量子哈希
Fluxion is a wireless cracking tool that is somewhat similar to Linset. However, compared to Linset, it offers more interesting features. Currently, this tool works perfectly on Kali Linux.
Working Principle:
- Scan for available WIFI signals.
- Capture handshake packets (this step is to verify if the WIFI password is correct).
- Use a web interface.
- Start a fake AP instance to simulate the original access point.
- Generate an MDK3 process. If regular users connect to this WIFI, they will also enter the WIFI password.
- Then, start a simulated DNS server and capture all DNS requests, redirecting them to a malicious script hosted on a specific address.
- A window will pop up, prompting the user to enter the correct WIFI password.
- The entered password will be compared with the captured handshake packet from step 2 to verify its correctness.
- This program runs automatically and can quickly capture WIFI passwords.
Usage Steps:
Now that we have covered the theory, let’s move on to the usage steps. This tool has been published on Github, and you can download it from there.
- Clone the repository using the following command: git clone.
- Use the command ./fluxion to start Fluxion.
Fluxion Startup Page:
After starting Fluxion, it will prompt us to select the network card and channel. You need to determine the network card yourself, but the channel option is usually the first one (all channels).
Network Card Selection:
Channel Selection:
Once selected, Fluxion will scan the WIFI networks around the network card. When you find the WIFI network you want to crack, press Ctrl+C to stop the scanning process.
WIFI Scanning:
In this step, we select the network we want to crack. If we want to crack the second network in the list, we enter 2.
Select the network to crack:
Then, select the first option to create a fake AP.
Attack Method Selection:
Here, you will encounter an option to choose the path to save the handshake packet. You can simply press the spacebar to skip this step, and the handshake packet will be saved by default in the /root/Desktop/ directory. Then, select 1 to start capturing the handshake packet using aircrack-ng.
Handshake Packet Saving Path Option:
Handshake Packet Capture Option:
Next, select 1 again to perform a unified distribution for the target WIFI users.
Packet Distribution:
After the previous step is completed, two new terminal windows will automatically open. One window is mainly for capturing WPA data packets, while the other window is for distributing the packets. In the original window, select 1 to continue capturing packets.
Newly Opened Terminal Windows:
After capturing the packets, it will ask you to select a web interface. Here, we choose 1.
Web Interface Selection:
Then, it will ask us to select the language. I noticed that there is no Chinese version, so you can modify the source code yourself.
Language Selection:
After selecting the language, it will open four new control windows and perform operations such as creating a fake AP and user distribution.
Newly Opened Four Windows:
At this point, whenever a user opens a browser, they will be redirected to a page to enter the WIFI password.
Fake WIFI Password Input Window:
As long as the user enters the correct WIFI password, the entire program will stop running, and the correct WIFI password will be automatically displayed.
Correct WIFI Password:
In conclusion, I suddenly remembered that four years ago, I used BT Linux to crack WIFI PIN codes, and it often took me a whole night. Social engineering is still a more reliable method for cracking WIFI.
