Learn how to hack or check the security of Wi-Fi networks with your Android device without using BCmon in this detailed and step-by-step tutorial
Introduction
Hi All, Thanks for dropping by. Today I am going to tell you how to hack WiFi using your Android device. This is the second part of my WiFi hacking tutorial, How To Hack WiFi Using Android First part had a limitation that it works only for those devices which support bcmon app (devices with Broadcom bcm4329/bcm4330 WiFi chipsets.) In this post, I will explain how you can hack WiFi with any Android device.
Following the instructions carefully will help you to hack WiFi using any Android device without bcmon or Broadcom chipsets. Make sure the following requirements are met before proceeding.
We still need to install bcmon app though it is probably not supported by your device. The idea is to create a folder of bcmon in the system folder and with some tweaks, make Reaver believe that the device is bcmon supported. Go ahead and follow the instructions given below
Since the device is not bcmon supported, we need to ensure RfA is less dependent on bcmon. This is for better results. We will use custom monitor-mode-activation scripts. Copy the below codes in a note editor and save with a .sh extension to somewhere you can remember easily. You can use ES File Explorer for this.
stop.sh (disables monitor mode)
Now you have set up the scripts and required apps, we can move to the next steps. Follow the instructions correctly. This part specifically deals with Reaver App.
Disclaimer: Hacking Wi-Fi networks without permission is illegal and a violation of privacy. This article is for educational purposes only. HackCave does not endorse or encourage any illegal activity.
How to Hack WiFi using Android without bcmon.
Following the instructions carefully will help you to hack WiFi using any Android device without bcmon or Broadcom chipsets. Make sure the following requirements are met before proceeding.
Requirements:
- Rooted Android Device.
- Some apps must be installed. Make sure you allow installation of apps from 'Unknown sources' in the security settings.
- Supported OTG WiFi Adapter, for best results.
- A few scripts which are shared below.
- WPS Enabled WiFi (WPA/WPA2) in a close range
Instructions To Hack WiFi using Android Without bcmon supported Devices.
We still need to install bcmon app though it is probably not supported by your device. The idea is to create a folder of bcmon in the system folder and with some tweaks, make Reaver believe that the device is bcmon supported. Go ahead and follow the instructions given below
-
Download Reaver [apk](RFA) and install it. Alternate Link
- Install Root Explorer from PlayStore. Alternatively, you can use ES File Explorer also. Download bcmon (Don't worry if your device is supported or not) Alternate Link
- Install and open bcmon app
- Leave it open for a few seconds and then go to home. (This step is to create a folder com.bcmon.bcmon in/Data/data)
- Open root explorer or ESFE and browse to the bcmon app previously downloaded.
- Select it and press view or select it and choose the option 'extract'.
- Open the assets from the extracted folder
- Copy all the files to /Data/data/com.bcmon.bcmon/files.
- Replace/Delete any folder or file if it is already there.
Using Custom Scripts To Activate Monitor Mode.
start.sh (enables monitor mode and exits)
warm.sh
RfA will read the script and execute the commands internally. This is needed to execute reaver in the same terminal session as the script.
warm.sh
RfA will read the script and execute the commands internally. This is needed to execute reaver in the same terminal session as the script.
stop.sh (disables monitor mode)
- Now open root explorer.
- Navigate to bcmon.bcmon/files/tools/reaver
- Long press,chose permissions and then check the execute boxes(all 3) & click OK.
- Go to tools, long press enable_bcmon and grant it execute rights (all 3) & click OK.
Step By Step instructions to hack WiFi using Android
- Open Reaver app & scan for networks
- Select any one in green color and which is in a good range. For quick cracking & better results use OTG supported external WiFi adapter (If your device supports it)
- Go to settings and open monitor-mode settings. Uncheck 'use bcmon' and click 'Browse' to load all the scripts.
- start.sh is the activation script, warm.sh is the warm up script and stop.sh is the stop script.
