How To Hack WiFi: Fully Explained( For Educational Purpose Only)

How to hack wifi

How to Hack WiFi?

How to Hack WiFi? Nowadays many people are curious about this. So In this post, I am going to share every possible way to Hack a WiFi network. Please do these things in a legal way with the written permission of the WiFi owner.

Attention! and personally, the author of the article, do not urge to do WiFi hacking ! Especially alien networks !!! The article is written for educational purposes to enhance personal information security. Let's live in peace!

Below we consider both general methods of hacking wireless networks and give instructions or references to them. Also, recommendations are provided to improve the protection of your own home network from possible evil neighbors and other intruders. I hope this article will be useful to all readers. For others, I recommend that you familiarize yourself with the proposed material in more detail and leave your comments.


  • Hacking methods
  • Is it possible to hack?
  • Unprotected Networks
  • Manual Selection
  • Bruteforce
  • Handshake interception
  • WPS code
  • Phishing
  • Password Databases
  • Hacking a router
  • Filter Bypass
  • Network Protection
  • Hacking from the phone
  • Responsibility
  • Programs
  • Books on the topic

Hacking methods

Wireless networks bring together many technologies. And where there is a lot of technology - there are a lot of security technologies. And at the bottom of this "duck in the egg," security holes also pop up. And each possible hole has its own method of attack. In this section, I would like to show all the possible ways of hacking Wi-Fi and penetrating a wireless network. But which of these options will work depends entirely on the specific situation. Also, the network can be completely protected and cannot be hacked at the current time)

Freebie! About how much desire causes a freebie in all people. Everyone wants someone else's internet. But it’s one thing to quickly grab a password and boast to classmates or save money on a hostel on the Internet, but it’s another thing to understand the technology itself, which will allow access to almost any network. Do not run after boasting, only study and understanding of processes will make you an expert in this field. My task now is to show the scope of opportunities and create beauty in this.

The main ways to hack someone else's WiFi:

  • Unprotected networks.
  • Manual password selection.
  • Bruteforce password.
  • Selection of WPS Code.
  • Phishing.
  • Password Databases.
  • Bypass filters.
  • Interception of the "handshake" and its interpretation.
  • Hacking a router and pulling out an open password.
We will briefly try to look at all these methods. I won’t go into details much, but if you suddenly have a question, ask it in the comments.

Is it possible to hack?

Is it possible to hack? “Yes, perhaps.”

Is it possible to defend completely? - No. Because the technology is initially open to connecting users.

Unprotected Networks

Usually, nowadays all networks are encrypted and protected by a Key. But there are still access points that are in no way protected. And you can connect to them completely freely - without a password. An example of such a point is public places, the metro.

Manual Selection

These first two methods are written simply to show that sometimes it is not worth resorting to complex technical actions because usually, everything is in sight, you just have to think a little.

The average user usually sets himself a simple password - try to imagine what he could enter and guess it. It works great to find out the Wi-Fi password from friends and neighbors. What if you already know some kind of password for your neighbor? People are very fond of repeating themselves and usually, introduce the same thing. It rarely works, but aptly. Especially on older WEP networks where passwords of less than 8 characters were allowed to be entered - there were often “12345” and “QWERTY” there.
How to hack wifi

Many providers sometimes use the default passwords on their models. Look for them on the Internet or on their website for the default password.


Brute Force (Brute Force) - a method of automatically enumerating passwords. After all, do you enter the password freely? And what to do if you make the program independently sort through all the possible options and try to connect with them.

There are pluses - old models without attack detection and weak password (WEP) break with a bang. There are disadvantages - new models can detect you (you have to disguise yourself) and introduce delays in busting, or even a full ban of the attacking machine. Another minus is that modern routers force users to enter complex long passwords, which will take years to search. So you have to look for other methods.

But still, try to sort the network into light passwords, or if it is WEP, not WPA / WPA2, it is definitely worth it. There is always a chance of a hole.

Highlights on Brutus:

1. Programs can use the entire enumeration of options - suitable for a WEP network, or for a router model that forces you to enter complex passwords where dictionary attack is impossible.

