Best Hardware & Software(s) Combination?

D3ADLiN3 · 07-27-2006

Hey Guys,

Ive been asked to carry out some Pen-testing on a new(ish) wireless install for one of my customers so im going wipe one my lappys and install a fresh setup.

Now my question is:

Which flavour of *nix is most compatible with AirCrack/Reinject, Kismet, etc?

and...

Which is the best card out for *nix? and how are the drivers to install?

I used to use RH9 on one of my lappys with a Orinoco Gold Classic card but used to have serious problems with drivers/getting things to work, I never managed to get reinjection working.
I know there are a variety of Bootable CDs out there, but Id rather have a permentant install on a laptop.

Thanks

D3ADLiN3

Dutch · 07-27-2006

Quote:

Originally Posted by D3ADLiN3

Hey Guys,

Ive been asked to carry out some Pen-testing on a new(ish) wireless install for one of my customers so im going wipe one my lappys and install a fresh setup.

Now my question is:

Which flavour of *nix is most compatible with AirCrack/Reinject, Kismet, etc?

and...

Which is the best card out for *nix? and how are the drivers to install?

I used to use RH9 on one of my lappys with a Orinoco Gold Classic card but used to have serious problems with drivers/getting things to work, I never managed to get reinjection working.
I know there are a variety of Bootable CDs out there, but Id rather have a permentant install on a laptop.

Thanks

D3ADLiN3

So which InfoSec company in Manchester is it you are working for ?

Dutch

theprez98 · 07-27-2006

Quote:

Originally Posted by Dutch

So which InfoSec company in Manchester is it you are working for ?

Dutch

He's starting his own company you see. Once he gets going he's also going to start his own infosec/wireless blog.

Dutch · 07-27-2006

Quote:

Originally Posted by theprez98

He's starting his own company you see. Once he gets going he's also going to start his own infosec/wireless blog.

/shakes puny fist in the direction of Iraq...
Damn you, I thought I was beyond ruined keyboards on this forum...

Dutch

Thorn · 07-27-2006

1) Slackware 10 has worked well for me. Understand however, that beliefs about distros are almost like religous arguments. Everyone has an opinion, and most are equally valid (or invalid), depending on your point of view.

2) As has been often said in the past, there is no one best wireless card.

Define your tasks.
Determine what software will accompish those tasks.
Purchase the card(s) depending which cards will work with the software packages.

Most of us carry at least three of four cards at a minimum. Personally, I carry a lot more.

D3ADLiN3 · 07-27-2006

lol I work in London not Manchester, and I wont comment on who I work for otherwise people will be ringing me up

Quote:

Originally Posted by Thorn

1) Slackware 10 has worked well for me. Understand however, that beliefs about distros are almost like religous arguments. Everyone has an opinion, and most are equally valid (or invalid), depending on your point of view.

2) As has been often said in the past, there is no one best wireless card.

Define your tasks.
Determine what software will accompish those tasks.
Purchase the card(s) depending which cards will work with the software packages.

Most of us carry at least three of four cards at a minimum. Personally, I carry a lot more.

thanks for the reply, my 'religion' is FC, all my servers run it, so im tempted to go down that route

well ill be auditing the distance the AP can be accessed based apon a card with no additional external attena, and the current security setup.
I dont know if they will be using WEP or WPA, if its a newish setup I assume it will be WPA

Thorn · 07-27-2006

FC works fine for servers and work stations, I use it myself for that purpose. However (here's that opinion thing), I find it too damned bloated for a laptop, especially a dual-boot laptop.

Dutch · 07-27-2006

Here's my opinion, because opinions are just like assholes - Everybody has one.

Debian for an easily configurable distro with a great package system. You can make it as lean or as bloated as you want. Use one of the Debian based distro's like Ubuntu, Kubuntu, etc, if you want a quick setup with most normal tools and a working desktop, then add the tools you need for the tasks you want to accomplish, either from the package repository, or by compiling them from source.

Gentoo if you want a distro where everything you install* is built easily and semiautomatic according to the specs of your box.

Slackware if you want to build stuff from sources and in the process also learn how a *nix system is setup and works.

RH/FC if you need servers or desktop workstations that just should be working, and you don't mind paying for support if you need it.

Personally I run Debian on the laptop, because I'm lazy enough to install from the repositories, and only compile when I make fixes, or adapt stuff to work the way I want it, which isn't allways the way other people want it to work.

Dutch

*As long as there's an emerge script for it, otherwise you are pretty much on your own

theprez98 · 07-27-2006

Quote:

Originally Posted by Dutch

Here's my opinion, because opinions are just like assholes - And I am one.

FIXED!

