Big thanks to Juniper for sponsoring this video! Try Juniper Mist AI for free: juni.pr/3Wiz7to Once you fill out the form, you’ll get access to a hands-on test environment so you can see what Juniper Mist can do. // Wifi Hacking PDF // PDF with instructions: davidbombal.wiki/airmon-ng /// Alfa ADAPTORS // Alfa Long-Range USB Adapter: amzn.to/3yFs99E Alfa WUS036AXML: amzn.to/4c3rlJV // KZbin video REFERENCE // Break wifi passwords using cloud GPUs: kzbin.info/www/bejne/pHmnmquaYqqXe7M // David's SOCIAL // Discord: discord.com/invite/usKSyzb X: twitter.com/davidbombal Instagram: instagram.com/davidbombal LinkedIn: www.linkedin.com/in/davidbombal Facebook: facebook.com/davidbombal.co TikTok: tiktok.com/@davidbombal KZbin: www.youtube.com/@davidbombal // MY STUFF // www.amazon.com/shop/davidbombal // MENU // 00:00 - WPA2 vs WPA3 Wi-Fi 02:12 - Network Adapters 03:07 - Do You Need an External Adapter? 04:53 - Kali Demonstration 06:12 - Enabling Monitor Mode 09:05 - Launching an Attack 11:10 - In Wireshark 12:23 - Cracking The Password 13:56 - Juniper Mist Interface 14:30 - Wifite 19:22 - Conclusion 19:30 - Outro wifi kali linux kali linux 2024 wifite wpa wep wps alfa comptia wifi airmon-ng aircrack-ng hack hacker hacking ethical hacking kali Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel! Disclaimer: This video is for educational purposes only. #wifi #wpa2 #password

Great info David. I tried these attacks with my network and found out it's best to use indigenous languages for passwords since wordlist don't contain them and most brute force attacks cannot crack them

Worst still, if you try to go all complicated with the WPA2 password but fail to give it sufficient length, you are still at risk from a brute force attack. It's been a while since I was experimenting myself, but a rig with 2x GTX 1080 was able to achieve something like 800 000 attempts every second using hashcat to crack the password. The parallelization worked so good that adding more gfx cards would give it a linear increase in performance. Can't even imagine what numbers the 4xxx series cards are able to achieve nowadays. But yea, use special characters and give it some length.

My fav topic of all time

David Bombal: "If there's Break Dancing at the Olympics, why can't there be Hack-The-Box at the Olympics?"

Wifi is a fun hacking topic. I like bettercap and kismet but it is really important for people starting to learn airmon-ng first as it teaches the basics. I also like airgraph-ng will show wifi relationships

If you have an access point that allows multiple SSIDs, especially for security type of devices that only support wpa2, it might make sense to, if possible within the router/access point to add more than one SSID for your WPA2 only devices, and then split your devices across those SSIDs. That way, if someone attempts to deauth your devices, hopefully they're only trying one SSID and the remaining devices stays online.

I first read about the WPA2 vulnerability when I was studying for Security+. I always wanted to find out about this in detail, and you've explained it perfectly. Thanks for the information.

step 1) 05:26 start wifi cheak kill manged mode----monitor mode 12:05 end cheak kill back to managed mode step 2) handshaking using airmon-ng (-w name of the file ,-ch channel,BSSID-MAC address) step3) 9:05 attacking using (world list, brut force and dictionary etc).

Uncle David went from teaching me how to be a good and honest Network Technician to a computer hacking edgelord 🙃

Thank you David, Just found your YT Channel, the process is over my head but enjoyed understanding the flow. I am a subscriber now

Another great video from the OG

Well done. I'm working on securing my friend's starlink that has a script kiddie neighbor constantly cracking the WiFi. Nicely summarized.

Thank you David! As always top notch 🩶

welcome Back with hands-on practice,

Great video!🎉

Cracking common password using wordlist is now outdated method.. Make a video on cracking complex difficult password using another methods

Not really for this topic, but if you consider WiFi links between buildings you should consider to use 60GHz since that frequency has a high propagation dampening and a relatively narrow lobe so anyone wanting to penetrate that link need to be inside the lobe and within a limited distance to be able to perform an attack. The propagation dampening is also an advantage since it will lower the amount of interference from other devices while a link in the 5GHz band can see enough interference to constantly run DFS (Dynamic Frequency Selection) and fail to establish a link.

Thanks david this is what i was waiting for

Heck yeah, well done.

It's amazing to see that even today, there are new routers and devices that only support WPA2; worse, there's folks that buy routers that only support WPA2. On things like routers, if it does not support WPA3, it drops off the consideration almost immediately.. One specific area that is weird like this - is some travel routers that don't support WPA3..

Thanks for a great video David! Your videos are an inspiration to us :) Looking forwarded to seeing more great content 🚀

Why does deauth not work for me? It says waiting for beacon frame (BSSID: ) on channel 100 Wlan0 us on channel 100 but the ap uses channel 44. How do i switch the channel to be the same?

Yeah the more I learned, the more I started to make it harder to be hacked, the problem has always been other companies not keeping our data safe.

Brilliant. I love your content.

thank you this is the best channel on YT i have learned alot since 2019

Can’t see anything when I filter EAPOL in wire shark. Captured my WPA handshake but no EAPOL

I would love to go high bands and WPA3 only, but sadly so many client devices are kept at obsolete standards, all my IoT smart devices are 2.4 ghz only for starters, which is really annoying as thats the only reason I listen on 2.4ghz, and my xbox series S does not properly support WPA3, and I even have to disable 802.11w on WPA2 as it doesnt support it. So I have to use mixed mode and use WPA2 with some security features off for the Xbox. I feel there needs to be some kind of regulatory practice to ensure client devices meet modern security standards. Seems to really only that mobile phones are keeping up. Final note all the client devices I use, do have a type of firmware update feature, so it is within the vendor's power to keep them up to date. I do what I can though, my wifi is locked into a walled garden, cannot access my main LAN and has limited internet access.

Just bought the alpha adapter ,now I'm going to try this on my wifi

Interesting information! Thank you, David! I wonder if it is possible to configure the router to detect and isolate threats from the network?...🤔

One little project i made was a d1 mini that detects deauthentication attacks by spacehuhn it lights up when more than 5 connections happen in short time, also useful because it detects if a device is having problems connecting to the wifi

Will the ALFA AWUS036AXML (MT7921AUN) function properly on Kali Linux 2024.2 with linux-headers-6.8.11-amd64?

Really amazing, i mostly had issues when trying to capture handshake when the user is already connected, but now i know how to deauthenticate 😁😁😁😁

I build my own wifi pineapple but this part is the awkward thing. I don't have a good GPU. Thank you David

I got a little confused at the WPA3 section, when you said wireshark failed to crack the password. From what I understood, wireshark doesn't crack the password, it just obtains the encrypted key, and then you use other software to crack the password? My question is, did wireshark get the encrypted key for the WPA3 network, in the WPA Key data, but it is using an encryption algorithm that is too hard to crack (yet), or there is more to it? I would imagine it isn't too hard to get the data, but it is being able to crack the data that is the problem, or the time/resource consuming part of it.

I'm curious if the attack would work on network set to mixed WPA2/WPA3 encryption mode.

You crack it so easily, but wondering if there was a much harder pasword, let say 20+ digits with lower and upper letters, sigs and numbers, will you still be able to crack it?

9:44 one mistake I made but learnt how to fix was that I wasn't specifying the channel in the airodump-ng window, only the bssid, meaning my network adapter was switching between channels and therefore I couldn't specify the right channel for the aireplay-ng attack in the other window I was so confused until I found out why

What's the advantage of using a VM versus a live USB?

Wow Airmon-ng is still being used over 10 years on.. what is the range of 5GHz networks these days? I preferred to use them because of the limited range so limited exposure 2 decades ago.

Its crazy how many people does not care about any security. I recently bought several used electronics. There is still data from the previous user, Like the Name of the WiFi Network and passwords. I found also very private information. A pervert or a child Predator could easily Take Advantage, criminals with finacial interest too.

STP Question : Hi David, Is the path cost added at the receiving interface or the forwarding interface?

4:30 I need the wallpaper plz 🙏🙏

I want to start ethical hacking, but I’m unsure which operating system to use. I know I want to use Kali Linux, but I often hear that Ubuntu is recommended because it's more stable and easier to use. Some suggest running Kali Linux on top of Ubuntu, either in a virtual machine, dual booting, using Katoolin, or even using a USB live boot with Kali Linux. My main interest is Wi-Fi hacking, and I’ve heard that not all functionalities are available when using Kali Linux in a virtual machine. Could you please advise me on the best way to start and which operating system or combination I should use? I don’t want to be limited when it comes to functionality especially with the wifi-hacking

Bruteforcing needs a huge pwd library. The only thing is to create a dynamic library with python using a fifo method to get a limited used space on disk. As a pwd is used, it's deleted and a new one is created. I have not be succeful to create such a library. So if there is someone really good with python, please share your idea.

Hi Mr Bombai, what can you tell me about the AWUS036ACS? According to its description on Amazon, it supports dual-band frequencies of 2.4 GHz and 5 GHz

4:18 the water came out of my nose at that moment

I know a lot of friends and family that just leave the password as whatever default password the router came with. This is usually a random string of letters and numbers. Is this potentially at risk from bruteforce methods?

Hello David, I have bought a 5Ghz TP-Link Acher T2U plus and when I do the sudo ariodump-ng wlan0 I do not see any SSID. I have update/upgrade Kali en drivers. All checks are good and it is in monitor mode. Can you put to any direction where to look for a sollution?

great vid ! ...for a home-user, does using WPA3 always require a Radius server ? if so how does a home user implement it ?

Hey David nice video in a nice timing for me as I was studying about this I have tried a lot of these tools like aircrack-ng bettercap wifite airgeddon etc. I was wondering, what about the PMKID attack?

Thanks for this video! Great content

Hi David, does the Alfa WUS036AXML support monitor mode? On the Amazon reviews someone said it didn't.

Best thing I got from the video............VMware Workstation Pro for free !!!!! haha, only Joking Dave, but really glad you mentioned it.

I love the way he says the word "here" Sound like he's sayin Hee-Yah😂

when you send a deauth packets one of you device needs to be connected to that wifi to crack wifi handshake or its possible without it?

Would stopping my modem sending its ssid really help against the 4way handshake?

I need a wifi router with a on off switch for the wifi. I have an older router that has this, RT-AC68U, are there newer ones that also has this?

After this top video, maybe a video about radius service?

By setting up a secure and insecure network, how would I isolate them since I’d have to split the Ethernet coming from my modem to two different routers? Or would I need two different lines from my ISP to my house?

Airmon-ng wlan0mon start doesnt work for me. It wants a channel or frequency apparently

How do I know that a certain wifi adapter support monitor mode and packet injection

Dear David, I d like to get some help. when I Ip addr... the answer is cannot bind netlink socket. I m running kali on my android (dev version) I m blocked and feel so stupid... please help me ! Thank you in advance.

I always get wlan0 and wlan0mon after changing to monitor mode and cannot find any Wi-Fi around me. my kali is native kali on raspberry pi 5, what could be the possible reason?

My dear teacher, when I did the work, the password was not in the password file when I attacked a network with WPA2 protection type, knowing that the handshake came out

Legend😊 Is there a lot changing in the CCNA in August 😊

Information about the fern wifi checker, current dictionary files to check it. Please

Will these adapters work on a kali Linux vm on a Mac laptop ? Or must be a windows laptop ?

So what happens if the client enters a wrong password? Would it still be captured , or will it continue running until a correct password is entered using any of the tools

Thanks Dave but i still have some questions . What about if the password is not a " common " word like " E5R9F4K1 " how to find password such like this? and doest it work when it's only numbers ? i tried so many times, i captured so many handshake, i never been able to crack it. I'm always wondering if it's not just an " illusion". and then i feel like cracking is not really possible.

