NetStumbler.org Forums - View Single Post

bigbadbo · 03-21-2007

Hi all

This is my first Post on this site so hang in their with me !.

OK ...

KOREK chopchop theory obtains the Keystream of a particular packet, Idealy from an ARP packet from the AP.

And then we can forge an ARP Packet with packetforge-ng and some other stuff !

However, if we inject our new forge ARP packet, were still only generating as much traffic, according to the size of that ARP (68bits)

How about if you apply that keystream to a much larger packet, for instance ...
a GET packets, thats 400+ bits, this will generate much more traffic leading to a quicker attack

I know packetforge-ng has a custom packet capability, but im unsure how to use it

regards
Kai

03-21-2007	#56 (permalink)
bigbadbo Registered Member Join Date: Mar 2007 Posts: 3	idea to crack WEP with chopchop Hi all This is my first Post on this site so hang in their with me !. OK ... KOREK chopchop theory obtains the Keystream of a particular packet, Idealy from an ARP packet from the AP. And then we can forge an ARP Packet with packetforge-ng and some other stuff ! However, if we inject our new forge ARP packet, were still only generating as much traffic, according to the size of that ARP (68bits) How about if you apply that keystream to a much larger packet, for instance ... a GET packets, thats 400+ bits, this will generate much more traffic leading to a quicker attack I know packetforge-ng has a custom packet capability, but im unsure how to use it regards Kai