Instructables

Hack any paid WiFi hotspot in about 30 seconds

Picture of Hack any paid WiFi hotspot in about 30 seconds

(The above video was banned from YouTube on 9/12/2014 and hence has been re-uploaded to Vimeo. No explanation for the ban was given. The original YouTube video identifier was: Agodg3dmwaQ ).


Or rather, DON'T hack any paid WiFi hotspots, as that would be bad...

Also, don't turn your WiFi card off and then back on again after the hack to rectify any MAC address conflicts that might arise.

The commands are:

ifconfig en1 | grep ether
arp -a
sudo ifconfig en1 ether [mac address to spoof]

Note that the term "MAC address" has nothing to do with Macintosh computers. All computers, including Windows machines, have MAC addresses. This address is unique to your computer, but can be changed in software. The practice of copying someone else's MAC address is referred to as "spoofing". Spoofing a MAC address can get you through any MAC address filter, like the ones used by public WiFi hotspots.

 
Remove these adsRemove these ads by Signing Up

Step 1: Recon the Network

Picture of Recon the Network
* Connect to the WiFi network you wish to access.  It must be "public" in the sense that it's not encrypted with WPA or WEP.  Virtually all paid WiFi hotspots are public, relying on MAC address filtering to control access.  The MAC address filter is easily defeated, as shown below.

* Launch Terminal.

* Check your own MAC address:

ifconfig en1 | grep ether

* See who else is on the network:

arp -a

* Select the address of some machine on the network, and Command-C that shit.

Step 2: Spoof the MAC Address

Picture of Spoof the MAC Address
* Spoof the MAC address:

sudo ifconfig en1 ether [mac address to spoof]

Where it says "[mac address to spoof]", press Command-V to paste the victim's, er, I mean the machine-to-be-spoofed's MAC address.  Your machine may require an administrator password at this point.  This is the password you use to log into OS X on your own machine.

* Confirm the spoof:

ifconfig en1 | grep ether

Your displayed MAC address should now be different from what it was before.

Step 3: Enjoy FREE WiFi!

Picture of Enjoy FREE WiFi!
:D
wyldaxe8 days ago

http://rcm-na.amazon-adsystem.com/e/cm?t=tabbooingcom-20&o=1&p=12&l=ur1&category=fourthofjuly&banner=1MAEGZKP05J54EKY1D82&f=ifr&linkID=EQYCYYFR4R6U6G2E

MarcoD617 days ago

Hi, i'm marco de simone. Are we cousins?

lyratron (author)  MarcoD617 days ago
I have a cousin Mark, but I've never heard him called Marco. It's quite possible we're related in some way. Where are you from?
I'm from italy-apulia-lecce

In my experience, I have used the SmartKey WiFi Password Recovery to hack my own WiFi password, and it do work for me. I think you can Google search and get to know more about it. http://t.co/4f0pKjyLLR

brendaj220 days ago

contact me on brenda.clush@gmail.com for the wifi hack tool very fast and works perfect

reinoudtwj24 days ago

https://www.youtube.com/watch?v=BMDz5eLwZ8E

buddha45024 days ago

how could I make this work on an android???????

ItsMeFaheem25 days ago

Well its seems to be a fantastic article thank you for sharing just an amazing hack!

how to hack wifi password on android Keep it Up and share new tips as well!!

Ubuntu Its just an amazing Operating software. I had used it for many of my project at school and I must say I loved it.

AltheNewb1 month ago
Doesn't seem to work on bt WiFi with con in the UK. That said, I'm on a hackintosh and have to use en0. Not sure why.

Been here, done this, on Windows, about 7 years ago. Paid hotspots I used then were all open, thus no password. Bet you can still do this at any Flying J truckstop, just like I did back then.
Cheers.

antioch1 year ago
Now go and fetch the us the equivalent windows commands, will ya!
lyratron (author)  antioch1 year ago
With pleasure.

* Step 1: Delete Windows.

* Step 2: Install Ubuntu Linux.

* Step 3: Proceed with the hack more or less exactly as shown.

(It's easy, free and anyone can do it!) :D

Ubuntu ftw.

hahaha,,, I still have windows 7, but rarely ever use it, I need it for other things,, I installed Zorin Os,, Ubuntu Os but with more of a windows feel...

In my book, works great... love Zorin,, only pull up windows 7 like once a week now... for wireless hub use,,, would like to convert directly over to Zorin at a later date,,, would like to see new software come out for it,,, cant stand wine,,, downloaded Gambass3 in hopes to learn how to program more using the basic programming language,,, linux needs more user friendly software... will see how things go.. gambass is like visual basic for linux... slightly different code but not too bad... If more people coded software ( like using gambass ), for better gui's and such for linux,,, I feel more people would convert easier,, like installation programs and such... so people dont have to use the terminal and have to type sudo this or that.... sorry, became a fan of zorin, and dieing to program new easy programs,,, people are used to easy things in windows, and us as programmers need to help people find the good things in life, by making it easier for them,,, and for those of you out there, I had been a windows user for 20 years.....lol.. and recently switched to Zorin 2 months ago... commands are simple to learn if you try it,, dont be intimidated, and ask for help in forums....

3 ways.

