What if I told you that you could kick every single person off any wireless network without even needing the password to be on that network? And you could do accomplish this feat with a single command? (Well, technically a few commands to have the proper setup, but still).
You think I'm crazy? Think again! The power of packet injection and a little script called "Aireplay-ng" will bring any (mostly) WiFi router down to it's knees. The concept is simple: when a user enters the password to a WiFi router — assuming there is a password — they are authenticated to use that system.
But what happens when we send a message to the router telling it that those users on the network are, in fact, NOT authenticated? The router kicks them off! And if we run this command continuously, they'll never be able to get back on.
What You Will Need
- Kali Linux (either a bootable LiveCD or bootable USB image)
- Network card capable of monitor mode ("promiscuous mode") and packet injections. My recommendation is: Alfa AWUS036H
- The Aircrack-ng suite (included in Kali Linux or AVAILABLE FOR WINDOWS!)
Deauthenticating All Users
LEGAL MUMBO JUMBO: This attack should not be used on systems you don't have permission to exploit. Please use with caution. This can easily take down almost any router* that offer WiFi services (open or encrypted), including coffee shops, malls, restaurants, hotels, etc. PROCEED WITH CAUTION.
[* Note: From what I hear, Cisco has found a way to prevent deauthentication attack on their routers.]
Now, let's get to the hack: