LSX-blog

Feed Rss

【转载】Aireplay-ng 的 6 种攻击模式详解

05.11.2013, 破解, by .

Aireplay-ng 的 6 种攻击模式详解

-0 Deautenticate 冲突模式

使已经连接的合法客户端强制断开与路由端的连接,使其重新连接。在重新连接过程中获得验证数据包,从而产生有效 ARP request。

如果一个客户端连在路由端上,但是没有人上网以产生有效数据,此时,即使用-3 也无法产生有效 ARP request。所以此时需要用-0 攻击模式配合,-3 攻击才会被立刻激活。

aireplay-ng -0 10 –a <ap mac> -c <my mac> wifi0 参数说明:

【-0】:冲突攻击模式,后面跟发送次数(设置为 0,则为循环攻击,不停的断开连接,客户端无法正常上网)

【-a】:设置 ap 的 mac

【-c】:设置已连接的合法客户端的 mac。

如果不设置-c,则断开所有和 ap 连接的合法客户端。

aireplay-ng -3 -b <ap mac> -h <my mac> wifi0

注:使用此攻击模式的前提是必须有通过认证的合法的客户端连接到路由器

-1 fakeauth count 伪装客户端连接

这种模式是伪装一个客户端和 AP 进行连接。

这步是无客户端的研究学习的第一步,因为是无合法连接的客户端,因此需要一个伪装客户端来和路由器相连。为让 AP 接受数据包,必须使自己的网卡和 AP 关联。如果没有关联的话,目标 AP 将忽略所有从你网卡发送的数据包,IVS 数据将不会产生。

用-1 伪装客户端成功连接以后才能发送注入命令,让路由器接受到注入命令后才可反馈数据从而产生 ARP 包。

aireplay-ng -1 0 –e <ap essid> -a <ap mac> -h <my mac> wifi0

参数说明:

【-1】:伪装客户端连接模式,后面跟延时

【-e】:设置 ap 的 essid

【-a】:设置 ap 的 mac

【-h】:设置伪装客户端的网卡 MAC(即自己网卡 mac)

-2 Interactive 交互模式

这种攻击模式是一个抓包和提数据发攻击包,三种集合一起的模式

1.这种模式主要用于研究学习无客户端,先用-1 建立虚假客户端连接然后直接发包攻击 ,

aireplay-ng -2 -p 0841 -c ff:ff:ff:ff:ff:ff -b <ap mac> -h <my mac> wifi0

参数说明:

【-2】:交互攻击模式

【-p】:设置控制帧中包含的信息(16 进制),默认采用 0841

【-c】:设置目标 mac 地址

【-b】:设置 ap 的 mac 地址

【-h】:设置伪装客户端的网卡 MAC(即自己网卡 mac)

2.提取包,发送注入数据包 aireplay-ng -2 –r <file> -x 1024 wifi0 发包攻击.其中,-x 1024 是限定发包速度,避免网卡死机,可以选择 1024。

-3 ARP-request 注入攻击模式

这种模式是一种抓包后分析重发的过程 这种攻击模式很有效。既可以利用合法客户端,也可以配合-1 利用虚拟连接的伪装客户端。如果有合法客户端那一般需要等几分钟,让合法客户端和 ap 之间通信,少量数据就可产生有效 ARP request 才可利用-3模式注入成功。如果没有任何通信存在,不能得到 ARP request.,则这种攻击就会失败。

如果合法客户端和ap之间长时间内没有 ARP request,可以尝试同时使用-0 攻击. 如果没有合法客户端,则可以利用-1 建立虚拟连接的伪装客户端,连接过程中获得验证数据包,从而产生有效 ARP request。再通过-3 模式注入。

aireplay-ng -3 -b <ap mac> -h <my mac> -x 512 wifi0

参数说明:

【-3】:arp 注入攻击模式

【-b】:设置 ap 的 mac

【-h】:设置

【-x】:定义每秒发送数据户包的数量,但是最高不超过 1024,建议使用 512(也可不定义)

-4 Chopchop 攻击模式

用以获得一个包含密钥数据的 xor 文件 这种模式主要是获得一个可利用包含密钥数据的 xor 文件,不能用来解密数据包。而是用它来产生一个新的数据包以便我们可以进行注入。

aireplay-ng -4 -b <ap mac> -h <my mac> wifi0 参数说明:

【-b】:设置需要研究学习的 AP 的 mac

【-h】:设置虚拟伪装连接的 mac(即自己网卡的 mac)

