(Aircrack)Yet another WEP cracking tool for Linux - Page 12

bigbadbaugh · 09-13-2004

So best thing to do Devine is when you go to start a new session you just save under another name, eg, attempt1, then attempt2, etc

Then when you have enough IV's and you go to run Aircrack you load each file?

devine · 09-21-2004

Quote:

Originally Posted by bigbadbaugh

So best thing to do Devine is when you go to start a new session you just save under another name, eg, attempt1, then attempt2, etc. Then when you have enough IV's and you go to run Aircrack you load each file?

Yep precisely. Under Linux you just run aircrack *.pcap and it scans each file for IVs. As for Windows, I'll add in the next release an option to load all pcap files from a specified directory.

bigbadbaugh · 09-21-2004

Arr right nice one.

Any ideas when the next versions of Aircrack and Airodump will be released.

godmod · 09-23-2004

Sorry if i'm repeating a question.. but will aircrack the next ver. support centrino intel drivers on win xp? And if not would this work.. http://www.wireless-computer-network.../more_info.asp. Or any other suggestions for --external-- USB or PCMCIA cards. Thanks..

KoreK · 09-23-2004

Quote:

Originally Posted by godmod

Sorry if i'm repeating a question.. but will aircrack the next ver. support centrino intel drivers on win xp?

win xp, is that a new linux distro?

devine · 09-24-2004

Quote:

Originally Posted by godmod

Sorry if i'm repeating a question.. but will aircrack the next ver. support centrino intel drivers on win xp?

airodump.exe depends on the peek driver, so you'd better ask WildPackets instead. Anyway your question rather belongs to the windows section.

Twisted · 10-13-2004

At this point I have 1.2 million IV's as shown in airodump, and a 560 meg .cap file.

At what point could I safely assume I had enough infomration for aircrack to have a chance to crack the WEP key.

Trying to do a real world wep crack for experience, using the company network, (ie real world).

T

devine · 10-19-2004

Quote:

Originally Posted by KoreK

You need 2 cards to make it work (aj0 and eth1 are the default). That's pretty obvious.

BTW, just been able to patch hostap so that it injects and monitors at the same time - works like a charm so far

(card doesn't randomly freeze like with wlan-ng). The trick was to change the card's MAC to the same MAC as the Access Point, so that the firmware doesn't drop encrypted frames with FromDS=0,ToDS=1. Also had to patch the rx function a little bit.

sylvain · 10-19-2004

Quote:

Originally Posted by devine

BTW, just been able to patch hostap so that it injects and monitors at the same time - works like a charm so far

(card doesn't randomly freeze like with wlan-ng). The trick was to change the card's MAC to the same MAC as the Access Point, so that the firmware doesn't drop encrypted frames with FromDS=0,ToDS=1. Also had to patch the rx function a little bit.

Looks great. In Aircrack/aireplay 2.2 will you use wlan-ng or hostap ? you seem to work on both ...

devine · 10-19-2004

Quote:

Originally Posted by sylvain

Looks great. In Aircrack/aireplay 2.2 will you use wlan-ng or hostap ? you seem to work on both ...

I'll stick with hostap. Contrary to wlan-ng, it offers that comfortable iwconfig interface, doesn't randomly hang and doesn't make the kernel panic when the card is ejected while being used...

Also, I've just noted: sniffing and monitoring using the same card is sub-optimal (with either hostap or wlan-ng), because you'll miss half the IVs. So with only one Prism2 card you may get 200 IVs/s but if you start monitoring with another card (not necessarily a Prism2) you'll get about 400 IVs/s from that second interface. I guess the reason is that wireless cards really function like half-duplex devices.

If the injected frames are properly ACKed by the AP the figures are even better, about 650 IVs/s in best possible conditions (using two cards, close to the AP). In theory, this makes it possible to break for a few minutes into a 802.1X network if key regeneration is >= 30 mn.

_watcher · 10-20-2004

Hey Devine! I have a D-Link DWL520.

Windows XP & Windows2000: Airodump shows access points and packets. Saves iv's. IV's stop collecting anywhere from 70 to 900. It still shows traffic but stops saving IV's. ????

Linux: Airodump shows traffic but doesn't save any IV's. Any ideas?

Thanks for your time =]

devine · 10-21-2004

Quote:

Originally Posted by _watcher

Linux: Airodump shows traffic but doesn't save any IV's. Any ideas?

Are you generating traffic ? (ping flood, file transfers, etc.) When using another program (Kismet for example), does the same beahviour also occurs ?

Clyde Vargus2 · 10-21-2004

Noob question alert...

Where can I find some sort of instruction manual, if one exists, for Aircrack 2.1 for a Windows XP system? I tried some searching on yahoo and google but didn't find anything definitive.

devine · 10-21-2004

There's no such thing as an "aircrack manual". There is however, some documentation (which you should read).

G8tK33per · 10-21-2004

Quote:

Originally Posted by devine

There's no such thing as an "aircrack manual". There is however, some documentation (which you should read).

I get "page unavailable".

09-23-2004	#169 (permalink)
godmod doppelganger Join Date: Sep 2004 Location: USA Posts: 1	Centrino.. Sorry if i'm repeating a question.. but will aircrack the next ver. support centrino intel drivers on win xp? And if not would this work.. http://www.wireless-computer-network.../more_info.asp. Or any other suggestions for --external-- USB or PCMCIA cards. Thanks..

10-13-2004	#172 (permalink)
Twisted Registered Member Join Date: Dec 2003 Posts: 185	How many IV's needed At this point I have 1.2 million IV's as shown in airodump, and a 560 meg .cap file. At what point could I safely assume I had enough infomration for aircrack to have a chance to crack the WEP key. Trying to do a real world wep crack for experience, using the company network, (ie real world). T

10-20-2004	#176 (permalink)
_watcher Registered Member Join Date: Oct 2004 Posts: 6	problems. Hey Devine! I have a D-Link DWL520. Windows XP & Windows2000: Airodump shows access points and packets. Saves iv's. IV's stop collecting anywhere from 70 to 900. It still shows traffic but stops saving IV's. ???? Linux: Airodump shows traffic but doesn't save any IV's. Any ideas? Thanks for your time =]

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

09-13-2004	#166 (permalink)
bigbadbaugh Registered Member Join Date: Aug 2004 Posts: 25	So best thing to do Devine is when you go to start a new session you just save under another name, eg, attempt1, then attempt2, etc Then when you have enough IV's and you go to run Aircrack you load each file?

09-21-2004	#168 (permalink)
bigbadbaugh Registered Member Join Date: Aug 2004 Posts: 25	Arr right nice one. Any ideas when the next versions of Aircrack and Airodump will be released.

10-21-2004	#178 (permalink)
Clyde Vargus2 Registered Member Join Date: Sep 2004 Posts: 28	Noob question alert... Where can I find some sort of instruction manual, if one exists, for Aircrack 2.1 for a Windows XP system? I tried some searching on yahoo and google but didn't find anything definitive.

10-21-2004	#179 (permalink)
devine Emergence Join Date: Jul 2004 Location: Paris Posts: 389	There's no such thing as an "aircrack manual". There is however, some documentation (which you should read).