Closed Wi-Fi networks with encryption WPA2/WPA3 or hidden SSID often become the object of interest - whether it's a forgotten password to your own router, the need to connect a guest, or an "amateur hacker" trying to test his skills. However, between legal restoration of access And unauthorized hacking there is a fine line, crossing which is fraught with not only technical problems, but also criminal liability under Article 272 of the Criminal Code of the Russian Federation ("Unauthorized access to computer information").
In this article we will examine in detail:
- 🔍 Legal methods connecting to a closed network (if you own it or have permission).
- 🛡️ How to protect your network from hacking if you are an administrator.
- ⚠️ Legal and technical risks unauthorized access.
- 💡 What to do if you forgot your password from your Wi-Fi.
Spoiler: "hack" a modern network with WPA3-Enterprise or 802.1X It's practically impossible without physical access to the equipment or a key leak. And trying to do it programmatically is a gamble with a 0.01% chance of success and a 99.9% chance of problems.
1. What is a "closed" Wi-Fi network: types of protection and their vulnerabilities
The term "closed network" is often used to refer to Wi-Fi with one of the following types of security:
- 🔒 Hidden SSID — the network does not broadcast its name, but it can be found manually.
- 🔐 WPA2-PSK/WPA3-PSK - password protection (the most common option).
- 🏢 WPA2/WPA3-Enterprise - corporate authentication via server (for example, Radius).
- 🚫 MAC address filtering — only authorized devices are connected.
Each of these methods has its own weak points, but their operation requires different levels of training:
| Type of protection | Vulnerabilities | Hacking difficulty (1-10) | Time to hack (using primitive methods) |
|---|---|---|---|
| Hidden SSID | The SSID is transmitted in clear text when connecting. | 2 | 5 minutes |
| WPA2-PSK (weak password) | Brute force attack by dictionary definition PMKID | 6 | From a few hours to weeks |
| WPA3-PSK | Vulnerability Dragonblood (fixed in new firmware) | 9 | Weeks/months (if there is a bug) |
| MAC filtering | MAC address spoofing, traffic interception | 4 | 10-30 minutes |
Important: even if the network uses an outdated one WEP (It is extremely rare), it takes a while to hack 3-5 minutes by using Aircrack-ngBut that doesn't mean it's worth trying: WEP Today, it's like an open door with a sign that says "Hack me," and the owners of such networks are usually aware of the risks.
2. Legal ways to connect to a closed network
If you network owner or have administrator permission, here are legal methods to restore access:
2.1. Password recovery via a router
The most secure way is to obtain the password from the router settings. To do this:
- Connect to the router via cable (Ethernet).
- Enter in your browser
192.168.0.1or192.168.1.1(the address is indicated on the device sticker). - Log in (default logins:
admin/admin,admin/1234). - Go to the section
Wireless → Security(names may differ).
If you don't remember your login details, please follow these steps: resetting the router button Reset (Hold for 10-15 seconds). After this, the settings will be reset to factory defaults, and the Wi-Fi password will be located on the sticker.
Make sure you have access to the factory data sticker|
Save current settings (if you have access to the web interface)|
Prepare a cable for connecting to a PC|
Make sure there are no important devices dependent on the current network.
-->
2.2 Using WPS (Wi-Fi Protected Setup)
Many routers support WPS — quick connection technology using a PIN code or a push-button. If this feature is active, you can:
- 🔢 Press the button WPS on the router (usually works for 2 minutes).
- 📱 Connect via the Wi-Fi menu on your device (select the network and click "Connect via WPS").
Warning: WPS Vulnerable to brute force attacks (especially if the PIN is 8 digits). Disable this feature in your router settings if you don't use it!
Why is WPS dangerous?
Attack Reaver or Bully A hacker can crack a PIN code in 4-10 hours, even if it's 8 digits long. This is because the router splits the PIN into two parts and checks them separately, reducing the number of combinations from 100 million to 11,000.
