aircrack tested 0 keys. Help?

[combat]

I've got a network where I've captured roughly 40,000 IVs. The key was decrypted successfully and unless I'm missing a step I can't figure out what I'm doing wrong.

This is a WEP network that I'm using a dictionary attack on.

Here is the input and output in terminal.

Code:

root@peepee:~# aircrack-ng -c -w /root/Downloads/500-worst-passwords.txt /root/Desktop/FBI-02.cap
Opening /root/Desktop/FBI-02.cap
Read 331845 packets.

   #  BSSID              ESSID                     Encryption

   1  00:1F:33:C7:CD:10  FBI                       WEP (43380 IVs)

Choosing first network as target.

Opening /root/Desktop/FBI-02.cap
Reading packets, please wait...

                                 Aircrack-ng 1.2 rc3


                 [00:00:00] Tested 0 keys (got 43380 IVs)

   KB    depth   byte(vote)
    0    0/  0   00(   0) 00(   0) 00(   0) 00(   0) 00(   0) 
    1    0/  0   00(   0) 00(   0) 00(   0) 00(   0) 00(   0) 
    2    0/  0   00(   0) 00(   0) 00(   0) 00(   0) 00(   0) 
    3    0/  0   00(   0) 00(   0) 00(   0) 00(   0) 00(   0) 
    4    0/  0   00(   0) 00(   0) 00(   0) 00(   0) 00(   0) 
    5    0/  0   00(   0) 00(   0) 00(   0) 00(   0) 00(   0) 
    6    0/  0   00(   0) 00(   0) 00(   0) 00(   0) 00(   0) 
    7    0/  0   00(   0) 00(   0) 00(   0) 00(   0) 00(   0) 
    8    0/  0   00(   0) 00(   0) 00(   0) 00(   0) 00(   0) 
    9    0/  0   00(   0) 00(   0) 00(   0) 00(   0) 00(   0) 
   10    0/  0   00(   0) 00(   0) 00(   0) 00(   0) 00(   0) 
   11    0/  0   00(   0) 00(   0) 00(   0) 00(   0) 00(   0) 
   12    0/  0   00(   0) 00(   0) 00(   0) 00(   0) 00(   0) 



Quitting aircrack-ng...

[TheMantis]

Zero key because the key is not in the dictionary that you were using. you can try wifite or wifite-ng.

[combat]

Zero key because the key is not in the dictionary that you were using. you can try wifite or wifite-ng.

Does it really test the keys THAT fast? My dictionary file is somewhere close to 250mb. The elapsed time also shows 00:00:00, which to me means it never started. Am I wrong?

[kcdtv]

Your dictionary for WEP may not be correct.
Could you show us a couple of line from it?

[combat]

Your dictionary for WEP may not be correct.
Could you show us a couple of line from it?

This is just the first few lines

Code:

123456
password
12345678
1234
*****
12345
dragon
qwerty
696969
mustang
letmein

I tried wifite, pixiewps, reaver, aircrack. The signal is around -50 where I can get the best signal...maybe it's just not strong enough?

[TheMantis]

that wordlist is not for WEP, it's for WPA.

[combat]

that wordlist is not for WEP, it's for WPA.

Makes sense why it wouldn't work. I'm a noob so I didn't know. How would WEP look?

[kcdtv]

It has to be in hexadecimal.form (the "long key" with two points (":") in your aircrack-ng windows)

if you crack a 64bits WEP it should be something like this

Code:

12:34:56:78:90
AA:BB:33:55:FF

Ten hexadecimal digits with pair separated by two points.

If your network in encrypted with WEP 128 bits than it has to be like this

Code:

11:22:33:44:55:66:77:88:99:00:AA:BB:CC
FF:EE:12:34:56:78:90:B1:23:45:89:00:77

26 hexadecimal digits separated by two points.

unless you have a clear idea about a pattern to follow it is not possible to brute force it ... even if the charset is limited to hexadecimal that still 26 digits long!

[grid]

There are some great tutorials on the aircrack-ng website. I recommend going through them...they will really help you get the most out of aircrack.