Quote:
|
Originally Posted by sylvain
Looks great. In Aircrack/aireplay 2.2 will you use wlan-ng or hostap ? you seem to work on both ...  |
I'll stick with hostap. Contrary to wlan-ng, it offers that comfortable iwconfig interface, doesn't randomly hang and doesn't make the kernel panic when the card is ejected while being used...
Also, I've just noted: sniffing and monitoring using the same card is sub-optimal (with either hostap or wlan-ng), because you'll miss half the IVs. So with only one Prism2 card you may get 200 IVs/s but if you start monitoring with another card (not necessarily a Prism2) you'll get about 400 IVs/s from that second interface. I guess the reason is that wireless cards really function like half-duplex devices.
If the injected frames are properly ACKed by the AP the figures are even better, about 650 IVs/s in best possible conditions (using two cards, close to the AP). In theory, this makes it possible to break for a few minutes into a 802.1X network if key regeneration is >= 30 mn.