Quote:
|
Originally Posted by devine
Ok. Could you send me the two keystreams ? And also the original packet and the WEP key if possible.
|
Had a look at your files. It appeared you used the aireplay keystream and mistakingly named the resulting arp request "arp-chopchop". Similarly, you named the arp forged with the chopchop keystream "arp-aireplay".
The "arp-aireplay" forged packet (created from the chopchop keystream) didn't worked, because the keystream format used by chopchop is different from the keystream format used by attack 4 in aireplay. Hence the different sizes. But if we look closer at the keystreams, they are identical:
Code:
xxd stream-chopchop |head -n 3
0000000: e6fc b500 0c01 0000 b001 0000 0401 0000 ................
0000010: 4701 0000 3701 0000 a301 0000 2701 0000 G...7.......'...
0000020: 9801 0000 f001 0000 b201 0000 0001 0000 ................
Code:
xxd stream-aireplay |head -n 3
0000000: e6fc b500 0cb0 0447 37a3 2798 f0b2 0035 .......G7.'....5
0000010: 3e01 cae6 7f03 56ac aba4 c874 aeee 8b19 >.....V....t....
0000020: 75f7 72be 54c9 e0c5 e282 8787 1a38 d13e u.r.T........8.>
As of now, one cannot use the chopchop xor mask (keystream) with arpforge.
EDIT: some people reported that chopping with prism54 sometimes hangs; I'm looking into it.