The purpose of this tutorial is for education only.
Before I start, I will explain about what is fake access point?
Access Point (AP) is a networking device that allows wireless devices to connect to a wired networking using WIFI.
Fake access point is a virtual access point that is created using an application but it acts like real access point. It is converted from our wireless device into access point. You can set a password, essid and channel on it.
What tools I need?
The tool is airbase-ng. It’s part of aircrack-ng package. So, you need to download the aircrack-ng first. Make sure you are connected to the Internet. Open your linux terminal and type:
$ sudo apt-get install aircrack-ng
What’s next?
You have to make sure that your wireless device is on. Type $ ifconfig | grep addr in your linux terminal.
darklinux@darklinux:~$ ifconfig | grep addr
eth0 Link encap:Ethernet HWaddr 00:a0:d1:79:1f:31
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
wlan0 Link encap:Ethernet HWaddr 00:1b:77:2b:a3:aa
inet addr:192.168.1.9 Bcast:192.168.1.255 Mask:255.255.255.0
inet6 addr: fdec:cb30:766a:100:21b:77ff:fe2b:a3aa/64 Scope:Global
inet6 addr: fe80::21b:77ff:fe2b:a3aa/64 Scope:Link
inet6 addr: fdec:cb30:766a:100:44f6:1f8d:66c6:41d3/64 Scope:Global
darklinux@darklinux:~$
And the wireless card mode has to ‘monitor’. You can check using command $ ifconfig wlan0.
darklinux@darklinux:~$ ifconfig wlan0
wlan0 IEEE 802.11abg ESSID:”rumahwifi”
Mode:Managed Frequency:2.462 GHz Access Point: EC:CB:30:76:6A:08
Bit Rate=54 Mb/s Tx-Power=14 dBm
Retry short limit:7 RTS thr:off Fragment thr:off
Power Management:off
Link Quality=64/70 Signal level=-46 dBm
Rx invalid nwid:0 Rx invalid crypt:0 Rx invalid frag:0
Tx excessive retries:0 Invalid misc:40 Missed beacon:0
darklinux@darklinux:~$
If the mode is not monitor, you have to change it using $ iwconfig wlan0 mode monitor.
Or just create virtual wireless card using command $ sudo airmon-ng start wlan0.
darklinux@darklinux:~$ sudo airmon-ng start wlan0
[sudo] password for darklinux:
Found 5 processes that could cause trouble.
If airodump-ng, aireplay-ng or airtun-ng stops working after a short period of time, you may want to kill (some of) them!
PID Name
746 avahi-daemon
747 avahi-daemon
761 NetworkManager
807 wpa_supplicant
1109 dhclient
Process with PID 1109 (dhclient) is running on interface wlan0
Interface Chipset Driver
wlan0 Intel 3945ABG iwl3945 – [phy0]
(monitor mode enabled on mon0)
darklinux@darklinux:~$
You will have a new wireless device (mon0) is there is no error.
darklinux@darklinux:~$ iwconfig mon0
mon0 IEEE 802.11abg Mode:Monitor Tx-Power=14 dBm
Retry short limit:7 RTS thr:off Fragment thr:off
Power Management:off
darklinux@darklinux:~$
You can check the available wireless network using $ sudo airodump-ng -i mon0.
Start the airbase-ng using $ sudo airbase-ng -c 11 -e freewifi mon0.
-c is the channel
-e wifi name
You can open another linux teriminal and check the status. $ sudo airodump-ng -i mon0.
Now we a fake access point with essid name ‘freewifi‘.
Leave a comment