Tag Archives: Hacking

[Tutorial] How To Create A Custom Password List Using Crunch In Just 2 Easy Steps?

Welcome back coders ninja, in this tutorial we are going to know How to create a custom password list using crunch(custom password list generator)?. A crunch is an inbuilt tool in kali that is used to create a custom wordlist using alphabets, numbers, and symbols. It generates wordlists in both combination and permutation ways. It can also break output on the basis of lines or file size. We all know dictionary attacks are as good as the password list we have.

Let’s start creating our custom password list using crunch. Which we will be able to use for cracking wifi password using crack-ng or for other brute-force attacks.

Image By: Freepik.com

How To Create A Custom Password List using a password list generator tool(Crunch)?

To create a custom password list we need to follow just 2 easy steps.

1. Open Crunch in Kali

To open up crunch you just need to type crunch in the terminal or just start typing crunch command.

crunch

2. Know Crunch Syntex And Generate Your Password List

Crunch follows a very simple syntax.

crunch <min-length> <max-length> <character-set> -t <pattern> -o <output-file-name>
  • min-length: It tells crunch what will be the minimum length of the password you want to generate.
  • max-length: It tells what will be the maximum length of password you want crunch to generate.
  • character-set: Which characters you want crunch to include in the passwords.
  • pattern: Here you can specify the pattern crunch to follow for generating passwords. Like you know that your target’s password is starting with 123 so you can write 123@@@@ this will generate all the passwords possible of length 4 starting with 123. Remember if you want to use pattern your min-length and max-length must be same.
  • output-file: Name of output file where crunch will write all the password it will generate.

All the fields after max-length are optional.

crunch <min-length> <max-length> [optional]

Example:

The following command will generate all the possible passwords of lengths 7 to 8 and will store them at root/PasswordList.txt

crunch 7 8 -o /root/PasswordList.txt

Output Location:

Notice that when we execute commands to generate a password list, crunch gives us an estimated size of the file that will be generated to store the password list.

Let’s see how to create a custom password list with some examples.


Examples: how to create a custom password list using crunch?

Let’s see some examples of how we can easily generate our custom password list using crunch in kali on the basis of your knowledge about the target.

1. If your target is using their mobile no. as password

It’s very common, many peoples use their mobile number as their password. So by writing the following command, we can easily generate all the possible mobile numbers, and crunch will store the generated passwords at root/PasswordList.

crunch 10 10 1234567890 -o /root/PasswordList..txt

We can further decrease the no. of the password generated, by introducing more parameters, like if you know the sim provider your target uses. Here I am assuming my target uses a service from a sim provider whose all no. starts with 70…….

crunch 10 10 1234567890 -t 70@@@@@@@@ -o PasswordList.txt

2. If you know your target is using their name in the password

Let’s assume your target’s name is “sam” which occurs at the start of its password and its password length is 7. So, by executing the following command we can easily generate a password list that should contain his password.

crunch 7 7 abcdefghijklmnopqrestuvwxyz1234567890 -t sam@@@@ -o PasswordList.txt

Now the above command will generate the password list in which every password will start with “sam” of length 7 at root/PasswordList.txt.


That’s all for this tutorial, I hope you enjoyed it and I answered your question “How to create a custom password list?”. If you are facing any problem following any steps, write down your problem in the comment box. Check out my previous tutorial in which I showed you how to hack wifi password in kali by following just 6 easy steps or check out our other tutorials here.

If you liked this tutorial don’t forget to share it with your friends, and if you want to receive updates for our upcoming tutorials you can subscribe to our newsletter.

[Tutorial] How To Hack WiFi Password In Just 6 Easy Steps?

Welcome you, beautiful people, in this tutorial you will going to learn How to hack WiFi Passwords? and how you can prevent this from happening to your wifi network. In this tutorial, we are going to use aircrack-ng for cracking the encrypted password. And the best part is you need to follow just 6 easy steps.

Image By: unknown

Topics covered in this tutorial


How does wifi hacking work?

In this tutorial, we are going to use the aircrack-ng tool which comes pre-installed in kali. If you want to use windows or android devices for the hacking please search on the search bar for my other tutorials on that. This method works in the following way:

  • First, we will be going to find out the targeted wifi(Access Point) by monitoring the wifi signals.
  • Then we will be going to send de-authentication packets to the AP which will force the clients connected to the access point to get disconnect from the AP.
  • When the client will try to reconnect to the AP we will grab the 4-way handshake file which contains the password in encrypted form.
  • After that, we will be going to use aircrack-ng to crack the handshake file to get the password.