- Check the debugging mode option.
- Now go back to the attack screen and press test monitor-mode. Grant root permission if any popup comes. Press OK and press start attack.
- Rest of the steps are pretty much same as the previous tutorial.
- Wait until the WiFi password is cracked and displayed by Reaver.
That's all. Good luck hacking WiFi. I am not responsible for any damages caused to your device. Unauthorized attempts to hack WiFi is a criminal offense punishable by law. Try it at your own risk.
Conclusion
To sum up, this article is a technical guide intended solely for educational purposes on how to hack Wi-Fi networks with an Android device without using BCmon. It is critical to understand that unauthorized wireless network access is illegal and violates privacy laws. It is recommended that this knowledge be used only for lawful and ethical purposes with proper authorization. To avoid legal ramifications, it is critical to adhere to all legal guidelines and regulations on wireless network security.
Also Check Out: Anti-Adblock Killer: How to disable "Ad Blocker Detected" pop-up in websites.
Also Check Out: Anti-Adblock Killer: How to disable "Ad Blocker Detected" pop-up in websites.
im unable to copey the files is this normal ?
ReplyDeleteMake sure the device is properly rooted and has write access to the folders.
Deleteya man i tried everything but works on root only
DeleteGetting error at the test monitor mode screen
ReplyDeleteProbably device support issues.
DeleteDid it will support samsung galaxy star 2
DeleteMake sure u copy all of bcmons lib files to ur /sustem/lib/ folder too
Deletegetting message after strting attack
ReplyDeleteas
Failed to retrieve a mac address for interface wlan0
Switching wlan0 to channel 1
please help
Ignore the error and try to continue the attack.
Deletebut how to continue
DeleteSame problem is with me
DeleteHow u do custom scripts
DeleteHelp with bcmon download
Deleteafter installing bcmon on my unite 2, i opened it and waited for 5 minutes, then i go to sdcard0/data but there is no folder named as com.bcmon
ReplyDeletehey on my Xperia Z1 also there is no such folder as com.bcmon.bcmon..
DeleteWhy..PLZ HELP
Its /data/data
DeleteU must go to the root directory
Let me guess u used ESFE right?I had the same problem, for some reason ES isn't showing the contents of DATA folder on ANY phone...or on most of them.
DeleteJust use some other Root Explorer. Cheers
Enable Root explorer option in ESFE.
DeleteAnd allow root access.
It will show root files.
Thanks. For sharing...
ReplyDeleteDone above process successfully...
Bt When i go to atack screen and tap on start attack...
it says.. something like
Bcmon.bcmon/files/(something).so is 32bit not 64 bit..
so tell me what to do now..
I have lenovo a6000 with resurrection Remix 64 bit ROM installed
I'm trying an error that only position independent executable
ReplyDeleteGetting*
Deletehttp://forum.xda-developers.com/google-nexus-5/development/fix-bypassing-pie-security-check-t2797731
DeleteThanks. For sharing...
ReplyDeleteDone above process successfully...
Bt When i go to atack screen and tap on start attack...
it says.. something like
Bcmon.bcmon/files/(something).so is 32bit instead of 64 bit..
so tell me what to do now..
I have redmi note 3
Same problem...
Deleteafter clicking on start attack its showing start script and then the stop script ... after that its saying "monitor mode disabled successfully ALl scripts should are tested now, RFA is ready to use" what do i have to do next
ReplyDeleteAnd what are the steps you mentioned as "rest of the steps are pretty same " ?
Kindly check the post here for steps http://www.hackcave.net/2015/10/how-to-hack-wifi-using-android.html
DeleteSame here it shows monitor mode successfully disabled rfa is ready to use.
DeleteThis link is not working... Am facing same issue
DeleteLink is not working.... Even am facing same issue
Deleteme too, are you able to solve it?
Deleteit happens to me too. were u able to find any fix?????
DeleteI've had the same issue. The solution is to make sure that you are not connected to any wifi networks before you start the attack. Wifi must be turned on but you should not be connected to any networks. If you keep getting connected automatically then forget the network. Hope this helped. This worked for me.
DeleteIt says something like
ReplyDeleteWarning
linker : could not load library "(data/data com.bmon.bmon /file/linlbs/libfake
Did u find the answer it shows the same fr me
DeleteDid u find the reason? The same problem goes fr me
Deletenot working.for is it neccesory to root mobile
ReplyDeleteObviously root is required.
Deletemy device is rooted but it says not successful.please note that some file system (e.g sd card)do not allow perm. changes
Deletepls help
unexpected e_machine:40 error... Pls solve this... X86 based machine error.... Im using zenfone 5... Intel Atom chipset
ReplyDeleteIt says
ReplyDeleteUsage : svc WiFi [enable|disable]
Turn WiFi on or off.
I have an error that says sh not found and no directory what does that mean?
ReplyDeletecould not load library "libcap.so.1" "./reaver";
ReplyDeleteany IDEA?
its getting error control the wifi manager kindly resolve it fast sir .
ReplyDeletewaitning for your positive reply sir .
thanks
HELP asap please..
ReplyDeleteI followed your instructions very carefully line by line but after tapping [TEST MONITOR MODE], I got the following error message..
-------------------------
1. Debug:activation script
Stdout:
StdErr:
sh: /storage/sdcard0/Me/Wifi: No such file or directory
2.Error
Monitor-Mode activation failed.
Something went wrongyou should enable debug mode and check your scripts.
-----------------------
The debug mode has ✔ on it and the scripts are exactly the same as i copied it from your post ⬆above⬆...
please help me :(
MY Xperia Z1 has smae problem...PLZ HELP
DeleteI'm getting the exact same thing
DeleteGetting the exact same thing
DeleteJust put all 3 sh files (start, stop, warm) scripts in root directory and check all execute permission right and then brows this scripts in a root direcrory
DeleteI have the exactly same problem :( Someone Please help us.
DeleteI'm getting same error. Not sure what to do to fix.
DeleteThanks so much munavaar!!!!!!!!!!!!!!!!!!!!!
DeleteThis methods works!!!!!!!!!!!!!!!!!
showing error sh:./storage/emulated/legacy/start.sh:no such file file or directory
ReplyDeleteplease help me
DeleteWhen i tap on start attack it shows a dialog box saying:
ReplyDelete"
Stdout
rfasuccess
Stderr
bmon_wrapper_loaded
"
Afer i tap ok the attack begins but keet showing two lines for hours:
"
Switching wlan0 to channel 1
Waiting for becon from 'ssid of network'
"
Plz help what should i do
unsupported device.
DeleteHi..
ReplyDeleteAm Ritesh..
I have cyanogenmod ROM.
I have installed everything and the monitor mode is success...
When I hit START ATTACK in RfA it again comes the same page..
I have tried it for many times but still I get the same page..
Mobile model: gti 8552(cynogenmod)
If SD card doesn't grant permission for changing the permission then what am i supposedto do
ReplyDeletePlz i have a little problem
ReplyDeleteI can't do change permissions in root explorer for reaver and enable_bcmon
Can you help me :)
U sure the device is rooted?
DeleteStops at
ReplyDeleteTmp-mksh: [3]: sh: not found
error : only position independent
executables (pie) are supported
I'm having a problem with the script part...what kind of note editor do I need? I can't see the ES note editor..
ReplyDeletestdout :
ReplyDeleterfasuccess
stderr:
bmon_wrapper_loaded
error: only poistion independent executables (PIE) are supported.
It aint hacking.when i test monitor mode it says monitor mode has been successfully disabled and it does not start hacking
ReplyDeleteAll steps r followed correctly and at end it says
ReplyDeleteAll scripts are tested now
RfA is ready to use
But after taping on OK nothing happens.
What to do?
Pls help
After attacking this text comes on the screen:
ReplyDelete"sh:[3]:libs.libfake_driver.so:not found
sh:[4]: /data/data/com.bcmon.bcmon/files/:can't execute: is a directory
sh:[5]: tools: not found
sh:[4]: ./reaver: not found"
I THINK THAT I AM NOT ABLE TO COPY THOSE SCRIPTS CORRECTLY, SO PLS CAN U GIVE A LINK TO DOWNLOAD THEM,
OR
IS THERE ANY OTHER PROBLEM.
Thank you.
Help please !
ReplyDeleteI followed the given instructions, and I got monitor mode to work but, when I click start attack I get this error: "cannot link executable dependencies: library "libpcap.so.1" not found"
Stdout:
ReplyDeleteStdErr:
sh: /storage/sdcard0/Me/Wifi: No
such file or directory
2.Error
Monitor-Mode activation failed.
Something went wrongyou should
enable debug mode and check your
scripts.
solution pls
start.sh : No such file or directory
ReplyDeletei got this error
How to solve this
bmon_wrapper_loaded
ReplyDeleteerror: only position independent executables (PIE) are supported.
Scripts saved in /storage/emulated/0/ depository.
Activate monitor-mode successfully.
hi sir
ReplyDeletemy device redmi note 4g with rooted and installed coustm ROM like cyanogsnmod 13 BT bcmon apk not work
my device supported otg.
which external WiFi card for WiFi hacking ,please tell me
help
HELP asap please..I followed your instructions very carefully line by line but after tapping [TEST MONITOR MODE], I got the following error message
ReplyDelete..-------------------------
1. Debug:activation script
Stdout:
StdErr:
thats it sir empty
how to browse start.she script from SD card
ReplyDeleteHi, I can't seem to copy the scripts. What should I do?
ReplyDeleteDo i have to rooted my phone first?. do you have any methods that dont need to root?
ReplyDeletePenetrate pro app
DeleteIt works without root on SOME wifi's
Most of which are easy to hack anyway :P
In bcmon.bcmon/files is empty pls help
ReplyDeleteHow do I get write access the folders? My phone is rooted
ReplyDeleteHow much time taken to display password after track start
ReplyDeleteGreat tutorial, btw is this only applicable for WPA/WPA2? does the same method applicable for WEP wifi as well?
ReplyDeleteThanks
Hey, great article. Everything worked fine until I got to the start attack button. When I press "start attack" it gives me an error saying that only position independent executables are supported. It then says rfa is really for use but won't start the attack. Any suggestions?
ReplyDeleteI get An Error PIE position independent executables
ReplyDeleteHow to fix? Please help T-T
Work but when i start attack it write
ReplyDelete[+]switching wlan0 to channel 1
[+]waiting to beacon for --mac address
And my turn off but the screen stay on
[+]switching wlan0 to channel 1
[+]waiting to beacon for --mac address
Hi i loaded the scripts and my problem is that in com.bcmon.bcmon/files dont have tools folder i just have the files i pasted from he apk extraction androidmanifest xml folder assets classes.dex folder meta-inf folder res and resources.arsc what am i doing wrong ?
ReplyDeleteim on a vodafone smart tab II 7 stock rom
Regards
Working. But some times its going Error!!!
ReplyDeleteIn my s duos 2 after clicking on start attack showing error:PIE
ReplyDeleteHow to fix that
Please tell me how to bypass pie check in my yuphoria. The one from xda doesn't work.
ReplyDeleteI can't install bcmon. When I click the link, it takes me to a 404.
ReplyDeleteno network found.
ReplyDeletescan again.
:(
phone is rooted,
all steps are done..
still don't know why it shows me like this :(
I'm using nvidia shield portable
ReplyDeleteTurns out you can't have spaces in your directory's but I'm still stuck it says all the directories in the start.sh don't exist and I have verified that they do
ReplyDeleteI am getting a error saying only PIE are supported. What to do?