-5 fragment 碎片包攻击模式

用以获得 PRGA(包含密钥的后缀为 xor 的文件) 这种模式主要是获得一个可利用 PRGA,这里的 PRGA 并不是 wep key 数据,不能用来解密数据包。而是用它来产生一个新的数据包以便我们可以进行注入。其工作原理就是使目标 AP 重新广播包,当 AP 重广播时,一个新的 IVS 将产生,我们就是利用这个来研究学习 !

aireplay-ng -5 -b <ap mac> -h <my mac> wifi0

【-5】:碎片包攻击模式

【-b】:设置 ap 的 mac

【-h】:设置虚拟伪装连接的 mac(即自己网卡的 mac)

Packetforge-ng:数据包制造程序 Packetforge-ng <mode> <options>Mode

【-0】:伪造 ARP 包

packetforge-ng -0 -a <ap mac> -h <my mac> wifi0 –k 255.255.255.255 -l 255.255.255.255–y<.xor file> -w mrarp

参数说明:

【-0】:伪装 arp 数据包

【-a】:设置 ap 的 mac

【-h】设置虚拟伪装连接的 mac(即自己的 mac)

【-k】<ip[:port]>说明:设置目标文件 IP 和端口

【-l】<ip[:port]>说明:设置源文件 IP 和端口

【-y】<file>说明:从 xor 文件中读取 PRGA。后面跟 xor 的文件名。

【-w】设置伪装的 arp 包的文件名 Aircrack-ng:WEP 及 WPA-PSK key 研究学习主程序

Aircrack-ng [optin] <.cap/.ivs file>Optin aircrack-ng -n 64 -b <ap mac> name-01.ivs )

参数说明:

【-n】:设置 WEP KEY 长度(64/128/152/256/512)aircrack-ng -x -f 2 name-01h.cap

参数说明:

【-x】:设置为暴力研究学习模式

【-f】:设置复杂程度,wep 密码设置为 1,wpa 密码设置为 2 aircrack-ng -w password.txt ciw.cap

【-w】:设置为字典研究学习模式,后面跟字典文件,再后面跟是我们即时保存的那个捕获到 WPA 验证的抓包文件。

【转载】Aireplay-ng 的 6 种攻击模式详解 有 242 条回应

  1. That is very interesting, You’re an excessively skilled blogger. I have joined your rss feed and stay up for looking for extra of your great post. Additionally, I have shared your web site in my social networks| а

    回复
  2. I am really loving the theme/design of your website. Do you ever run into any browser compatibility issues? A small number of my blog readers have complained about my blog not working correctly in Explorer but looks great in Firefox. Do you have any solutions to help fix this problem?| а

    回复
  3. Greetings from Carolina! I’m bored at work so I decided to browse your blog on my iphone during lunch break. I enjoy the knowledge you present here and can’t wait to take a look when I get home. I’m shocked at how quick your blog loaded on my phone .. I’m not even using WIFI, just 3G .. Anyhow, fantastic blog!| а

    回复
  4. Painter And Decorator Gloucester
    38 Bruton Way
    Gloucester GL1 1DA, United Kingdom
    01452 223268

    回复
  5. I truly love your site.. Excellent colors & theme. Did you make this site yourself? Please reply back as I’m hoping to create my own personal blog and want to find out where you got this from or exactly what the theme is called. Thanks!| а

    回复
  6. I was curious if you ever considered changing the structure of your website? Its very well written; I love what youve got to say. But maybe you could a little more in the way of content so people could connect with it better. Youve got an awful lot of text for only having 1 or 2 images. Maybe you could space it out better?| а

    回复
  7. Tremendous issues here. I am very satisfied to peer your article. Thank you a lot and I am having a look forward to contact you. Will you please drop me a mail?| а

    回复
  8. This design is incredible! You obviously know how to keep a reader entertained. Between your wit and your videos, I was almost moved to start my own blog (well, almost…HaHa!) Great job. I really enjoyed what you had to say, and more than that, how you presented it. Too cool!| а

    回复
  9. Wow, this article is pleasant, my sister is analyzing these things, thus I am going to convey her.| а

    回复
  10. I’m not sure why but this website is loading incredibly slow for me. Is anyone else having this problem or is it a issue on my end? I’ll check back later and see if the problem still exists.| а

    回复
  11. Thanks to my father who told me regarding this webpage, this web site is actually amazing.| а

    回复
  12. Generally I do not learn post on blogs, but I wish to say that this write-up very pressured me to check out and do so! Your writing taste has been surprised me. Thanks, very great article.| а

    回复
  13. I’m extremely inspired along with your writing abilities as smartly as with the structure to your weblog. Is this a paid topic or did you modify it your self? Either way stay up the excellent high quality writing, it is rare to look a nice blog like this one nowadays..| а

