Mr. Penguin's Guide to Hacking WPA / WPA2 with Xiaopan 0.4.5 + Minidwep + Password List

Discussion in 'Resources' started by Mr. Penguin, 17 Feb 2013.

  1. Mr. Penguin

    Mr. Penguin Administrator
    Staff Member Admin Moderator VIP

    Joined:
    18 May 2012
    Messages:
    3,097
    Likes Received:
    1,219
    Remember this is a professional wireless auditing tool and you should only use it on your clients or personal networks to test for security. Do not hack networks that you do not own or affiliated with.

    Ok so many people want to know how to hack WPA / WPA2 with a dictionary wordlist. It is an extremely easy to do but as there are so many combinations of passwords you need to be strategic in creating your own wordlist based on research of the potential format of default passwords the ISP or AP manufacturer may have put in place.

    Also when someone changes that password typically they choose a very simple password like xiaopan1234. For that I suggest you use crunch.

    Now, before you start this tutorial you should have Xiaopan 0.4.5, a compatible device and it should be installed in virtualisation or as a Live USB or CD (USB is recommended).

    I Used
    Xiaopan 0.4.5
    Installed it using @Fantasma's method using LiLi USB Creator
    ALFA AWUS036H

    It took me about 3 minutes to hack but I was using my own router so I embedded the password in the wordlist I created. Longest part was capturing the handshake which took about 1 minute.

    Step 1
    Open Minidwep (4th icon from the right and click OK to the disclaimer) Open Minidwep.png


    Step 2
    Click Scan and make sure WPA/WPA2 is selected in the Encryption drop down box
    Scan for Networks.png

    Step 3
    Now select the network you want to hack
    Select Network.png

    Step 4
    Now you want to select Launch, this will try to capture the handshake, it can take awhile
    Launch.png

    Step 5
    After you have captured the handshake this box will come up, navigate to the wordlist you created
    WPA Handshake.png

    Step 6
    When you found it click OK
    Select Password.png

    Step 7
    Now when it finds the password this box will show up
    Key Found.png

    Step 8
    Now we can save the handshake, the Key will be saved in the tmp folder

    Step 9
    Now you can save it your computer. I suggest you mount another USB using the mount tool (8th icon on right) and navigate to your mnt/device

    Step 10
    Select the file you want to copy.
    Select file to be copied.png
    This was a quick tutorial but plan to add more later. If you have any questions please feel free to ask.
     
    #1 Mr. Penguin, 17 Feb 2013
    Last edited: 31 Aug 2013
    • Like Like x 10
    • Winner Winner x 2
    • Informative Informative x 1
  2. thaijack

    thaijack Active Member

    Joined:
    28 May 2012
    Messages:
    11
    Likes Received:
    3
    thank so much
     
    • Like Like x 1
  3. kazuya_mishima

    kazuya_mishima Well-Known Member

    Joined:
    12 Feb 2013
    Messages:
    59
    Likes Received:
    4
    thanks for the info... i will trying on the 0.4.4 Xiaopan OS 1st.... hopefully it will success.... :joy
     
    • Like Like x 1
  4. epitomize

    epitomize Active Member

    Joined:
    26 Oct 2012
    Messages:
    9
    Likes Received:
    5
    can crack wpa password without handshake?
    use reaver i think slow and take tooooo much time...







    { my english not good.. hohoho }
     
  5. Mr. Penguin

    Mr. Penguin Administrator
    Staff Member Admin Moderator VIP

    Joined:
    18 May 2012
    Messages:
    3,097
    Likes Received:
    1,219
    It needs a handshake epitomize and yes Reaver does take more time for WPS enabled devices. But success rate is better depending on the circumstances.
     
    • Laugh My Ass Off Laugh My Ass Off x 1
  6. labidu

    labidu Well-Known Member

    Joined:
    10 Dec 2012
    Messages:
    20
    Likes Received:
    7
  7. shadow_rx

    shadow_rx Active Member

    Joined:
    11 Oct 2012
    Messages:
    14
    Likes Received:
    3
    thanks for sharing!!
     