What are the prerequisites to hacking a wifi password?

Before you go further make sure you have Kali installed on your pc or installed as dual-boot or just run kali as live OS, and you are in the range of wifi on which you want to perform the attack. If you want to use a virtual machine make sure you have an external wifi adapter that supports packet injection and monitor mode. If you don’t have an external wifi adapter install kali as a dual-boot on your PC or laptop.

If you want to hack wifi using windows follow my other tutorial “How to hack wifi password using windows?“, or if you want to hack wifi using android follow this tutorial “How to hack wifi password using Android?“.


How to hack wifi passwords using kali?

The following steps will help you crack a wifi password using kali.

1. Open the terminal window in kali

To open a terminal window in kali use the keyboard shortcut ctrl+alt+t or type terminal in the search box.

2. Put your wifi adaptor into monitor mode

Before putting your wifi into monitor mode your need to first know the name of your wifi adaptor and for that type in the following command in the terminal.

ifconfig

As you can see I have a single wifi adaptor(wlan0). So, I am going to perform all the following commands on this adaptor.

Now to put this adaptor into monitor mode type the following command in the terminal.

airmon-ng start wlan0

Notice that you can’t use your internet while your wifi is in monitor mode. And my adaptor name is changed from wlan0 to wlan0mon.

Before we start monitoring wifi signals we need to kill background processes so that they can’t interrupt while we are working in monitoring mode, for that type following command in the terminal window.

airmon-ng check kill

After putting your wifi into monitor mode you can start monitoring the wifi signals near you.

3. Start monitoring wifi signals

To start monitoring wifi signals we are going to use airodump-ng command. Just type the following command in the terminal.

airodump-ng wlan0mon

Notice that all the visible access points(APs) are shown on the upper part of the screen and all the clients who are connected to the APs are listed below.

4. Let’s target the AP you want to hack

If you saw your target in the list of visible APs and at least one client connected to that AP, we can go further else you need to wait for someone to get connected to that AP first.

Now open up a new terminal window(don’t close the current window) because we need to copy BSSID and channel from the current window.

Type the following command in the terminal window.

Formet: airodump-ng --bssid <your target bssid> -c <channel no. of your target AP> --write <file name where you want to store hand-shake file> <name of your wifi adptor with mon>
airodump-ng --bssid 64:6C:82:E8:24:EC -c 6 --write HSfile wlan0mon

5. Capture hand-shake

In order to capture the hand-shake which contains the encrypted password, we need to disconnect the connected clients from the AP. For that open a new terminal window and type the following command.

aireplay-ng --deauth 10 -a 64:6C:82:E8:24:EC wlan0mon

This command will send 10 de-authentication packets to the AP which will cause the clients to disconnect from the AP.

And when they will try to reconnect to the AP we will get the file containing the encrypted password. As you can see in the following image we got a message saying “WPA Handshake: BSSID of target” this message means our attack is successful, and we are able to capture the handshake file.

We can find a capture file on the location we specified in the 4th step, in my case it’s root/WPfile-01.cap.

6. Decrypt the password

Now, to decrypt the password present in our file WPfile-01.cap, we need to run the following command against this file using a password list, in my case, I am using a custom password list named PasswordList.txt.

aircrack-ng HSfile-01.cap -w PasswordList.txt

Remember that this type of attack is as good as your password list. If you want to create your own password list follow this tutorial “How To Create A Password List In Kali?” or you can download the following very famous password lists.

Done! you got what you wanted.

How to exit monitoring mode?

First, type the following command.

airmon-ng stop wlan0mon

Now, restart NetworkManager.

service NetworkManager restart

I hope you got the answer to your question How to hack wifi password?


How to secure your wireless network from getting hacked?

  • Change your default password.
  • Increase the length of your password (minimum 12 characters).
  • Introduce some symbols and numbers in your password
  • Restrict access to your network by allowing only registered MAC addresses.

If you are facing any problem with following any step you can ask for help in the comments below.

If you liked this tutorial don’t forget to share it with your friends, and if you want to receive updates for our upcoming tutorials you can subscribe to our newsletter.