    回复
  14. Hi it’s me, I am also visiting this web site on a regular basis, this site is actually good and the users are really sharing pleasant thoughts.| а

    回复
  15. Incredible! This blog looks exactly like my old one! It’s on a entirely different topic but it has pretty much the same page layout and design. Wonderful choice of colors!| а

    回复
  16. Hello! I just wanted to ask if you ever have any problems with hackers? My last blog (wordpress) was hacked and I ended up losing several weeks of hard work due to no backup. Do you have any methods to stop hackers?| а

    回复
  17. I love what you guys are usually up too. This kind of clever work and coverage! Keep up the fantastic works guys I’ve included you guys to our blogroll.| а

    回复
  18. Incredible! This blog looks just like my old one! It’s on a entirely different subject but it has pretty much the same page layout and design. Wonderful choice of colors!| а

    回复
  19. You actually make it seem so easy with your presentation but I find this topic to be really something that I think I would never understand. It seems too complex and extremely broad for me. I’m looking forward for your next post, I’ll try to get the hang of it!| а

    回复
  20. Awesome blog! Is your theme custom made or did you download it from somewhere? A design like yours with a few simple tweeks would really make my blog jump out. Please let me know where you got your design. Cheers| а

    回复
  21. This web site certainly has all of the information and facts I wanted concerning this subject and didn’t know who to ask. | а

    回复
  22. Way cool! Some extremely valid points! I appreciate you penning this write-up and also the rest of the website is also really good.| а

    回复
  23. I’m amazed, I have to admit. Seldom do I come across a blog that’s equally educative and amusing, and let me tell you, you have hit the nail on the head. The problem is something which too few folks are speaking intelligently about. I’m very happy that I came across this during my hunt for something concerning this.| а

    回复
  24. Hello, Neat post. There is an issue with your website in internet explorer, may check this? IE still is the market leader and a good portion of people will pass over your fantastic writing due to this problem.| а

    回复
  25. When some one searches for his essential thing, therefore he/she wishes to be available that in detail, therefore that thing is maintained over here.| а

    回复
  26. Hello, I read your blogs like every week. Your writing style is awesome, keep up the good work!| а

    回复
  27. Good way of explaining, and good paragraph to obtain facts about my presentation focus, which i am going to convey in university.| а

    回复
  28. Hi, its fastidious post concerning media print, we all be familiar with media is a wonderful source of data.| а

    回复
  29. Right here is the right webpage for anyone who really wants to find out about this topic. You realize so much its almost tough to argue with you (not that I personally will need to…HaHa). You certainly put a fresh spin on a subject which has been discussed for decades. Great stuff, just great!| а

    回复
  30. It’s perfect time to make some plans for the long run and it’s time to be happy. I’ve read this publish and if I could I wish to recommend you few fascinating issues or tips. Maybe you can write next articles regarding this article. I desire to learn even more things approximately it!| а

    回复
  31. online pharmacy cialis canadian cialis cialis daily cost

    回复
  32. This is my first time pay a visit at here and i am in fact impressed to read everthing at single place.| а

    回复
  33. There’s definately a great deal to find out about this subject. I love all of the points you made.| а

    回复
  34. I was curious if you ever considered changing the structure of your website? Its very well written; I love what youve got to say. But maybe you could a little more in the way of content so people could connect with it better. Youve got an awful lot of text for only having one or two images. Maybe you could space it out better?| а

    回复
  35. Its like you read my mind! You appear to know so much about this, like you wrote the book in it or something. I think that you can do with some pics to drive the message home a bit, but instead of that, this is great blog. A fantastic read. I will certainly be back.| а

    回复
  36. Hi, this weekend is nice in favor of me, since this point in time i am reading this impressive informative post here at my residence.| а

    回复
  37. Hey there! Do you use Twitter? I’d like to follow you if that would be ok. I’m absolutely enjoying your blog and look forward to new updates.| а

    回复
  38. Hello, every time i used to check web site posts here early in the daylight, as i enjoy to find out more and more.| а

    回复
  39. Great web site you have got here.. It’s difficult to find good quality writing like yours nowadays. I really appreciate people like you! Take care!!| а

    回复
  40. That is a great tip particularly to those fresh to the blogosphere. Brief but very accurate information… Thanks for sharing this one. A must read article!| а

    回复
  41. Hello, I log on to your blogs daily. Your story-telling style is awesome, keep it up!| а

    回复

发表评论

电子邮件地址不会被公开。 必填项已用*标注