NetStumbler.org Forums - View Single Post - Bugreports for the Aircrack suite, version 2.2betaX

tekn0 · 07-15-2005

Kinda Strange And Only Happens Some Of The Time

VERSION=aircrack-2.2-beta6
SYSTEM=Slackware 1.0
ROUTER=2WIRE (Cant check the firmware)
CARD=NL-2511CD Plus EXT2
FIRMWARE=UPDATED FROM BETA TAR HEX FILES

I noticed this today when i was doing testing with hostap vs. wlan-ng.
It appears that when doing the classic arp-replay attack with wlan-ng, wlan-ng is able to inject the arp without needing to fake-accociate at all.
When i do the same attack with hostap, i need to fake-assocate every 25 seconds or the router will stop generating IV's.

Also i noticed and this is kinda wierd, is that when i do the attack with hostap and the fake-accoc every 25 seconds i am able to crack the 40bit key at around 50,000IVs (I have done this 2 times on a few routers). Then doing the same attack with wlan-ng and not fake-accoc at all i still have not been able to crack the key.

All in all it only happens some of the time but still worth mentioning:
wlan-ng injection seems much faster and some how needs no accocation, but i still have not been able to crack the key. (is it possiable a driver could produce bunk IVs?)
Hostap is a bit slower but seems much more reliable as it seems normal that i would have to fake-accoc every 30 secs or so. (plus cracking the key in 50k Ivs is nice)

My next test is to see how many IVs it will take to crack the 40bit key vi the wlan-ng method. Then try to figure out why this only happens some times.
I have a stong feeling its on my end and not the drivers or aircracks hehe

Thanks again and i hope this helps

07-15-2005	#45 (permalink)
tekn0 Registered Member Join Date: Jan 2005 Posts: 36	Kinda Strange Issue Kinda Strange And Only Happens Some Of The Time VERSION=aircrack-2.2-beta6 SYSTEM=Slackware 1.0 ROUTER=2WIRE (Cant check the firmware) CARD=NL-2511CD Plus EXT2 FIRMWARE=UPDATED FROM BETA TAR HEX FILES I noticed this today when i was doing testing with hostap vs. wlan-ng. It appears that when doing the classic arp-replay attack with wlan-ng, wlan-ng is able to inject the arp without needing to fake-accociate at all. When i do the same attack with hostap, i need to fake-assocate every 25 seconds or the router will stop generating IV's. Also i noticed and this is kinda wierd, is that when i do the attack with hostap and the fake-accoc every 25 seconds i am able to crack the 40bit key at around 50,000IVs (I have done this 2 times on a few routers). Then doing the same attack with wlan-ng and not fake-accoc at all i still have not been able to crack the key. All in all it only happens some of the time but still worth mentioning: wlan-ng injection seems much faster and some how needs no accocation, but i still have not been able to crack the key. (is it possiable a driver could produce bunk IVs?) Hostap is a bit slower but seems much more reliable as it seems normal that i would have to fake-accoc every 30 secs or so. (plus cracking the key in 50k Ivs is nice) My next test is to see how many IVs it will take to crack the 40bit key vi the wlan-ng method. Then try to figure out why this only happens some times. I have a stong feeling its on my end and not the drivers or aircracks hehe Thanks again and i hope this helps Last edited by tekn0 : 07-15-2005 at 11:55 PM.