Brute force WiFi WPA2

Need help? Join my Discord: discord.com/invite/usKSyzb
Menu:
Overview: 0:00
Alfa Card Setup: 2:09
Start Wifite: 2:48
Select WiFi network: 3:31
Capture handshake: 4:05
Convert cap to hccapx file: 5:20
Copy file to hashcat: 6:31
Hashcat: 6:50
View GPUs: 7:08
hashcat options: 7:52
Start hashcat: 8:45
Cracked: 10:31
It's really important that you use strong WiFi passwords. Otherwise it's easy to use hashcat and a GPU to crack your WiFi network. Make sure that you are aware of the vulnerabilities and protect yourself.
Disclaimer: Video is for educational purposes only. All equipment is my own. Make sure you learn how to secure your networks and applications.
Need help? Join my Discord: discord.com/invite/usKSyzb
================
Network Adapters:
================
Alfa AWUS036NHA: amzn.to/3qbQGKN
Alfa AWUSO36NH: amzn.to/3moeQiI
================
Previous videos:
================
Kali Installation: ua-cam.com/video/VAMP8DqSDjg/v-deo.html
One command wifite: ua-cam.com/video/TDVM-BUChpY/v-deo.html
================
Connect with me:
================
Discord: discord.davidbombal.com
Twitter: twitter.com/davidbombal
Instagram: instagram.com/davidbombal
LinkedIn: www.linkedin.com/in/davidbombal
Facebook: facebook.com/davidbombal.co
TikTok: tiktok.com/@davidbombal
UA-cam: ua-cam.com/users/davidbombal
================
Support me:
================
Join thisisIT: bit.ly/thisisitccna
Or, buy my CCNA course and support me:
DavidBombal.com: CCNA ($10): bit.ly/yt999ccna
Udemy CCNA Course: bit.ly/ccnafor10dollars
GNS3 CCNA Course: CCNA ($10): bit.ly/gns3ccna10
======================
Special Offers:
======================
Cisco Press: Up to 50% discount
Save every day on Cisco Press learning products! Use discount code BOMBAL during checkout to save 35% on print books (plus free shipping in the U.S.), 45% on eBooks, and 50% on video courses and simulator software. Offer expires December 31, 2020. Shop now.
Link: bit.ly/ciscopress50
ITPro.TV:
itpro.tv/davidbombal
30% discount off all plans Code: DAVIDBOMBAL
Boson software: 15% discount
Link: bit.ly/boson15
Code: DBAF15P
Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!

Hi @DavidBombal I just passed the CCNA 200-301 on 12-Dec-2020, with 947 points. Thank you so much your channel helped a lot to clarify some doubts. I am looking to continue learning and help other people. Thanks 👌🏾✨

Uh.. I feel want to sleep... It's 2:54 am now ... Bye David.. gud night

add one symbol and litre and it gone to 13 years 🤭

Try that on a password after you throw some letters into the mix LOL, but it is a good video at the end of the day, liked and subscribed.

Anyone looking to do this now would need to convert the .cap file to hc22000 instead of .hccapx if you receive the 'separator unmatched' error in hashcat; You can convert with:
hcxpcapngtool -o outputname.hc22000 handshake*.cap

This was a great explanation of how to use hashcat. I just tried cracking the NTLMv2 hash from my sandbox and it took 45 minutes on an RTX 2080 MaxQ. Masking really helped speed it up, I didn't want it to take forever. Although Howsecureismypassword says it would take 8 hours. If it was a real machine I would probably change that :)

When I saw the title WPA2 I was shocked and very eager to learn but it was just some easy numbers which we all know is possible

This is a very interesting video and demonstration.
Thanks.

I'd like to see you crack different router vendors because these x-digits only passwords are kinda rare and vendors are not stupid. You are more likely to run into routers that uses a letter and number combination with upper/lower case chars, some even go as far as using a password that looks like a MAC address.

Finally the one that I'm looking for! Amazing video!! Id love to see an evil twin attack!

Great stuff, David! Thank for for the excellent explanation!

Great content as per usual keep it up David, this vidoes are very well made!

Keep grinding we need more of these amazing videos

Great video sir! If you could make a video on cracking a password on Kali with Hashcat I think it would benefit a lot of people. Love the grind!

I'd love to see you deploy attacks like these on a raspberry pi setup. Great content as always.

I tried hacking my own WiFi but realised I can't watch the video at the same time😂😂😂😂

ATTENTION! No OpenCL or CUDA installation found.

Superb content as always David!

👉🏻| First of all, this guy isn’t a teacher, he is a genius!
.
Congrats for video, knowledge is power, thanks for sharing an information of quality.
🤙🏻😉👏🏻😎

Hello David, Lots of love from India. I'm following you since a long time now and I'm a big fan of yours and I watch all your videos regularly 🙂 I'm closing following your Ethical hacking tutorials and getting to learn a lot about it.
I have a small request to make a video tutorial on "reaver" wireless testing tool. Thanks ☺️

In this video i think you forget or leave the blur part which i seen your previous videos
You are a awesome teacher , You explain topic very smoothly.

