For those of you that run bsd and want to do some wep cracking.. I'll be releasing my own implementation of "Weaknesses in the Key Scheduling Algorithm of RC4" either later on today or tomorrow that you can try out if you like. I have been able to verify that my implementation works almost all the time as long as you have at least 60 weak ivs for each key byte. I'll also be providing test logs so you can try it out for yourself without having to wait a few hours to generate enough traffic. I've also implemented some of Tim Newsham's wep_tools methods into dweputils which allows you to brute force using the 21-bit password generated key space in a fairly small amount of time (around 30 seconds on my G4 Powerbook, or 10 seconds on one of our quad xeons). There will also be support for brute forcing the entire 40-bit or 104-bit keyspace (if you have a fast enough machine or distributed environment), cracking using a wordfile, and multi-process SMP support for FreeBSD.

http://www.dachb0den.com/projects/bsd-airtools.html