Hi!
Weplab should be able to sniff packets as long as you set manually your card into monitor mode.
Nevertheless you can capture packets with any software that uses pcap format (like kismet, ethereal, tcpdump...) and then use weplab to crack the key. The only point is that depending on how did you set the monitor mode, you may need --prismheader and/or --fcs.
Issue ./weplab --debug 1 -a ./myfilepcap.dump
It will tell you if you need --prismheader, but you still need to know if --fcs is needed.
Then try to crack with ./weplab --debug 1 -k 128 -r ./myfilepcap.dump ./myfilepcap.dump
Yes, you have to specify the file twice. One time for "control packets" to test candidate keys, and another time for needed packets for the statistical attack.
New version 0.0.8 is out, be sure to use this one. It includes new amazing optimizations (Korek's attacks).
Quote:
|
Originally Posted by wiz561
Hi!
Does anybody know the usuage if you would like to use a tcpdump (from kismet) file? For some strange reason, Kismet works fine in capturing packets, but if I use something else (like weplab), it doesn't like my network monitor drivers.
I tried to use a kismet dump file, but it didn't get me very far.. :-(
Thanks for your help!
|