*"This is how to make a BOMB"*
Disclaimer:This is for educational purposes only...

progression hits 69% *cracked* N I C E

Why I got this error I also tried in .cap the same errors:
Minimum password length supported by kernel: 8
Maximum password length supported by kernel: 63
Hashfile 'josephwpa2.hccapx' on line 1 (HCPX): Separator unmatched
Hashfile 'josephwpa2.hccapx' on line 2 (): Separator unmatched
Hashfile 'josephwpa2.hccapx' on line 3 (): Separator unmatched
No hashes loaded.
Started: Tue Aug 22 17:40:33 2023
Stopped: Tue Aug 22 17:40:45 2023

Finally a video wich i can send to my family so they will stop asking why a random device connected to them thanks David

Hello David! Thanks for your video! Did you try the same with hashcat after v6 when they've replaced 2500 with 22000? I am struggling on that. All the best and thank you for everything you are doing for the InfoSec community!

Excellent presentation! Please go into detail in future videos.

Hi David, could you show how to use hashcat with multiple GPUs. For example, if there is an unused mining rig, how to organize remote access and launch hashcat using the power of all its video cards. Thank you for the informative video!

I love your material, still aspiring to be at least half the skill you are. Thank you

Menu:
Overview: 0:00
Alfa Card Setup: 2:09
Start Wifite: 2:48
Select WiFi network: 3:31
Capture handshake: 4:05
Convert cap to hccapx file: 5:20
Copy file to hashcat: 6:31
Hashcat: 6:50
View GPUs: 7:08
hashcat options: 7:52
Start hashcat: 8:45
Cracked: 10:31

They recently changed -m 2500 to -m 22000 and when I try to run it I’m getting separator unmatched errors with no results. Does anyone know how I can fix this?

Thank You So Much for a very easy to understand instructions
Mad Respect 🙏🏼

Great teacher...❤️

Might be helpful to post the captured handshake file so individuals that do not have a capable wireless device can still work through the exercise. Good stuff David.

Teacher, its so interesting on doing this as your guide thank u

I needed this i like the idea to crack it in windows..thnks!!!

David thanks for all your hard work i mean it mate. The quality is on another level.
1) If possible on your next video about hashcat could you explain witch modern GPU`s works better . Is amd still a no ?
2) My problem when i was trying to hash my password ( honestly it was mine) is that i use most of the possible letters and symbols combos(paranoid much...too much hacking videos) and i couldn`t for the life of me figure out what was the right symbols to put behind the ''?''. I want the ''All'' symbol !
Plus a question : in mask attack is there a way to exclude passwords that has sequentially numbers letters and symbols ? Like 111111555 or ffffff8888 ?
I believe that this would significantly cut down the time. ( currently after next big bang).
Doing research found that crunch can generate a wordlist provided you configured right but the amount of terabytes its too damn high and not a valid option for me.
Going down the rabbit hole i found that there is a way to "pipe" this process directly to hashcat. I haven't tried this yet cause of luck of know how and i probably wont cause also i don't have a spare pc if it goes bam!.
Sorry for the rant.

Dude you the bomb so glad I found your channe

why didn't you mention the problem "No hashes loaded"?
Would do well to

If I were to assume you are home, the information you provided in your wireless scan seems enough to get a very good idea of where that is. Of course some war driving would be involved.

May I ask why you switch to windows to use hashcat?

Nice video sir...some people make 10 minute videos and I get bored to watch them but even if you make a 20 minute video...I don't feel bored at all......

Hey David, I'm following these instructions, but I keep getting an error saying that "The plugin 2500 is deprecated and was replaced with plugin 22000." When I switch my -m to 22000 instead of 2500, I get a bunch of separator errors. Do you or anyone else know how to fix this?

Well oh well. 8 years, 182 days for me.
I'd rather mine bitcoins ))
Jokes aside, great video! As always. David's videos are the only videos on UA-cam I'm watching only if I have my notepad ready to take notes

I imagine the default wifi password was never meant to be long term secure, but simply a step up (and maybe legal requirement in some jurisdictions) to not use the same hardcoded password across all devices. Yes, they could have done a better job. Even if all they did was an sha256 of the 8-digit number and use the first 8 characters of that hash, it would increase the search space by ~429x (bump to to 10 and it's ~109951x harder).
Of course, if someone knew it is just the hash of an 8-digit number, they could just compute all potential passwords up front, making it a custom wordlist attack.

Probably this is what my mother experiencing when I explaining her how to update a driver on her laptop... :D Poor her! I will do it better after this thank you! :D even if it was not the purpose of your video!

Thank you. Amazing Video. It emphasises why we should have a strong password. Especially in Wireless.
Is it really this simple to capture wireless handshakes?

Why is my output after hashcat.exe -m 22000 wpa2.hccapx -a 3 ?d?d?d?d?d?d?d?d?d returning: 'No hashes loaded'?

