How to Hack WiFi on Android Devices

Do you want to test your network security? Or you want to use the wifi of your neighbour and you do not know the password, then here is the method to get the password.

Method 1 of 2: WEP Routers

Not every Android phone or tablet will be able to crack a WPS PIN. The device must have a Broadcom bcmfl or bcmfl wireless chipset and must be rooted. The Cyanogen ROM will provide the best chance of success. Some of the known supported devices include:

• Nexus 7
• Galaxy S1, S2, S3, S4, S5, S6, S7, S8, S9
• Galaxy y
• Nexus One
• Desire HD
• Micromax A67

Download and install Bcmon. Your device must be rooted in order to run Bcmon. This tool enables Monitor Mode on your Broadcom chipset, which is essential for being able to crack the PIN. To install the APK file, you will need to allow installation from unknown sources in your Security menu.

After installing the APK file, run the app. If prompted, install the firmware and tools. Tap the Enable Monitor Mode option. If the app crashes, open it and try again. If it fails for a third time, your device is most likely not supported.

Run Bcmon terminal. This will launch a terminal similar to most Linux terminals. Type command:

airodump—ng

Then tap the Enter button. Airodump-ng will load, and you will be taken to the command prompt again. Type command:

airodump—ng wlan0

Then tap the Enter button. You will see a list of available access points. You must select an access point that is using WEP encryption.

Note the MAC address that appears. This is the MAC address for the router. Make sure that you have the right one if there are multiple routers listed. Note this MAC address down. Also, note the Channel that the access point is broadcasting on.

Start scanning the channel. You will need to collect information from the access point for several minutes before you can attempt to crack the password. Type command:

airodump-ng -c notedChannelHere --bssid NotedMacAddress -w output athO

Then tap Enter. Airodump will begin scanning. You can leave the device for a while as it scans for information. Be sure to plug it in if you are running low on battery.

Note:

• Replace notedChannelHere with the channel number the access point is broadcasting on (e.g. 6).
• Replace NotedMacAddress with the MAC address of the router (e.g OO:Oa:95:9d:68:16)
• Keep scanning until you reach at least 20,000-30,000 packets.

Once you have a suitable number of packets, you can start attempting to crack the password. Return to the terminal and type the command:

aircrack-ng output*.cap 

Then tap Enter. Note the hexadecimal password when finished. After the cracking process is complete (which could take several minutes), the message Key Found! will appear, followed by the key in hexadecimal form.

Make sure that Probability is 100% or the key will not work. When you enter the key, enter it without the 2. For example, if the key was 12234256278290, you would enter 1234567890.

Method 2 of 2: WPA2 WPS Routers

First steps are Root your device, download and install Bcmon, Run Bcmon. The steps of installing and running Bcmon are the same as in the first method.

Download and install Reaver. Reaver is a program developed to crack the WPS PIN in order to retrieve the WPA2 passphrase.

Tap the Reaver for Android icon in your App drawer. After confirming that you are not using it for illegal purposes, Reaver will scan for available access points. Tap the access point you want to crack to continue.

You may need to verify Monitor Mode before proceeding. If this is the case, Bcmon will open again. The access point you select must accept WPS authentication. Not all routers support this. In most cases you can leave the settings that appear at their default. Make sure that the Automatic advanced settings box is checked.

Tap the Start attack button at the bottom of the Reaver Settings menu. The monitor will open and you will see the results of the ongoing crack displayed. Cracking can take several minutes to complete.