Internet access w/ just handshake? WPA Kali
 

If you've gotten as far as the wpa handshake, is it possible to grab an internet connection w/o having to actually crack the password?

Hi...

You mean hack into someone else's network? If so, then one suggestion: don't. Use a hotspot or your own connection. Stealing is not only wrong, it hurts everyone involved, including yourself. :(

Regards...

I'm simply using it against my own so others can't. So if the password is good enough to not easily be cracked with a dictionary of something like 9000000 entries, I'd have to assume is good enough. I'm also just playing around w/ Linux, not trying to get myself in jail

I see, ok. That's why I said, "if so," I didn't want to automatically assume. I apologize if I sounded abrasive. Just FYI, you might want to include information like this when making a post of this nature. I've seen one person a while back actually ask for help with an illegal act. :(

Not sure if it helps or not but from this article, I get the impression that it's not possible.

Regards...

Internet access w/ just handshake? WPA Kali
 

Yes it is possible with the right wifi card, a stronger antenna attached to the wifi card, and using aircrack-ng.

A lot of wifi cards have a problem making a strong enough signal to de-authenticate users who are connected to an access point in order to steal the authentication handshake when the victim tries to reconnect. That is where the stronger antenna comes in.

And is there some way to block that? I don't really think something like that would happen where I live, but if can be prevented, why not.. I cracked mine and got the handshake with aircrack-ng & aireplay commands. I also tried with wifite (I think, forgot the name.. There was a couple other things I was messing with), took a little longer, though not as many commands, but got the shake with that as well. Anyway, thanks for your reply.

Internet access w/ just handshake? WPA Kali
 

Prevent your access point from being cracked by enabling MAC address filtering, not broadcasting your BSSID by leaving it hidden, making your wifi signal only available within the radius of your house or business.

I am sure there are other ways. The most effective thing is to limit the wifi signal to a specific radius.

My router is an Asus RT-N16 ,which is old now, but I have the most recent build of the DD-WRT firmware flashed onto it. When I set up my access point, I always do a site survey to see where / how far my wifi signal is reaching. I limit the signal so that it is only strong enough to use in my house.


I am sure someone more advanced in wireless security may have a better idea of how to appropriately secure WiFi though. Let's hope they chime in here.

Internet access w/ just handshake? WPA Kali
 

I did forget the most obvious way to prevent wifi from being cracked. Use a complicated 15 to 20 character encryption key/password.

A less obvious thing to prevent this breach is to disable WPS, as this is easier to Crack than WPA/WPA2.

People do go around hacking wifi....

More than 10 years ago now, I used to go wardriving with a strong antenna attached to the outside of my car to boost the power of my netbook/laptop. One of the machines I used to use to drive around was an Asus EEE PC 2g Surf (back when it first came out). I even logged the location of each access point I encountered using a GPS dongle and a SQL database.