Linux command
aireplay-ng 命令
安全
权限或系统影响较大,执行前请核对目标。
常用示例
Deauthenticate
sudo aireplay-ng -0 [5] -a [AP_BSSID] -c [CLIENT_MAC] [wlan0mon]
Fake authentication
sudo aireplay-ng -1 0 -a [AP_BSSID] -e [SSID] [wlan0mon]
ARP replay
sudo aireplay-ng -3 -b [AP_BSSID] [wlan0mon]
Inject packets
sudo aireplay-ng -2 -b [AP_BSSID] -r [capture.cap] [wlan0mon]
Fragmentation
sudo aireplay-ng -5 -b [AP_BSSID] [wlan0mon]
说明
aireplay-ng is a packet injection tool for wireless networks. It can generate traffic to increase data capture for WEP cracking, force clients to disconnect (enabling handshake capture), and perform various wireless attacks. The tool requires a wireless interface in monitor mode with injection capability.
参数
- -0 _count_
- Deauthentication attack (0 = continuous)
- -1 _delay_
- Fake authentication attack
- -2
- Interactive packet replay
- -3
- ARP request replay attack
- -4
- KoreK chopchop attack
- -5
- Fragmentation attack
- -6
- Cafe-latte attack
- -7
- Client-oriented fragmentation
- -9
- Injection test
- -a _bssid_
- Target access point MAC
- -c _client_
- Target client MAC
- -e _essid_
- Target network name
- -h _mac_
- Source MAC address
- -r _file_
- Read packets from capture file
FAQ
What is the aireplay-ng command used for?
aireplay-ng is a packet injection tool for wireless networks. It can generate traffic to increase data capture for WEP cracking, force clients to disconnect (enabling handshake capture), and perform various wireless attacks. The tool requires a wireless interface in monitor mode with injection capability.
How do I run a basic aireplay-ng example?
Run `sudo aireplay-ng -0 [5] -a [AP_BSSID] -c [CLIENT_MAC] [wlan0mon]` in a terminal, then adjust file names, paths, flags, or remote targets for your system.
What does -0 _count_ do in aireplay-ng?
Deauthentication attack (0 = continuous)