Popular Wireless Hacking Tools updated for 2. Last year, I wrote an article covering popular wireless hacking tools to crack or recover password of wireless network. We added 1. 3 tools in that article which were popular and work great. Now I am updating that post to add few more in that list. I will not explain about wireless security and WPAWEP. Start studying Security. Learn vocabulary, terms, and more with flashcards, games, and other study tools. Last year, I wrote an article covering popular wireless hacking tools to crack or recover password of wireless network. We added 13 tools in that article which were. You can read the existing article on wireless hacking tools to learn about them. In this post, I am updating the existing list to add few more powerful tools. I am adding seven new tools in the existing list to give you a single list of the most used wireless cracking tools. Aircrack. Aircrack is the most popular and widely known wireless password cracking tool. It is used as 8. 02. WEP and WPA PSK keys cracking tool around the globe. It first captures packets of the network and then try to recover password of the network by analyzing packets. It also implements standard FMS attacks with some optimizations to recover or crack password of the network. Wze6MA/hqdefault.jpg' alt='Crack Ssid Name Generator' title='Crack Ssid Name Generator' />Kore. K attacks and PTW attack to make the attack much faster than other WEP password cracking tools. This tool is powerful and used most widely across the world. This is the reason I am adding it at the top of the list. It offers console interface. If you find this tool hard to use, you can try the available online tutorials. Company behind this tool also offers online tutorial to let you learn by yourself. Download http www. Kali Linux Quick Guide Learn Kali Linux in simple and easy steps starting from basic to advanced concepts with examples including Installation and Configuration. Change the Service Set Identifier the network name or SSID from the default to something unique. A default SSID indicates to hackers that the network was set up. When youre traveling through unfamiliar territory, sometimes turnbyturn navigation just isnt enough. A new design update on Google Maps is here to help you out. Microsoft Surface Hub is an allinone productivity device that enables teams to better brainstorm, collaborate, and share ideas. Surface Hub relies on Miracast for. Crack Ssid Name Generator' title='Crack Ssid Name Generator' />Air. Snort. Air. Snort is another popular wireless LAN password cracking tool. It can crack WEP keys of Wi Fi. This tool basically operates by passively monitoring transmissions and then computing the encryption key when enough packets have been gathered. This tool is freely available for Linux and Windows platform. It is also simple to use. The tool has not been updated for around three years, but it seems that company behind this tool is now interested in further development. This tool is also directly involved in WEP cracking and hence used widely. Download Air. Snort http sourceforge. Kismet. Kismet is another Wi Fi 8. This tool is basically used in Wi Fi troubleshooting. It works fine with any Wi Fi card supporting rfmon mode. It is available for Windows, Linux, OS X and BSD platforms. This tool passively collects packets to identify standard network and also detects the hidden networks. Built on a client server modular architecture, this tool can sniff 8. It is an open source tool and supports recent faster wireless standards. Download Kismet http www. Ethical Hacking Training Resources Info. Sec4. Cain Able. Cain Able is another popular tool used for cracking wireless network passwords. This tool was developed to intercept the network traffic and then use the brute forcing to discover the passwords. This is why this tool helps a lot while finding the password of wireless network by analyzing the routing protocols. This tool can also be used to crack other kind of passwords. It is one of the most popular password cracking tools. This tool is not just for WEP cracking but various other features are also there. It is basically used for Windows password cracking. This is the reason this tool is so popular among users. Download Cain Able http www. Wire. Shark. Wire. Shark is a very popular tool in networking. It is the network protocol analyzer tool which lets you check different things in your office or home network. You can live capture packets and analyze packets to find various things related to network by checking the data at the micro level. This tool is available for Windows, Linux, OS X, Solaris, Free. BSD and other platforms. If you are thinking to try this tool, I recommend you to first read about networking and protocols. Wire. Shark requires good knowledge of network protocols to analyze the data obtained with the tool. If you do not have good knowledge of that, you may not find this tool interesting. So, try only if you are sure about your protocol knowledge. Wireshark does is one of the most popular tool in networking and this is why it was included in this list in higher position. Download Wireshark https www. Fern Wi. Fi Wireless Cracker. Fern Wi. Fi Wireless Cracker is another nice tool which helps with network security. It lets you see real time network traffic and identify