How long should aircrack take

Active Oldest Votes. I hope this makes sense. If not, let me know and I'll try to explain it better! Improve this answer. Community Bot 1. Nicholas Dechert Nicholas Dechert 9 9 bronze badges. Daisetsu Daisetsu 5, 1 1 gold badge 13 13 silver badges 24 24 bronze badges. You're typing: crunch 1 Azteca Azteca 1, 7 7 silver badges 16 16 bronze badges. Sign up or log in Sign up using Google. Sign up using Facebook. Sign up using Email and Password. Post as a guest Name. Email Required, but never shown.

The Overflow Blog. Does ES6 make JavaScript frameworks obsolete? Podcast Do polyglots have an edge when it comes to mastering programming Featured on Meta. Now live: A fully responsive profile.

Linked 2. Related 3. SSID is used for password hashing, so better change it from default to avoid rainbow tables. So I don't have experience with WPA cracking, but if the access point has WPS the click to connect button you can sniff handshakes on the network and crack the WPA password it in relatively no time.

In my experience this has usually been under 10 minutes. On most recent firmware, there is an exponential backoff on WPS connection attempts.

From the image above, you can see my card can inject packets into the network. You can also find a list of recommended network cards, along with beginner friendly explanations, in our related tutorial Connecting a Wireless Adapter to a Kali Linux Virtual Machine.

Now that we have enabled Monitor mode on our wireless card and even tested it for packet injection, we can now capture packets on our WiFi networks. We will use a tool known as airodump-ng. Execute the command below and press Enter. You will see a screen similar to the one in the image above.

In this step, all we did was random packet sniffing. We did not target any particular WiFi network or store the sniffed packets. However, the method that we will use to crack the password is the same for both networks. These are four packets transmitted between the router and the client when establishing a network connection.

To capture packets on a specific network, we will use the syntax below. Now all you need to do is sit back and wait for the tool to capture as many Handshake packets as possible. However, there is one problem. Handshake packets are only captured once — when a device connects to the network. Therefore, to capture as many handshake packets as possible, we will need to use an attack to remove users from the network and reconnect. Deauthentication attack. That will help us capture more handshake packets.

To carry out a deuathentication attack, open a new Terminal , while leaving the current one running and trying to capture Handshake packets, and execute the command below:. The command will send 50 deauthentication packets, which are enough to disconnect several clients from the router. Once they reconnect, we will capture their handshake packets.