Kismet

03-29-2002

Hello all. I am running RH 7.2 with an Orinoco card. I have it running in RH with nor problems. I downloaded and installed kismet without hitch, but when I ran it nothing happened. Upon further investigation, I found that I had to apply a patch to allow the Orinoco to drop in to monitor mode. This part is eluding me. Could someone give me a little help to get Kismet up and running?

Thanks!

04-04-2002

get on the kismet list

04-04-2002

You need to patch you driver first to allow rfmon mode, thats right. I cannot assist you sorry, but as i heard in our forum at http://www.remote-exploit.org. It is simple to do. Some of the wellenreiter users there made a post.

Greetings

max

04-10-2002

I don't know about red hat , but i'm using SuSe 7.2 with the standard wlan_ng drivers and a Orinoco silver card. I,ve compiled Kismet to Prism2, because i used a different card first...conceptronic C11. To my surprice Kismet works better than ever (great dump files...no need for Ethereal if you do something like: cat Kismetblabla.dump|strings|more)

Grtz,

LostSon

04-10-2002

these patches are not simple to install and the instructions are questionable at best (when they exist) and I'm an experienced patch installer/kernel compiler.

There are other matters at hand as well. The firmware revision on the PC card makes as much a difference as having/using the right kernel modules.

-SAU

Max,

I tried your software but I'm not sure what it actually did. It did see my cisco card and it did detect my home AP at least according to the configuration screen but the scanner screen never showed any changes other than to say it found 5 packets.

I tried the patch you suggested from source_forge but it killed my ability to configure the patched kernel. the patch caused a parse error in some "Configure.in" file. I even got the 2.4.3 kernel it was originally diffed from and got the same results. I ended up using my unpatched 2.4.18 kernel.

Fozzy_wozzy_woo · 04-18-2002

im new to the linux stuff. well so new i havent even installed it yet as i am trying to get help on that.

I have gone to www.kismeta.com as this is what came up in the search engine. is this the right kismet. web page or is there another befor i start to try to readup about the software and what it can do. i say this as i havent been able to find any thing about wireless in the website.

i have looked through the kismet threads here and people talk about this software and i want to know some things please.

What is Kismet. ?
How is it used? as i have read the page on the web site and it contridicts what people have said in these forums on it finding ip address's

i would like to use it in the security audits i am doing now but i need to know how it works first before i look a fool.

As I belive Kismet will find AP's that have there SSID turned off. so this would be good. but How does it find the IP address's.

Is it a software that works on the laptop that works with the radio card or does it just use ant network card in place. be it a radio or a normal NIC.

please help

JimmyPopAli · 04-18-2002

Go here.

fungus · 04-20-2002

Kismet will find AP's with the broadcast turned off. It will also find wireless bridges. If it sniffs UDP, ARP or Cisco (CDP) traffic it can display to ip range on your screen.

Fungus

johnmac99 · 04-22-2002

Can someone point me in the right direction to learn about patching software?

I just installed Redhat 7.2 on my machine and bought the "Redhat Linux 7.2 Bible" but it is still darn confusing.

I figured out how to extract tar.gz files and then how to "make" them but am unsure how to apply patches / diff files (for example the patch/diff file for airsnort). I have looked on the internet but not found a good description.

I am not asking to be spoon fed, I am trying to learn how to use Linux for myself. Many thanks
john

JimmyPopAli · 04-22-2002

from http://airsnort.shmoo.com/orinocoinfo.html

Install the pcmcia-cs sources, apply a patch, configure/make/make install the sources, then make/make install the drivers in the pcmcia-cs/wireless subdirectory if they were not built by your initial make. For those unfamiliar with applying patches, the command looks something like this when applied from the parent directory of your pcmcia-cs source tree:

patch -p0 < orinocoPatch.diff

johnmac99 · 04-22-2002

Ok, sorry to be dense... but when downloading the patch.diff file from the airsnort page, should it be saved as a .txt file or something else? I appreciate the ongoing education.
john