2. There is a dictionary attack option - when a file with the most frequently encountered passwords is loaded. There are a lot of these files - in one Kali Linux there are about a couple of dozen of them, and how many go on the network. For me it’s enough to check for basic passwords with a small list - after all, cracking through brute force is no longer an option, but for a basic check and saving time, the simplest list is enough.

3. The program runs in several threads - i.e. can simultaneously try to iterate many options at once. But this has its own peculiarity: the router itself can discard such attempts, introduce authorization delays, or even reboot completely. Those. with threads, you need to play carefully. In any situation - check everything on your hardware, so you will know for sure.

4. Some people write about proxies. But what kind of proxy is it))) We connect via air) It is a matter of the fact that some programs successfully mask their requests for different devices, which makes it possible to work in multi-stream.

A selection of ladies programs at the end - usually one program like Aircrack (market leader) can do all the actions itself. No need to reinvent the wheel or set 100,500 programs. In the meantime, I want to continue the discussion by hacking.

Handshake Interception

One of the most working methods is to intercept a “handshake”. What it is? Also a kind of pure Brutus, only with a preliminary interception of the cipher and its further attempt to decrypt. Here is a brief outline:

1. You sit quietly on the net.

2. The network is breaking.

3. Your computer is connecting again.

What happens at the time of reconnection: your computer re-sends the password to the router, the router accepts it and, if successful, sets up the connection. In practice, this is completely unnoticeable - neither disconnecting the network nor entering a password - everything is done automatically by your own system.

This process of sending a password can be called “handshake” or “handshake”. But there is a minus for this method - the data is transmitted initially in encrypted form. But with a great desire, this cipher can still be taken apart (even there are services) and open password-protected data. And it will take no more time than direct brute force. That is the whole basis of the method. The familiar Aircrack can remove handshakes, and HashCat (a password brute force generator and password generator) can select a password. But better watch the video above. This is the same way when a neighbor’s wifi is quietly broken.

WPS Code

Some routers have the same useless button - WPS, which allows you to connect devices in a simplified model. By default, in many routers, WPS is still activated. And a connection to such a network is carried out only by entering this PIN code, which consists of only numbers.

The PIN code is only 8 digits. I have already talked about the validity of a full WEP enumeration, but here it’s even simpler - only numbers. Also, a correlation was found that allows methods to do a pairwise selection - first 4 digits, and then 4 digits. This all greatly accelerates the search, and a point with an open WPS can be broken in a few hours.

Another attack option is to use the default codes. YES! Some devices come from the factory with the same PIN code enabled) And the proposed programs already know these passwords, so everything can be much simpler.


Another interesting method is to display your page on the network user ... Yes, this can be done without connecting to the network. But the substitution can be seen. The most valid option:

1. An access point is created with the same name as the hacked network.

2. A good signal and name will force the victim to connect to her sooner or later.

3. After logging in, a password is entered that successfully comes to you.

The method is working, but luck can not do without it. There are also available software implementation methods, for example, using Wifiphisher.

Let's analyze this application in more detail because the attack vector is interesting. We need Kali Linux (yes, guys, all the cool free software for a hack of any level lies there, so put it on). In the terminal, run: Wifiphisher


Immediately after launch, the program begins to search for nearby networks (all programs with a network hack do this.

How to hack wifi

Pay attention to the number of networks. Find the one you need in this list and enter its number. Next, various attack scenarios will be suggested:

How to hack wifi

All options are approximately similar, the only difference is what will appear on the user of a foreign network - authorization or software update. I recommend paying attention to the following points:

Firmware Upgrade Page - it will be offered to update the software of the router itself. It looks interesting and believable, but just need to enter the same key:

How to hack wifi

That's all. Approximate use of all programs comes down to this. I will not dwell on one, otherwise, it will turn out a whole book. I designate attack vectors, I give clues - and you already independently study each direction. At the end of the article, I will give an interesting bonus from professional hackers, for those who want to go deeper.

Recommendation: Watch out if the network to which the device was connected automatically earlier without problems requested a password - especially on a third-party page (software update, password on Facebook, etc. - this does not happen). Pay attention to duplicate network at home.