ReplyDeleteTo those with sh not found issues, the problem for me was the shebang and appended "sh" on the lines with .so files.
ReplyDeleteChange shebang from #!/bin/bash to #!/bin/sh and removing "sh" from lines thereafter fixed the issues for me.
Additionally, the binaries in this hack are not PIE compatible, so you may need to disable selinux on Android 5.0+ using a custom linker. Google is your friend.
it is only one line containing sh after .so file and i have done all things you have said an still getting error
Deletecan dis method work for s3 i9300?
ReplyDeleteThe link to download bcmon doesn't work
ReplyDeleteGreat tutorial and i have done everything perfectly as u said but at the end when i start attack its displaying-
ReplyDeleteTmp-mksh stdin3 sh not found
Error only position independent
Executables pie are supported.
Plz help me out i think m almost there....any help would be appreciated
Same here
DeleteHow to download bcmon
ReplyDeleteHow to download bcmon
ReplyDeleteLink updated.
DeleteDo you have a mirror? Google drive doesn't want to share the file. I'm getting the error: "We're sorry. You can't access this item because it is in violation of our Terms of Service."
DeleteGoogle drive is no more used. Updated the links.
Deleteit says bmon wrapper loaded pie error..what to do
ReplyDeleteReaver isn't finding any routers. It just says no networks found. Please help
ReplyDeleteerror 404 appeared when i click the bcmon link. Where can I download it sir?
ReplyDeleteme too
DeleteAfter enable monitor mode it says
ReplyDeletebcmon_wrapper_loded
Error: only position independent executables (PIE) are supported
When I choose view, there is no option to extract. What do I need to do?
ReplyDeleteLink off plz update it
ReplyDeleteLink of bcmon is off plz update!!
ReplyDeleteBcmon download link not working
ReplyDeleteHelp when i download bcmon i open it and it crashes and i cant find its icon and i cant open it. PLS HELP
ReplyDeleteCan i get readymade scripts file please
ReplyDeletelibpcap.so.1 not found reaver ...help asap
ReplyDeletehow to download start.sh..warm.sh.stop.sh files???
ReplyDeleteThanks for this wonderful trick.
ReplyDeleteDo have a nice week ahead!
My page stuck at 'switching wlan0 to channel....' Please help me aand give solution
ReplyDeleteWaited for 4h and nothing happened. Waiting for package from....
ReplyDeleteHello, when I tap "start attack" it shows:
ReplyDeletedebug: activation script
Stdout:
rfasuccess
StdErr:
bmon_wrapper_loaded
error: only position independant executables (PIE) are supported.
and then this:
debug: stop script
Stdout:
rfasuccess
StdErr:
and nothing happens. Can you help me ?
Those who get the "error: only position independant executables (PIE) are supported. "
ReplyDeleteIt i due to android L or up. The binaries this application use have not been compiled as PIE, and therefore latest android versions refuses to run them. Check this out for a possible fix: http://forum.xda-developers.com/google-nexus-5/development/fix-bypassing-pie-security-check-t2797731
Bro where is these three file i can't get it
ReplyDeletePlzzzzz help me..
First, thanks for all your efforts with this how-to and in responding to comments.
ReplyDeleteLike several others I get the "only position independent executables (PIE) are supported."
Is there a simple way to circumvent or correct this?
Issue with Lollipop or higher versions.
Deletewhen I copy the files data (data) bcmon it says access denied.. pleasw help nd my device is also rooted i have installed root checker it says properly installed.
ReplyDeletend es file exp is incompatible with my device nd root explorer is on purchase so i installed a different explorer . Its name is fx file explorer nd I also have installed root module for it.
bcmon download link is outdated. Kindly update the link.
ReplyDeleteThanks.
Already updated.
Deletenot working again... try mega
DeleteAutor why you use blockcoute?????????????
ReplyDeleteAdded textarea so that it is easy to copy code.
Delete