  8. peshtan

    peshtan Active Member

    Joined:
    13 Dec 2012
    Messages:
    2
    Likes Received:
    0
  9. bleo

    bleo Active Member

    Joined:
    28 Jan 2013
    Messages:
    1
    Likes Received:
    0
    It will be good to make one tutorial using JTR when you create your own dictionary.
     
  10. ijam

    ijam Well-Known Member

    Joined:
    29 Jul 2012
    Messages:
    3
    Likes Received:
    1
    Hello...
    can we use the handshake files later after we save it?
    if can, could you please show or give tutorial for it?

    thanks!:)
     
  11. Mr. Penguin

    Mr. Penguin Administrator
    Staff Member Admin Moderator VIP

    Joined:
    18 May 2012
    Messages:
    3,097
    Likes Received:
    1,219
    you sure can ijam you can also use various online services to upload your pcap / cap files for cracking as well. Or even use this cap in BackTrack or WiFi Slax. Anything really :)

    Will do a tutorial soon.
     
    • Like Like x 1
    • Disagree Disagree x 1
  12. vampiricbunny1800

    vampiricbunny1800 Well-Known Member
    Dev Team VIP

    Joined:
    8 Oct 2012
    Messages:
    242
    Likes Received:
    69
    nice easy walkthough mr.p
     
    • Like Like x 2
  13. Fantastic

    Fantastic Well-Known Member
    VIP

    Joined:
    19 Feb 2013
    Messages:
    122
    Likes Received:
    155
    Can't wait for this tutorial!!
     
  14. epitomize

    epitomize Active Member

    Joined:
    26 Oct 2012
    Messages:
    9
    Likes Received:
    5
    master Penguin... i have get 1 cap file ( i have copy it to another pendrive ) .. can crack it use crunch? if yes.. can u teach me what command i need to use?
    my password dictionary 2.5G... maybe take 3 or 4 days to finish it... :)



    { my english not good.. Sorry }
     
    • Like Like x 1
  15. kazuya_mishima

    kazuya_mishima Well-Known Member

    Joined:
    12 Feb 2013
    Messages:
    59
    Likes Received:
    4
    i'm stuck on step number 6, :stop:

    how can i add another dictionary into this. i just follow this step below... suddenly my 0.4.5 OS cannot start.:

    6. Make a live USB or create a new virtual machine with your newly updated Xiaopan OS (Best) or Beini iso
     

    Attached Files:

  16. Mr. Penguin

    Mr. Penguin Administrator
    Staff Member Admin Moderator VIP

    Joined:
    18 May 2012
    Messages:
    3,097
    Likes Received:
    1,219
  17. kazuya_mishima

    kazuya_mishima Well-Known Member

    Joined:
    12 Feb 2013
    Messages:
    59
    Likes Received:
    4
    Sorry sir.... My bad...;)
     
    • Like Like x 1
  18. ijam

    ijam Well-Known Member

    Joined:
    29 Jul 2012
    Messages:
    3
    Likes Received:
    1
    okay..thank you Mr.Penguin! i can't wait for the great tutorial! :)
     
    • Like Like x 1
  19. geo_329

    geo_329 Member

    Joined:
    24 Feb 2013
    Messages:
    6
    Likes Received:
    0
    I have a problem to step 3 It cant find any network...Is this a driver problem (antennas?)
     
  20. geo_329

    geo_329 Member

    Joined:
    24 Feb 2013
    Messages:
    6
    Likes Received:
    0
    try open files google them xiaopan 0.4.5
     
Loading...
  • About Us

    We are a community mixed with professionals and beginners with an interest in wireless security, auditing and pentesting. Feel free to check out and upload resources.


    You can also find us on: Twitter and Facebook

  • Donate to Us

    Did you find our forums useful? Feel free to donate Bitcoin to us using the form below. Those who donate the equivlent of $10 USD or more will be upgraded to VIP membership. Don't have Bitcoin? Use your credit card to GO VIP here. Don't want to fork out some coin? There are other ways to GO VIP. Bitcoin: 1LMTGSoTyJWXuy2mQkHfgMzD7ez74x1Z8K