Good Lesson Sir 🔥🔥🔥

Fantastic now I don't need to pay for internet any more. Great Video

Thx god to let me find ur amazing perfect youtube channel. thx my Teacher . Am an IT student this is last year for me and am gonna graduate and this year we study only cyber security so u helped me a lot as ethical hacker .

Thanks for sharing and teaching. This video was nice and clear. Voice was great.

Hello David I have been looking around but I don't seem to find an answer, following this tutorial on the current version of hashcat will say that -m 2500 is depracated and should use 22000 instead, But when I do 22000 with the file wap2.hccpax that we created in this tutorial it comes with separator errors. Would you have an idea of how to get around this? Thanks in advance :)

If you think this is bad, the Netcomm modem/routers that we shipped from our ISP was a1b2c3d4e5. I've used it a number of times throughout my city. I've got a Google Map list of all the places I know I can rely on for WiFi if I'm in a pinch. I've never even considered using software like this!

what if I don't know the password lenght?

me with my 14 character long password with 3 symbols :
PATHETIC
xD, very informational video, thank you

Thumb up for the knowledge, I changed my password immediately after the video 😂

Thanks a lot , Yes pls we need more videos using hashcat.

Thank you for these videos. I’m in cybersecurity and one of my classes is ethical hacking and I’ve learned more watching your videos than I have in my classes. I finally bought a pc and installed kali on it and been using it to check my network.

Besides Cracking tools and dictionary attacks , I suggest you try some phishing attacks with some powerful tools like airgeddon , fluxion , wifi-phisher . They are amazing tools with everything included . With these you will no longer have to wait if you phish your target successfully
Thanks

It took me only 2 min xD (same GPU)
Thanks!

LOVE your videos Great teacher securing my / SOHO / AS YOU SPEAK

Yes please do more on hashcat!!

It works fo default Password only.. it was amazing while cracking thanks for this video.,

This doesn't work for me anymore since hccapx file is no longer supported in hashcat, also the option 2500 is no longer supported, so the cap file first needs to be converted to hc22000 file and uses function 22000. I haven't managed to crack my wifi password with this function though so I'm not entirely sure about it.

love you and your content so much :D

It took a second with no extra step man thanks a lot a hacking fun God bless ya man

Those WiFi adapters are $70 now! You made the price go up lol

Unless I am missing something, David doesn’t explain why it’s essential to use a GPU versus a ‘garden variety’ CPU?

Impressive!
I am surrounded by WPS networks 🤩
Therefore only 4 digits are necessary.

The world's best teacher thanks

Most of the time people use their mobile phone numbers as their Wifi Password ! Now you know how to begin :)

wow...information knowledge for who is bigginer in this field

David did not bumble.... Great content!
I'm wondering if hashcat generates detailed logs, I'm researching a new protocol that requires seeing how the handshake deals with incorrect keys.

Thank you so much for this educational video 😊

Thank you so much mister David. Very cool tutorial.

David just want to say loved your videos and they are pretty simple and easy to understand as well
i wanted to make a request if you could make a video on evil twin attack as well that would be great

How to crack an 8-11 digit password if I don't know how many digits it has

sir i love you i don't have linux but i am gonna download it and soon gonna practicing all these kinda stuff cause its meant for me to learn it in 2021 and i hope you keep uploading all these kinda i am really excited and i always wanted to have something like that and that is hacking skill

Thanks for the amazing video.
A quick question after finishing your CCNA class on Udemey shall we need to buy and practice the dumps for the exam ?

If you are having the problem that you cannot use the method 2500 because it got deprecated, like me, just try downloading the version 6.1.1 from the website and allow it to work from your antivirus

just a quick note, /usr is pronounced as U-S-R, it stands for unix system resources. just saying this because many beginners will think that the /usr directory has something to do with the user.

Another great video. It was fun to watch.

You are doing a great job.... Pleaase continue it don't stop it....

Thx David great lesson

Wonderfull video,really amazing,like it!!!

Legend has it if you do this with an RTX3090 it will finish in the past

Hi amazing videos you make... Question can we set the time of discovering clients at WPA hacking?

Would be nice to see Hashcat bruteforcing Windows 10 SAM file to decrypt Windows password

love the vidios , just got my wifi adaptor

Finally wat I've been waiting for.... Thank you @DavidBombal
Does the same work for a random password i.e letters???

As usual one word love

@David Bombal Thanks for this video.

Please help
Why when I run the hashcat through the command I used in the video, this error appears to me no hashes loaded

We trust you received the usual lecture form the local system Administrator. It usually boils down to those things = errors show

Hi guys i found solution for this error: The plugin 2500 is deprecated and was replaced with plugin 22000
Try this: just add this in the end:
--deprecated-check-disable

I followed this closely, but it gives a separator unmatched error in the file itself. Also, -m 2500 refuses to work since it is deprecated and replaced by 22000 now

your videos are Amazing always giving a great info to Viewers

In my perspective, this 8-digit key has been designed to offer a moderately secure means of authentication with the wifi router, thereby introducing an additional layer of security as you configure your own key.