Quote:

Originally posted by JimmyPopAli
from http://airsnort.shmoo.com/orinocoinfo.html

Install the pcmcia-cs sources, apply a patch, configure/make/make install the sources, then make/make install the drivers in the pcmcia-cs/wireless subdirectory if they were not built by your initial make. For those unfamiliar with applying patches, the command looks something like this when applied from the parent directory of your pcmcia-cs source tree:

patch -p0 < orinocoPatch.diff

JimmyPopAli · 04-22-2002

Save it as a .diff.

jeffrowe · 04-23-2002

I installed RH7.2 onto a Gateway Laptop with a Linksys wpc11
RH works beautifully... but the wifi doesnt do a thing...

I installed the development tools,
the Installed the Linux-wlan-ng 1.10 RPM

Installed LibPcap0.7.1 -These I simply unpacked to root
Installed Tcpdump3.7.1

Compiled Kismet per its instructions

Now I run 'prism2_monitor' to turn on monitoring
and then run 'prism2_hopper &'
& run Kismet...

The program runs but does nothing, I get no Data or anything...
Is there any way to test if the Card is even working with the drivers?

jeffrowe · 04-25-2002

Hehehe...
First you ask the question, and then between checking for an answer 3 times a day... you figure out where you went wrong.

Forgot to change the kismet.conf to use prism2 as the capture type instead of pcap...

now to get ethereal and wellenreiter to work... smile

unclex · 05-03-2002

kismetwireless.net for your info

Fozzy_wozzy_woo

03-29-2002	#1 (permalink)
Posts: n/a	Kismet Hello all. I am running RH 7.2 with an Orinoco card. I have it running in RH with nor problems. I downloaded and installed kismet without hitch, but when I ran it nothing happened. Upon further investigation, I found that I had to apply a patch to allow the Orinoco to drop in to monitor mode. This part is eluding me. Could someone give me a little help to get Kismet up and running? Thanks!

04-10-2002	#5 (permalink)
Posts: n/a	simple as rocket science these patches are not simple to install and the instructions are questionable at best (when they exist) and I'm an experienced patch installer/kernel compiler. There are other matters at hand as well. The firmware revision on the PC card makes as much a difference as having/using the right kernel modules. -SAU Max, I tried your software but I'm not sure what it actually did. It did see my cisco card and it did detect my home AP at least according to the configuration screen but the scanner screen never showed any changes other than to say it found 5 packets. I tried the patch you suggested from source_forge but it killed my ability to configure the patched kernel. the patch caused a parse error in some "Configure.in" file. I even got the 2.4.3 kernel it was originally diffed from and got the same results. I ended up using my unpatched 2.4.18 kernel.

04-20-2002	#8 (permalink)
fungus Banned by the masses Join Date: Apr 2002 Location: So. Calif. Posts: 177	Kismet will find AP's with the broadcast turned off. It will also find wireless bridges. If it sniffs UDP, ARP or Cisco (CDP) traffic it can display to ip range on your screen. Fungus __________________ Work: http://www.wlanparts.com BLOG: http://www.unwiredadventures.com Fun: http://www.socalwug.org

04-22-2002	#9 (permalink)
johnmac99 Registered Member Join Date: Apr 2002 Posts: 6	Help with patching Can someone point me in the right direction to learn about patching software? I just installed Redhat 7.2 on my machine and bought the "Redhat Linux 7.2 Bible" but it is still darn confusing. I figured out how to extract tar.gz files and then how to "make" them but am unsure how to apply patches / diff files (for example the patch/diff file for airsnort). I have looked on the internet but not found a good description. I am not asking to be spoon fed, I am trying to learn how to use Linux for myself. Many thanks john

04-23-2002	#13 (permalink)
jeffrowe Registered Member Join Date: Apr 2002 Location: Northern Suburbs, Chicago, IL Posts: 142	I am havign a damn time w/ linux I installed RH7.2 onto a Gateway Laptop with a Linksys wpc11 RH works beautifully... but the wifi doesnt do a thing... I installed the development tools, the Installed the Linux-wlan-ng 1.10 RPM Installed LibPcap0.7.1 -These I simply unpacked to root Installed Tcpdump3.7.1 Compiled Kismet per its instructions Now I run 'prism2_monitor' to turn on monitoring and then run 'prism2_hopper &' & run Kismet... The program runs but does nothing, I get no Data or anything... Is there any way to test if the Card is even working with the drivers? __________________ -Jeffrowe

04-04-2002	#2 (permalink)
Posts: n/a	get on the kismet list

04-04-2002	#3 (permalink)
Posts: n/a	You need to patch you driver first to allow rfmon mode, thats right. I cannot assist you sorry, but as i heard in our forum at http://www.remote-exploit.org. It is simple to do. Some of the wellenreiter users there made a post. Greetings max

04-10-2002	#4 (permalink)
Posts: n/a	I don't know about red hat , but i'm using SuSe 7.2 with the standard wlan_ng drivers and a Orinoco silver card. I,ve compiled Kismet to Prism2, because i used a different card first...conceptronic C11. To my surprice Kismet works better than ever (great dump files...no need for Ethereal if you do something like: cat Kismetblabla.dump\|strings\|more) Grtz, LostSon

04-18-2002	#6 (permalink)
Fozzy_wozzy_woo Registered Member Join Date: Apr 2002 Location: Netherlands Posts: 36	im new to the linux stuff. well so new i havent even installed it yet as i am trying to get help on that. I have gone to www.kismeta.com as this is what came up in the search engine. is this the right kismet. web page or is there another befor i start to try to readup about the software and what it can do. i say this as i havent been able to find any thing about wireless in the website. i have looked through the kismet threads here and people talk about this software and i want to know some things please. What is Kismet. ? How is it used? as i have read the page on the web site and it contridicts what people have said in these forums on it finding ip address's i would like to use it in the security audits i am doing now but i need to know how it works first before i look a fool. As I belive Kismet will find AP's that have there SSID turned off. so this would be good. but How does it find the IP address's. Is it a software that works on the laptop that works with the radio card or does it just use ant network card in place. be it a radio or a normal NIC. please help

04-18-2002	#7 (permalink)
JimmyPopAli Registered Member Join Date: Apr 2002 Location: Washington the state Posts: 242	Go here.

04-22-2002	#10 (permalink)
JimmyPopAli Registered Member Join Date: Apr 2002 Location: Washington the state Posts: 242	from http://airsnort.shmoo.com/orinocoinfo.html Install the pcmcia-cs sources, apply a patch, configure/make/make install the sources, then make/make install the drivers in the pcmcia-cs/wireless subdirectory if they were not built by your initial make. For those unfamiliar with applying patches, the command looks something like this when applied from the parent directory of your pcmcia-cs source tree: patch -p0 < orinocoPatch.diff

04-22-2002	#12 (permalink)
JimmyPopAli Registered Member Join Date: Apr 2002 Location: Washington the state Posts: 242	Save it as a .diff.

04-25-2002	#14 (permalink)
jeffrowe Registered Member Join Date: Apr 2002 Location: Northern Suburbs, Chicago, IL Posts: 142	Hehehe... ask the question and then figure it out yourself Hehehe... First you ask the question, and then between checking for an answer 3 times a day... you figure out where you went wrong. Forgot to change the kismet.conf to use prism2 as the capture type instead of pcap... now to get ethereal and wellenreiter to work... smile __________________ -Jeffrowe

05-03-2002	#15 (permalink)
unclex ER - working on Oil Drums Join Date: Apr 2002 Location: MARS Posts: 127	kismetwireless.net for your info Fozzy_wozzy_woo __________________ Have Fun. http://www.ackers.org.uk http://forums.netstumbler.com/showthread.php?s=&postid=14030#post14030

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode