provocativo_
back to the arsenal
// arsenal·WirelessIntermediateFOSS

Aircrack-ng

The classic Wi-Fi security testing suite — `airmon-ng`, `airodump-ng`, `aireplay-ng`, `aircrack-ng`.

Wireless

$ aircrack-ng --help

Aircrack-ng

// what it is

Description

The reference toolkit for 802.11 security testing. Captures handshakes, deauths clients, cracks WEP/WPA-PSK from a captured handshake. Maintained continuously since 2006.

// use cases

What people use it for

  • Capture WPA2 4-way handshakes
  • Deauth + reauth flows to force handshake capture
  • Offline WPA2 PSK cracking

// commands

The commands you'll type

Enable monitor mode

$ sudo airmon-ng start wlan0

Capture nearby APs

$ sudo airodump-ng wlan0mon

Crack WPA2 capture

$ aircrack-ng -w rockyou.txt -b <BSSID> handshake.cap

// facts

category
Wireless
platforms
LIN · WIN · MAC
license
FOSS
difficulty
Intermediate

// links

// related in Wireless

WirelessBeginner

Airgeddon

Wi-Fi audit menu-driven multi-tool — wraps aircrack, hostapd, etc.

FOSS
LIN
open entry →
WirelessBeginner

Wifite

Automated Wi-Fi auditing — just point it at an interface and it does the rest.

FOSS
LIN
open entry →
WirelessIntermediate

Kismet

Wireless network detector, sniffer, and IDS — speaks 802.11, BLE, RTL-SDR.

FOSS
LIN·MAC
open entry →