<ducks and runs for cover (and there is plenty of cover around here)>

Dutch · 07-27-2006

Quote:

Originally Posted by theprez98

FIXED!

<ducks and runs for cover (and there is plenty of cover around here)>

You can run - but you'll just die of heat extortion down there...

Dutch

beakmyn · 07-27-2006

RedHat = Volkswagen
You go to the dealer and pick one out and you get what it comes with and if you want more you'll have to pay extra and wait.

Gentoo = Kit Car
You buy all the pieces and then put them all together. Some pieces are missing and others don't fit. After 7 years you've more or less got what looks like a car and drives but there's always something that doesn't quite fit so you have to fix it.

Debian = Chevrolet
You go the dealer and pick out the model then you start picking out all you other options like color, engine, accessories

Slackware = A classic car
It's all there but if you want the latest and greatest you're gonna have to make some changes. Sometimes the parts are hard to find but when you're all done you'll have a nice ride

LiveCD = A leased vehicle or Rental
You more or less get all the newest stuff but it's not really yours. You have to give it back when your lease if up but you do usually have the option to buy it and own it.

Damn Small Linux, Puppy Linux = Mini Cooper
Exotic and small and does what you need it to do but don't expect to win too many street races with it.

Unix = Toyota Prius
The people that use it are fanatics and will come up with things you never imagined.

D3ADLiN3 · 07-27-2006

ok, How about cards and drivers guys?

Dutch · 07-27-2006

Quote:

Originally Posted by D3ADLiN3

ok, How about cards and drivers guys?

Thats depended on the kernel, and on the chipset manufacturers.
Kernels <= 2.6.11 has fairly good support for Wireless cards.
Hermes cards are also supported by the kernel included drivers, albeit without RF-mon support. You need to patch and compile for that.

Atheros cards using the Madwifi drivers are pretty stable and full featured. Same goes for Prism54 FullMAC cards. Less so for Prism54 SoftMac cards.

RT 2400 + RT 2500 based cards also has good support, and a fairly stable driver.

Same goes for Centrino IPW 2100 and IPW 2200 cards.

But again, it all comes down to what you want to do. If standard net connectivity is all you desire, even a Broadcom card is usable, either with the NDISWrapper package, or by way of the experimental reverse engineered BCM34xx driver.

If you want to do other things, see Thorn's post and start researching. Mr. Google knows the answer, if you are a Jeopardy grandmaster and knows the question.

Dutch

Thorn · 07-27-2006

The driver will depend on the card. The card will depend on the software, which is of course dependant on the task. You need to specifically define what you are going to do, and then pick the card(s) to match the software and tasks.

e.g. Task: General wireless reconnaissance. There are several choices for software under Linux. In my case kismet makes a lot sense. Monitor mode is needed to run kismet. Based on all of that, the ORiNOCO 8470 card is prefered, as it has an antenna connector, and depending on what signal I'm seeking, I may be attaching several different antennae over the course of the day. To use that card, then mad-wifi drivers are need, as they support monitor mode.

Do you see how this works?

Chris · 07-27-2006

Quote:

Originally Posted by Dutch

Thats depended on the kernel, and on the chipset manufacturers.
Kernels <= 2.6.11 has fairly good support for Wireless cards.
Hermes cards are also supported by the kernel included drivers, albeit without RF-mon support. You need to patch and compile for that.

Actually that's not true anymore. I am not sure at what revision the kernel started allowing you to compile in rfmon with hermes, but I know that 2.6.16 does. You can either use the module for hermes or compile right into the kernel and rfmon works perfectly.

07-27-2006	#1 (permalink)
D3ADLiN3 Registered Member Join Date: Dec 2004 Posts: 5	Best Hardware & Software(s) Combination? Hey Guys, Ive been asked to carry out some Pen-testing on a new(ish) wireless install for one of my customers so im going wipe one my lappys and install a fresh setup. Now my question is: Which flavour of nix is most compatible with AirCrack/Reinject, Kismet, etc? and... Which is the best card out for nix? and how are the drivers to install? I used to use RH9 on one of my lappys with a Orinoco Gold Classic card but used to have serious problems with drivers/getting things to work, I never managed to get reinjection working. I know there are a variety of Bootable CDs out there, but Id rather have a permentant install on a laptop. Thanks D3ADLiN3

07-27-2006	#5 (permalink)
Thorn Did you do the math? Join Date: Apr 2002 Location: Villa Straylight Posts: 10,096	1) Slackware 10 has worked well for me. Understand however, that beliefs about distros are almost like religous arguments. Everyone has an opinion, and most are equally valid (or invalid), depending on your point of view. 2) As has been often said in the past, there is no one best wireless card. Define your tasks. Determine what software will accompish those tasks. Purchase the card(s) depending which cards will work with the software packages. Most of us carry at least three of four cards at a minimum. Personally, I carry a lot more. __________________ Thorn "I'm The Doctor. I'm a Time Lord. I am from the planet Gallifrey in the constellation Kasterborous. I'm 903 years old and I am the man who is going to save your lives and all 6 billion people on the planet below... You got a problem with that?"