2.3. Guest network or QR code access
If you are an administrator, please set up guest network with a separate password. This is more secure than sharing the master key. For example, on routers ASUS or TP-Link this is done in the section Guest network.
Some modern routers (for example, Keenetic or MikroTik) support generation QR code to connect. This is convenient for guests and eliminates the need to dictate a complex password.
3. Why Wi-Fi Hacking Is Illegal: Legal Implications
In Russia and most countries around the world, unauthorized access to other people's networks is classified as cybercrime. In particular:
- 📜 Article 272 of the Criminal Code of the Russian Federation ("Unauthorized access to computer information") - up to 7 years' imprisonment if the hacking caused damage.
- 💸 Article 273 of the Criminal Code of the Russian Federation (Creating Malware) - if specialized tools like Kali Linux or Aircrack-ng.
- 🌍 International consequences - in the EU and the US, such actions are punishable by law CFAA (USA) or GDPR (if the hack resulted in a data leak).
Even if you “just tested” your neighbor’s network and didn’t cause any damage, the fact of unauthorized access is already an offense.In this case, your guilt can be proven by:
- 📡 Router logs (where all connections are recorded).
- 📱 The MAC address of your device.
- 🕵️♂️ Provider data (if the hack was carried out through their infrastructure).
⚠️ Attention: In 2023, more than 1,200 cases were opened in Russia under Article 272 of the Russian Criminal Code, 30% of which were for hacking Wi-Fi networks. The average fine was 150,000 rubles, and 15% of cases resulted in suspended prison sentences.
4. Technical risks of hacking: why it is dangerous for you
In addition to the legal consequences, hacking attempts are fraught with:
4.1. Honeypots
Some administrators configure honeypot - decoy networks that look like vulnerable Wi-Fi networks, but in reality:
- 🖥️ Records all connection attempts.
- 📈 They transmit information about the attacker to law enforcement agencies.
- 💣 May contain malware that will infect your device.
4.2. Data loss or device lock
Using tools like Kali Linux or Wifite without experience can lead to:
- 🗑️ Delete files on your PC (if the script contains errors).
- 🚫 Network card blocking (due to incorrect commands in
airmon-ng). - 🔌 Router failure (if you try to hack yours but enter the wrong command).
4.3. Leakage of your data
By connecting to someone else's network, you risk:
- 🕵️♂️ Become a victim MITM attacks (traffic interception).
- 💳 Transfer your logins/passwords (if the network is controlled by an attacker).
- 📱 Infect the device with viruses (via protocol vulnerabilities).
⚠️ Attention: In 2022, 18% of hacked Wi-Fi networks in Russia were controlled by cybercriminals, who used them to distribute banking Trojans (Cobalt Strike, Emotet).
5. How to Protect Your Network from Hacking: A Guide for Administrators
If you are a network owner, here is minimum set of measures for protection:
5.1. Setting up encryption and password
- 🔐 Use WPA3-PSK (or WPA2-PSK With
AES, if the devices do not support WPA3). - 🔑 Generate a password of length
12+ characterswith letters, numbers and special characters (example:k7#pL9$vR2!q). - 🔄 Change your password every 3-6 months.
5.2. Disabling vulnerable functions
WPS (if not used)|
Remote Management|
UPnP (Universal Plug and Play)|
Telnet access
-->
5.3. Additional security measures
| Measure | How to set up | Efficiency |
|---|---|---|
| MAC filtering | Allow only known devices | Average (MAC is easy to forge) |
| Guest network | Create a separate network for guests | High |
| VLAN | Split traffic across virtual networks | Very high |
| Firmware update | Install the latest version of the software | Critical (patches vulnerabilities) |
Prevention: Regularly check the connected devices in the router's web interface (section DHCP Clients or Connected Devices). Unknown MAC addresses are a reason to change your password.