hosts. Basically this tool was developed to find flaws in computer networks and fixes the detected flaws. It is available for Apple, Windows and Linux platforms. WEPWPAWPS keys easily. It can also run other network based attacks on wireless or Ethernet based networks. For cracking WPAWPA2, it uses WPS based on dictionary based attacks. For WEP cracking, it uses Fragmentation, Chop Chop, Caffe Latte, Hirte, ARP Request Replay or WPS attack. This tool is in active development. SO, you can expect timely update with new features. Pro version of the tool is also available which offers much features. Download Fern Wi. Fi Wireless cracker http www. Co. WPAtty. Co. WPAtty is another nice wireless password cracking tool. It is an automated dictionary attack tool for WPA PSK to crack the passwords. It runs on Linux OS and offers a less interesting command line interface to work with. It runs on a word list containing thousands of password to use in the attack. If the password is in the passwords word list, this tool will surely crack the password. But this tool is slow and speed depends on the word list and passwords strength. Another reason for slow process is that the hash uses SHA1 with a seed of SSID. It means the same password will have a different SSIM. So, you cannot simply use the rainbow table against all access points. So, the tool uses the password dictionary and generates the hash for each word contained in the dictionary by using the SSID. This tool is simple to use with available commands. With the newer version of the tool Co. WPAtty tried to improve the speed by using a pre computed hash file to avoid the computation at the time of cracking. This pre computed file contains around 1. SSIDs. But for successful attack, your SSID must be in that list. If your SSID is not in those 1. Still, you can try this tool to see how it works. Download Co. WPAtty http sourceforge. Airjack. Airjack is a Wi Fi 8. It is used to perform DOS attack and MIM attack. This wireless cracking tool is very useful in injecting forged packets and making a network down by denial of service attack. This tool can also be used for a man in the middle attack in the network. Clonezilla Software Raid 1 on this page. This tool is popular and powerful both. Download Air. Jack http sourceforge. Wep. Attack. Wep. Attack is another working open source Linux tool for breaking 8. WEP keys. Like few other tools in the list, this tool also performs an active dictionary attack. It tests millions of words from its dictionary to find the working key for the network. Only a working WLAN card is required to work with Wep. Attack to perform the attack. Limited usability but works awesome on supported WLAN cards. Download Wep. Attack http wepattack. Net. Stumbler. Net. Stumbler is another wireless password cracking tool available only for Windows platform. It helps in finding open wireless access points. This tool is freely available. Undelete Ms Dos For Windows 7. Basically Net. Stumbler is used for wardriving, verifying network configurations, finding locations with a poor network, detecting unauthorized access points, and more. This tool is not very effective now. Main reason is that last stable release of the tool was back in April 2. So, it does not work with 6. Cisco WLC Interfaces, Ports Their Functionality. Understand How WLCs Work, Connect to the Network Infrastructure Wi Fi SSIDVLAN mappings. Our previous article introduced Ciscos popular Wireless Controller WLC devices and examined their benefits to enterprise networks, different models offered and finally took a look at their friendly GUI interfaces. This article continues by explaining the purpose and functionality of each WLC interface Management interface, Virtual interface, AP Manager interface, Dynamic interfaces etc, WLC Port Service port, Redundant port, Distribution ports etc, how WLCs connect to the network infrastructure, VLAN requirements and mapping to SSIDs. Users can freely download Ciscos WLC product portfolio in our Ciscos Wireless Controller Datasheets download section. The datasheets contain all currently available WLC models, brief specification overviewcomparison and much more. WLC Interface Concepts Understanding Ports and Logical Interfaces. Every WLC is fitted with a number of ports physical interfaces and logical interfaces, all critical for the devices proper operation and integration with the network infrastructure. It is important that engineers working with WLCs, understand the purpose of each interface and how it should be used. This will help maximize the stability and scalability of any WLC deployment by correctly configuring all necessary interfaces and attached devices. WLC Ports Physical InterfacesWe will now take a look at the different ports that can be found on WLCs and explain their purpose. Depending on the WLC model, some ports might or might not be present. The Console Port and Distribution System Ports are found on all WLCs. Figure 1. Available Ports on a Cisco WLC 5. Redundancy Port. This port is used for High Availability HA deploymentdesigns when there are two WLCs available. In this setup, both WLCs are physically connected with each other through the Redundant Port using an Ethernet cable. The redundancy port is used for configuration, operational data synchronization and role negotiation