07-27-2006	#7 (permalink)
Thorn Did you do the math? Join Date: Apr 2002 Location: Villa Straylight Posts: 10,096	FC works fine for servers and work stations, I use it myself for that purpose. However (here's that opinion thing), I find it too damned bloated for a laptop, especially a dual-boot laptop. __________________ Thorn "I'm The Doctor. I'm a Time Lord. I am from the planet Gallifrey in the constellation Kasterborous. I'm 903 years old and I am the man who is going to save your lives and all 6 billion people on the planet below... You got a problem with that?"

07-27-2006	#8 (permalink)
Dutch Humourless EuroMod. Join Date: Mar 2004 Location: City of Mermaids, Denmark Posts: 6,813	Here's my opinion, because opinions are just like assholes - Everybody has one. Debian for an easily configurable distro with a great package system. You can make it as lean or as bloated as you want. Use one of the Debian based distro's like Ubuntu, Kubuntu, etc, if you want a quick setup with most normal tools and a working desktop, then add the tools you need for the tasks you want to accomplish, either from the package repository, or by compiling them from source. Gentoo if you want a distro where everything you install* is built easily and semiautomatic according to the specs of your box. Slackware if you want to build stuff from sources and in the process also learn how a nix system is setup and works. RH/FC if you need servers or desktop workstations that just should be working, and you don't mind paying for support if you need it. Personally I run Debian on the laptop, because I'm lazy enough to install from the repositories, and only compile when I make fixes, or adapt stuff to work the way I want it, which isn't allways the way other people want it to work. Dutch As long as there's an emerge script for it, otherwise you are pretty much on your own __________________ All your answers are belong to Google. SEARCH DAMMIT! Warning. Warning. Low C8H10N4O2 level detected. Operator halted....

07-27-2006	#11 (permalink)
beakmyn root\.workspace\.garbage. Join Date: Aug 2003 Posts: 4,805	RedHat = Volkswagen You go to the dealer and pick one out and you get what it comes with and if you want more you'll have to pay extra and wait. Gentoo = Kit Car You buy all the pieces and then put them all together. Some pieces are missing and others don't fit. After 7 years you've more or less got what looks like a car and drives but there's always something that doesn't quite fit so you have to fix it. Debian = Chevrolet You go the dealer and pick out the model then you start picking out all you other options like color, engine, accessories Slackware = A classic car It's all there but if you want the latest and greatest you're gonna have to make some changes. Sometimes the parts are hard to find but when you're all done you'll have a nice ride LiveCD = A leased vehicle or Rental You more or less get all the newest stuff but it's not really yours. You have to give it back when your lease if up but you do usually have the option to buy it and own it. Damn Small Linux, Puppy Linux = Mini Cooper Exotic and small and does what you need it to do but don't expect to win too many street races with it. Unix = Toyota Prius The people that use it are fanatics and will come up with things you never imagined. __________________ Daughter with arms inside shirt: "Daddy I'm not Armish" ┌──────────────────────────────┐ ╞ NS Icons Explained\|et hoc genus omne ╡ └──────────────────────────────┘

07-27-2006	#12 (permalink)
D3ADLiN3 Registered Member Join Date: Dec 2004 Posts: 5	ok, How about cards and drivers guys?

07-27-2006	#14 (permalink)
Thorn Did you do the math? Join Date: Apr 2002 Location: Villa Straylight Posts: 10,096	The driver will depend on the card. The card will depend on the software, which is of course dependant on the task. You need to specifically define what you are going to do, and then pick the card(s) to match the software and tasks. e.g. Task: General wireless reconnaissance. There are several choices for software under Linux. In my case kismet makes a lot sense. Monitor mode is needed to run kismet. Based on all of that, the ORiNOCO 8470 card is prefered, as it has an antenna connector, and depending on what signal I'm seeking, I may be attaching several different antennae over the course of the day. To use that card, then mad-wifi drivers are need, as they support monitor mode. Do you see how this works? __________________ Thorn "I'm The Doctor. I'm a Time Lord. I am from the planet Gallifrey in the constellation Kasterborous. I'm 903 years old and I am the man who is going to save your lives and all 6 billion people on the planet below... You got a problem with that?"

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode