1
00:00:00,740 --> 00:00:08,870
OK now that we've captured the handshake all we need to do to crack the WPA key is to create a wordlist

2
00:00:09,290 --> 00:00:16,820
a word this is just a list of words and that aircraft engine is going to go through and try each one

3
00:00:16,820 --> 00:00:17,610
of these words.

4
00:00:17,640 --> 00:00:22,320
I guess the handshake until it successfully determines the WPA key.

5
00:00:22,700 --> 00:00:31,160
So the battery or your wordlist is the more your chances are of cracking the key if the password wasn't

6
00:00:31,160 --> 00:00:32,780
there in your worthless pile.

7
00:00:32,870 --> 00:00:37,030
You will not be able to determine the WPA key.

8
00:00:37,030 --> 00:00:41,980
No one talks to list over the word list that you can just download and use.

9
00:00:42,200 --> 00:00:47,480
Or you can create your own words is use in this video tutorial.

10
00:00:47,520 --> 00:00:50,030
We're going to use a tool called Crunch.

11
00:00:50,090 --> 00:00:57,180
It's basically just a script that you specify the characters that you want in the passwords and it'll

12
00:00:57,200 --> 00:01:01,590
create all possible combinations of these passwords.

13
00:01:01,670 --> 00:01:09,860
So the format of the command of user and crunch is crunch minimum maximum the minimum is the minimum

14
00:01:09,860 --> 00:01:13,460
number of characters of the password that you want to create.

15
00:01:13,460 --> 00:01:20,330
So you can say I want a minimum of four five six whatever you want maximum is the maximum number of

16
00:01:20,360 --> 00:01:23,680
characters in the passwords characters.

17
00:01:23,690 --> 00:01:29,300
You're going to specify the characters that are going to be used to create the passwords so you can

18
00:01:29,300 --> 00:01:35,980
specify a b c d g all the lower letters and then you can write the capital letters and you can put numbers

19
00:01:35,990 --> 00:01:37,540
you can put symbols.

20
00:01:37,700 --> 00:01:44,840
So here you'll specify the part the characters that you want and then he is very useful if you know

21
00:01:44,840 --> 00:01:46,150
part of the password.

22
00:01:46,160 --> 00:01:47,390
It's a pattern.

23
00:01:47,390 --> 00:01:52,670
So for example if you're trying to guess a password and you've seen someone type this past or so you

24
00:01:52,670 --> 00:01:56,700
know for example it starts with an A and ends with a B.

25
00:01:56,780 --> 00:02:03,800
So you can use the pattern option and tell the crunch to create passwords that always start with a and

26
00:02:03,800 --> 00:02:09,680
with B and it'll put all possible combinations of the characters that you put in here.

27
00:02:09,680 --> 00:02:15,380
So for example in here in this example we have crunch that we're going to create passwords of minimum

28
00:02:15,380 --> 00:02:22,370
of six characters and maximum of eight characters and the passwords are going to be combinations of

29
00:02:22,750 --> 00:02:23,660
the characters.

30
00:02:23,710 --> 00:02:26,140
One two three four five six.

31
00:02:26,330 --> 00:02:34,480
And these symbols is going to be stored in a file called wordlist and the pattern is this this password

32
00:02:34,480 --> 00:02:36,290
or that are going to be created.

33
00:02:36,290 --> 00:02:40,330
They're always going to start with an array and they're always going to end with B.

34
00:02:40,430 --> 00:02:45,800
So all the passwords though you're going to see in the file are going to always start with a and with

35
00:02:45,800 --> 00:02:52,700
B and they'll have all the possible combinations of the characters you specified here between the A

36
00:02:52,970 --> 00:02:54,880
and B B.

37
00:02:54,890 --> 00:02:58,740
So let's just run it here and create a sample wordlist.

38
00:02:58,900 --> 00:03:03,630
I'm going to crunch and then we're going to make.

39
00:03:03,660 --> 00:03:11,020
I mean your mom 0 6 and Maxim or six or let's say more for maximal six.

40
00:03:11,370 --> 00:03:15,170
And just so that doesn't take a lot of time going to make it short.

41
00:03:15,330 --> 00:03:18,070
I'm going to say I'm going to put the characters.

42
00:03:18,240 --> 00:03:22,990
So I'm going to just put one two three a week.

43
00:03:23,170 --> 00:03:27,420
I'm going to throw this and sample or just

44
00:03:30,060 --> 00:03:36,320
so crunchie is going to create a combination of passwords minimum of four characters maximum of six

45
00:03:36,320 --> 00:03:42,660
characters and it's going to create all possible combinations of 1 to 3 A B and it's going to start

46
00:03:42,660 --> 00:03:45,950
all that in a file called sample wordlist.

47
00:03:45,950 --> 00:03:54,050
Now we can read this file we can just say cat simple word list and we can see all the passwords that

48
00:03:54,110 --> 00:03:55,720
are stored in this file now.

49
00:03:56,630 --> 00:04:01,700
So that's all the passwords crunch created for us.

50
00:04:01,700 --> 00:04:07,340
So you can see it was nineteen thousand three hundred and seventy five combinations possible from only

51
00:04:07,340 --> 00:04:08,750
1 to 3 AB.

52
00:04:09,200 --> 00:04:15,150
Obviously the bigger the password that you put the mark the more characters you put the more passwords

53
00:04:15,150 --> 00:04:18,610
that you can make and the more space they're going to take.

54
00:04:21,430 --> 00:04:24,360
So let's just have a look on the pattern option.

55
00:04:24,790 --> 00:04:30,410
So it will go crunch that's a minimum of five and a maximum of five.

56
00:04:30,410 --> 00:04:36,470
So all passwords I want them to be five Carter-Long and then I'll put the characters which are 1 2 3

57
00:04:36,470 --> 00:04:37,960
A B like before.

58
00:04:38,270 --> 00:04:43,610
And then I'm going at the T option which is the pattern and I'm going to say I want a password.

59
00:04:43,610 --> 00:04:52,090
Start with an A and end with a B and I want all possible combinations of my characters between the A

60
00:04:52,480 --> 00:05:01,880
and B B and then we're going to specify the output file and let's call it hotter'n wordlist

61
00:05:04,960 --> 00:05:08,690
and you can see here it's going to create 125 passwords.

62
00:05:09,190 --> 00:05:10,470
Let's have a look on them.

63
00:05:13,610 --> 00:05:18,740
And as you can see here it's always starting with an name always ending with B.

64
00:05:20,020 --> 00:05:25,930
So you can use crunch now to create your wordlist and in the next video we're going to use the wordlist

65
00:05:26,140 --> 00:05:30,630
and the handshake files to determine the actual WPA key.