Excelente video y gracias por compartir a la comunidad, ahora una pregunta, kali ya tiene herramientas para atacar obviamente de modo educativo a redes WPA3 en frecuencias de 5ghz y 6ghz? Desde ya muchas gracias y esperamos el tutorial de las mismas. 😂

when i click on the thumbnail it mistakenly click on the paid sponsor I had to search for your video to watch it

fern wifi cracker does the same thing like this one right?

Probabilities are high there is an error on slide 11. BSSID is access point and station is client. This is however obvious from the lecture as well as from the other slides and other sources too. So please review the lecture proper too in parallel with this "field manual". Anyways, this is good reading while I set up my own lab in order to get higher rise over run on my learning curve. Boosting that rise over run, for me it's more productive to study the airodump-ng generated csv-file with spreadsheet software. And last, but not least the man-pages of the airodump-ng are really worth reviewing. Now, continuing on page 12 onwards. BR JKi

Is there a way to make Kali Linux portable on a flash drive and use it on any computer? Please help

13:25 “and look that took seconds” my cf-30 taking 30 minutes to crack “gggggggg” crying in the corner…😭

I follow u from Angola...💕 Nd i enjoy your channel!!

Enterprise would be an interesting next video

Hey, how do you decrypt a password if the brute force attack doesn't have the password. I tried several wordlist but couldn't get the password. Educational purpose only 😅..

Though it’s already outdated, I just installed the Intel AX210ngw WiFi 6e M.2 WiFi card with an Alpha WiFi 6E antenna ( leave it in the housing or take the PCB antenna out and mount inside your laptop, both ways work really well). The ax210 supports monitor and injection and you can get it for about $15. I’m gonna order a new intel card for WiFi 7 today, hopefully, and see if it supports monitor and injection. Thanks for the video. Another great learning resource

Kali in hyper v having some wife adapter issue ?

when i scan i airodump-ng wlan0mon cannot find any Wi-Fi network David can you help please

hello david, when im doing airodump-ng it doest detect anything, can you help me?

If Aircrack-ng fails to find the key, what steps can I take to improve the chances of success? Any help would be appreciated.

Living in a country where it's rare people actually change any WiFi passwords from standard router passwords so unless there's wordlists that have standard WiFi router passwords this rock you dictionary is useless, unless people change a standard password to a word in rockyou (much weaker than standard router password)

This man is WONDERFUL ❤

love some david bombel wife security hacking always intresting.

Awesome video! It's always interesting to see how professional works.

Bro I ran iwconfig on my Rooted A51F and by wlan0 it says : IEEE Mode:Managed Frequency:2.412 Ghz Bit Rate :43.3 mb/s ........ What da heck does that mean

Very well done this video

My laptop doesn't have a dedicated GPU. Is there somewhere online that can help crack a .cap 4 way handshake file?

I got Kali nativ on my Pc, how I use the GPU for the password?

Hey David is it possible to change username, hostname and add password to ur live kali linux... tried plenty of tutorial but none of them worked for me

I have laptop with Qualcomm Atheros QCA61x4A wifi adaptor can i crack password using this adaptor

Bro when I turn on moniter mode my wifi gets disconnected and I can't see any apn's.How can I use both at the same time. anyone please help😢

I just see a good video from your channel with details instruction, thanks for that and i going to buy the Alfa Adaptor So i have confusion about this AWUS036ACM, AWUS036ACHM, AWUS036ACH, AWUS036NHA (End Of Life) which one is working in kali 2024 with Monitor and Injection with WPA,WPA2,WPA3 please reply my understanding AWUS036ACM this one so please suggest as per your experience

mr david you got any solution of kali linux usb laging ?

Is this compatible with monitor mode: AWPCIE-1900U do u know?

Hello, can you make a video about TX power upgrade?

It's brute force method ?