6. What to do if you forgot your Wi-Fi password
The situation is familiar to many: the password is written on a piece of paper that has disappeared somewhere, or it was entered years ago. Here safe recovery methods:
6.1. View the password on the connected device
If at least one gadget (laptop, smartphone) is already connected to the network, the password can be extracted:
- 🖥️ Windows: Open
Control Panel → Network and Sharing Center → Change adapter settingsRight-click on the network → “Wireless Network Properties” → “Security” → check the “Show characters as you type” box. - 📱 Android (with root): Use the app WiFi Password Viewer.
- 🍎 MacOS: Open
Programs → Utilities → Keychain, find the network name.
6.2. Resetting the router to factory settings
If access to the web interface is lost:
- Click the button
Reseton the router (usually a paper clip is required). - Hold for 10-15 seconds until the indicators flash.
- Connect to the network with the factory name (eg.
TP-Link_1234). - The password is indicated on the router sticker.
⚠️ Attention: After resetting all settings (including port forwarding, static IP And parental control) will be lost. If the router is configured by the provider (for example, for IPTV), a second visit by a specialist may be required.
7. Wi-Fi Hacking Myths: What Actually Doesn't Work
The internet is full of "advice" on how to hack networks, 90% of which is either outdated or simply dangerous. Let's address the most common myths:
7.1. "You can hack any network in 5 minutes."
Reality:
- ⏳ WPA2 with a strong password (
12+ characters) takes months to crack even on a powerful PC. - 🛡️ WPA3 With SAE (Dragonfly) is almost impossible to brute force.
- 🔌 Modern routers (For example, ASUS RT-AX88U or Ubiquiti UniFi) block suspicious connections.
7.2. "Hacking programs work on a smartphone"
Apps like WiFi WPS WPA Tester or AndroDumpper:
- 🚫 Doesn't work against WPA2/WPA3 with a strong password.
- 📱 Often contain viruses or spyware.
- 📵 They can brick your phone (if they use undocumented Android features).
7.3. "Hidden SSID protects against hacking"
This is a dangerous misconception:
- 🔍 Hidden
SSIDvisible in traffic when connecting devices. - 📡 It is easily detected by programs like Wireshark or airodump-ng.
- ⚠️ Turn off broadcast
SSIDonly complicates legal connection.
FAQ: Frequently asked questions about closed Wi-Fi networks
❓ Is it possible to hack a network if you know the MAC address of an authorized device?
Technically yes: you can replace your MAC with an authorized one (this is called MAC-spoofing). However:
- Modern routers can block such attempts.
- The administrator will see duplicate MAC in the logs.
- This is a violation of the law (Article 272 of the Criminal Code of the Russian Federation).
❓ Why does my router show "KRACK vulnerability"?
KRACK (Key Reinstallation Attack) - protocol vulnerability WPA2, discovered in 2017. It allows traffic interception but not password cracking. Solution:
- Update your router firmware.
- Use WPA3, if the device supports it.
- Enable traffic encryption (for example, VPN).
❓ How can I check if my Wi-Fi has been hacked?
Signs of unauthorized access:
- 📉 Unexpected drop in internet speed.
- 🔌 Unknown devices in the list of connected devices (checked in the router's web interface).
- 🔄 Changing router settings (e.g. DNS servers).
What to do:
- Change your Wi-Fi password.
- Update your router firmware.
- Enable connection logging.
❓ Is it legal to use other people's open Wi-Fi networks?
Legally, this is a "gray area":
- ✅ If the network opened intentionally (for example, in a cafe with a sign saying "Wi-Fi for guests"), its use is usually permitted.
- ❌ If the network closed, but poorly protected (for example, password
12345678), the connection may be considered as a hack. - ⚠️ In any case do not use such networks for banking transactions — there is a high risk of data interception.
❓ Is it possible to hack Wi-Fi with Raspberry Pi?
Raspberry Pi often used for network security testing (e.g. with Kali Linux). However:
- 🛡️ Against WPA3 or strong WPA2-the password is useless.
- ⚡ Consumes a lot of energy (inefficient for brute force).
- ⚖️ Using it to hack into other people's networks is a criminal offense.
Legal use: testing his own networks for vulnerabilities.