between the primary and secondary controllers. The redundancy port checks for peer reachability by sending UDP keepalive messages every 1. WLC to the active WLC. Finally, the first two octets of the redundancy ports IP address is always 1. Service Port. The service port is used for out of band management of the controller and system recovery and maintenance in the event of a network failure. It is important to note that the service port does not support VLAN trunking or VLAN tagging and is therefore required to connect to an access port on the switch. It is also recommended not to connect the service port to the same VLAN as the wired clients network because by doing so, administrators will not be able to access the management interface analysed later of the controller. SFPEthernet Distribution System Ports. The distribution system ports are the most important ports on the WLC as they connect the internal logical interfaces analysed below and wireless client traffic to the rest of our network. High end WLCs as the WLC 5. SFP based distribution system ports allowing engineers to connect the WLC with the network backbone using different configurations. The SFP Ports are able to accept fiber optic or Ethernet copper interfaces, with the use of the appropriate SFPs. Figure 2. Picture of Fiber Ethernet Copper SFPs. Lower end WLCs such as the WLC2. WLC2. 10. 0 series provide Ethernet interfaces only, because of the limited number of access points supported. For example, the WLC2. Gigabit Ethernet ports and can support up to 7. WLC2. 12. 5 provides up to 8 Fast. Ethernet ports and supports up to 2. Figure 3. Pictures of WLC2. WLC2. 12. 4WLC Interfaces logical InterfacesIn this section, we will examine the logical interfaces that can be found on all WLCs. Understanding the functionality of each logical interface is crucial for the correct setup and deployment of any Cisco WLC based wireless network. The WLCs logical interfaces are used to help manage the Wireless SSIDs broadcasted by the access points, manage the controller, access point and user data, plus more. The diagram below provides and visual layout of the logical interfaces and how they connect to the physical ports of a WLC Figure 4. Cisco Wireless Controller Interfaces Ports click to enlargeThe above layout shows how each Wireless SSID WLAN 1, WLAN 2 etc, maps to a Dynamic interface. In turn, each Dynamic interfacemaps to a specific VLAN. The number of WLANs Dynamic interfacesdepend on the WLC model. The bigger the WLC model, the more SSIDs Wireless NetworksDynamic interfaces it supports. All Dynamic interfaces and AP ManagerManager interfaces connect to the network infrastructure via the Distribution ports which depending on the WLC model are SFP or Ethernet 1. Gigabit interfaces. Because all WLCs have multiple physical Distribution ports, it is possible to assign all Dynamic interfaces and AP ManagerManagerinterfaces to one physical Distribution port, as shown in the above diagram. In this case, the Distribution port is configured as an 8. Trunk port. Alternatively, Dynamic interfaces can also be assigned to separate physical Distribution ports, so that a specific WLANDynamic interface can tunnel its traffic through a single Distribution port. The dedicated Service Port seen in the above diagram can be found only on the WLC 5. Lets take a closer look at each logical interface and explain its purpose Management Interface. The management interface is the default interface used to access and manage the WLC. The management interface is also used by the access points to communicate with the WLC. The management interface IP address is the only ping able IP address and is used by administrators to manage the WLC. Administrators can log into the WLCs configuration GUI by entering the management interface IP address in a web browser and logging into the system. AP Manager Interface. A controller can have one of more AP Manager interfaces which are used for all Layer 3 communications between the controller and lightweight access points after they have joined the controller. The AP Manager IP address is used as the tunnel source for CAPWAPLWAPP packets from the controller to the access points, and as the destination IP address for CAPWAP LWAPP packets from the access points to the controller. While the configuration and usage of the AP Manager interfaces is optional, models such as the WLC2. WLC5. 50. 8, do not have a dedicated AP Manager interface. For these models, under the Management interface settings, there is an option labeled Enable Dynamic AP Management, that allows the Management interface to work as an AP Manager interface at the same time Figure 5. Cisco WL2. 50. 4 Management interface, Dynamic AP Management option click to enlargeAccording to Ciscos documentation, each AP Manager interface can handle up to 4. WLC model 2. 50. AP Manager interface. If more access points are installed, then multiple AP Manager interfaces are required to be configured. Virtual Interface. The virtual interface is used to manage and support wireless clients by providing DHCP relay functionality, guest web authentication, VPN termination and other services. The virtual interface plays the following two primary roles Acts as the DHCP server placeholder for wireless clients that obtain their IP address from a DHCP server.