Quote:
|
Originally Posted by Fr0zt
alright, guess i'll just have to exploit it when you guys are in the mood... slowly bringing my reputation down... lol ya, i'm just reading that guide you linked to, will try the deathentication soon...
Edit: alright, found the following syntax:
airmon.sh start wlan0
airodump wlan0 out 6 (switch to another console)
aireplay -0 10 -a 00:13:10:30:24:9C wlan0
aireplay -3 -b 00:13:10:30:24:9C -h 00:09:5B:EB:C5:2B wlan0
I guess I'll have to change out the wlan0's for ath0's, but I'm confused about the different mac addresses. I think I can assume that the WAPs address is 00:13:10:30:24:9C and the internal computers address is 00:09:5B:EB:C5:2B. Just basing this on the fact that the target computer's mac address isn't usually unacompanied by the WAPs mac. Also, found a problem in the WEP Cracking Part 2 article. It says to use /dev/uba1 for mounting the usb stick, but it should be /dev/sda1... Thanks again
Edit: also I think I remember this from the airodump syntax, the "6" means channel 6? so I should change that number to the channel that the target AP is on?
|
If you type "aireplay" with nothing else, you'll get the short help screen which will tell you what each option means a, b, h, etc. From the aircrack docs:
Quote:
|
In the following examples, 00:13:10:30:24:9C is the MAC address of the access point (on channel 6), and 00:09:5B:EB:C5:2B is the MAC address of a wireless client.
|
Then you can make sense of the examples they use. And yes, the 6 in the example above is the channel number.
Quote:
airmon.sh start ath0
airodump ath0 yourcapturefilename channel#
etc...
|