1. The way you mentioned,

2. Install Ubuntu alongside Windows and use it when you need it.

3. Using a Virtual Computer, Such as Oracle VM VirtualBox, with Ubuntu loaded up onto it. (this can be all done on Windows, which maybe you wanted, antioch)

hahahahaha!
lyratron you are very smart!
Hahaha great instructions. Ubuntu is an amazing OS. Once Ubuntu Touch is working for my phone hardware I'm gonna flash my phone to it
Ahahaha!! You've made my morning, thanks :D
rbill11 month ago

You are not hacking, you are stealing somebody's property as you have, he/she does not have an access (MAC conflict).

dan38431 month ago

I'm not usually upset by stuff like this but having been the victim of spoofing to obtain personal info and also being spoofed by people who use a spoof to try to obtain a bad debt from a previous phone number. I've tried the "be nice" of telling the bottom feeding debt collectors that my phone number now belongs to a debt free person but they don't remove the number as promised. So, just because it's fun to do stuff like this it can have BAD consequences!

bmdx1 month ago

I've been Googling all night for this kinda tech. 1. will this work with inflight wifi? 2. do i need to change/reset my MAC address back? PS, I'm totally new to this. Thanks.

JoeH22 months ago

I work for a WiFi hotspot provider and this would not work on our networks as we isolate all wireless clients. Basically you would not be able to use arp to get the MAC addresses of other clients because your computer would only have access to the gateway device!

Are you sure? Have you tried it? I'd admit I haven't, but in the fundamental way it operates, ARP is very insecure. Though most modern routers have ARP poisoning protection enabled by default which should keep this from working, but still you have to try it before you can say for sure.

jcarter13 months ago

Noob, Im usually not a rude person but I strongly dislike script kiddys and wanna bes
Just a fyi for the people on here mac addresses ARE NOT computer ids they are hardware addresses all nics have them along with external network interfaces such as dial up modems or routers

This will ONLY work if you know the passkey to the network which then renders it pointless due to you would already be allow to use the network so you dont need to change your mac address, unless you are hacking a hotspot in this case this work work unless you crack the passkey and in this case unless its a corporation or a tech savvy person(which in both cases you would prob be detected before you even go to this point) as most people even governments dont use mac address filtering, also if it IS used its likely to have other security measures such as static ips & computer name enforcement in this case if you know the network you might be able to guess the ip you would need but would be caught

"The practice of copying someone else's MAC address is referred to as "spoofing"
No its not spoofing means to trick the other person or computer into thinking your somebody your not and can apply to ips, emails, domain names, ect

"Connect to the WiFi network you wish to access. It must be "public" in the sense that it's not encrypted with WPA or WEP. Virtually all paid WiFi hotspots are public, relying on MAC address filtering to control access. The MAC address filter is easily defeated, as shown below."
You must not live in the us, while you cannot connect to a secured wifi network you are right as I stated before but in the us this isnt true, even the ones that are such as hotels rely on other methods and mac spoofing wont work even if they are unsecured networks

lyratron (author)  jcarter13 months ago

I am ever amused by the number of people who claim this can't work merely because they lack the experience to know any better. Try it and get back to me. Also look up the terms "noob", "script kiddie" and "spoofing". A noob is someone new to something. There's nothing wrong with being a noob, but I've probably been doing stuff like this since you were in diapers. A "script kiddie" is someone who uses scripts and programs written by others to hack. I developed this little exploit myself, thank you very much! Finally, "spoofing" is "a situation in which one person or program successfully masquerades as another by falsifying data and thereby gaining an illegitimate advantage." (per Wiki). So yes, this is spoofing. http://en.wikipedia.org/wiki/MAC_spoofing As for being a "wanna be", sure - I'll admit to that. I wanna be a successful person, which is probably a big part of why I am! :D I don't usually have time to respond to hate mail, but I made an exception in your case because I feel it is my duty to help educate the general public on matters related to technology.

jcarter1 lyratron3 months ago

"I am ever amused by the number of people who claim this can't work merely because they lack the experience to know any better."
Didnt say it wouldnt work just said its pointless for what your instuctable is about

"Also look up the terms "noob", "script kiddie" and "spoofing". A noob is someone new to something. There's nothing wrong with being a noob, but I've probably been doing stuff like this since you were in diapers. A "script kiddie" is someone who uses scripts and programs written by others to hack. I developed this little exploit myself, thank you very much"

Yes is noob is someone new to something but also a insult for someone who posts stupid stuff trying to look leet, this also applys to a script kiddie but in this case it applys to hacking vs a skill in general
I doubt you have doing this since I was in diapers, I have over 12 years experience with computers & over 15 years experience in technology, electronics & physics

"Finally, "spoofing" is "a situation in which one person or program successfully masquerades as another by falsifying data and thereby gaining an illegitimate advantage.""
"The practice of copying someone else's MAC address is referred to as "spoofing"."
You contradicted your own self, spoofing is NOT the practice of copying someone elses MAC address but CAN include this

"don't usually have time to respond to hate mail, but I made an exception in your case because I feel it is my duty to help educate the general public on matters related to technology."
Funny as I feel the same way Im a peaceful person but I CANNOT stand when people spread false info I have a VERY low tolerance for ignorance

Mac address spoofing works to defeat mac filtering, yes
Does it "Hack any paid WiFi hotspot in about 30 seconds"
No
My point still stands

FAYLYA3 months ago

an how to get back to the original configuration? Thk

dalal3 months ago

Does this work for Mavericks OS as well on a macintosh?

goldenshuttle6 months ago

carrying Android fon...how to do it ?

pbarry31 year ago
I find using airodump-ng better for getting the MAC address of other computers.
It's a little harder to tell if they are connected to the wifi you want to use
but arp -a usually fails me