these questions for yourself, and see where you align.
There are columns for four friends, and at the end of the assessment you’ll
confirm what you already know: some friends are very different from you. And
some of them are possibly also making your life shorter.
RECOMMENDED STORIES
How Many Friends Do You Need How to Find Common Ground Don't Invite Your Partner to a
to Be Happy? With Your First College Friend Event
Roommate
Aimée Lutkin
Subscribe
https://lifehacker.com/5873407/how-to-crack-a-wi-fi-networks-wpa-password-with-reaver 10/10