Password Databases

Some programs and services store the password databases of access points in public places. This is especially true for all kinds of cafes in large cities. Want to smash a cafe? Why, why, usually someone already connected to it, which means there is a chance that the password has sailed to the databases.

An example of such a service application: Wi-Fi Map or Router Scan. And the map will show, and the available points, and it will connect itself.
How to hack wifi

Recommendation: make a selection of services and if you suspect a break-in, check yourself in these databases. Even easier - change the Wi-Fi password every six months.

Hacking a router

Sometimes you have the opportunity to connect to Wi-Fi via a wire, or you know an external IP address from the Internet and can access the router (sometimes you can very likely determine it by scanning).

Then you can try to find a password to enter his control panel. Many leave it by default admin / admin (login / password). And already in the settings, the password from Wi-Fi is stored in the clear.

Filter Bypass

Some access points will not let you in, simply because you have the wrong ... MAC address. Sometimes it happens. This is not about hacking, but sometimes the whole task of hacking is reduced to changing the MAK - for example, when you previously successfully connected, but now it doesn’t allow anything, because The administrator or parents banned your device specifically for the MAC. The solution is simple - change it.

It happens they use:

1. Blacklist. Then you just need to change the address to one that is not on this list. Universal program - Macchanger.

2. White list. Only the devices indicated in it are connected. Then first you need to look at these devices and their addresses (Airodump-ng is suitable), and only after that, you can adapt to them with the same maker.

Network Protection

I’ll highlight some of the problems that you should pay attention to so that no one can connect to your network:

1. Set a complex password on Wi-Fi.

2. Put a complex password on the router panel itself.

3. In case of paranoia - turn on MAC address filtering, allow only for your devices.

4. Turn off WPS (sometimes called QSS).

Hacking from the phone

All the methods above were mostly about using a PC. The best environment for hacking is still Kali Linux - everything is already provided there. The last option is Windows. Phones are much more complicated. While I was preparing the article, I read “neighboring publications” with recommendations to stick Kali on Apple or launch free Aircrack-ng on them directly in Android or iOS, and with a bonus seasoned with strange keywords - it’s never shorter in life. If you want to break - put Kali, if there is only a phone - there will be no cool solution.

Basically, all the recommendations from the network in this field are outright nonsense. My recommendation is to enter something like “hacking wi-fi” on Google Play or the App store, and a whole selection of programs will fall out. And there already look at the reviews and do not put any fake stuff. The main categories of software here:

1. Default WPS password guessing.

2. Base points.

There will be no selection here - it needs computing power, which phones (and some computers) do not have. So once again - you want to break from the phone, put the potassium on your laptop/computer. Kali is installed on some models of smartphones, but if you are not a pro, do not even try - a pointless undertaking.


g Please note that the very use of the Internet, if this has not caused any damage, to put it mildly, is difficult to fit here. Another thing is if traffic or time is charged, but you use it ... But nowadays, there is no limit on Wi-Fi. Whatever it was, I still categorically disapprove of any villainy in my inner circle - after all, we are all brothers, who if not we.


There are really few powerful hacking programs for all occasions. I recommend to pay attention to the following:
1. Windows - WiFi Crack

2. Kali Linux - Aircrack and company. This is the best Wi-Fi cracker, most of the manuals from YouTube are just about her, including the video from this article, supports absolutely all methods of hacking, you can safely write a separate article. Ideal to work from a laptop, but you can also from a computer using Wi-Fi adapters.

3. Android and iOS - discussed above, look in the markets, for me, it's "pseudo-crackers" in case of "if you're lucky."

Books on the topic

There are many books about hacking Wi-Fi. There are very specific but incomplete. And there are straight very short clippings with all the interesting points. Here are the clippings I decided to share with you. I do not claim authorship, who will like it - pay the authors. There are all the methods above, even a little more, with examples and instructions:

Click here to download Wifi hacking book.

This is where I end - look, study. The information above is enough to easily crack any Wi-Fi on any router (and even on a school one). Here the question is only you need time and skills to do this.

Post a Comment

Previous Post Next Post