Kismet and 802.11a devices

abx5 · 08-05-2005

Has anybody be able to used Kismet to detect 802.11a devices? I tested it with Auditor but all the program can detect are "B/G" networks, not "A" network.

Thanks,

King_Ice_Flash · 08-05-2005

If your card is Atheros, make sure you're using the correct drivers. Mine was working fine.

madwifi_a Atheros Linux madwifi-cvs
http://sourceforge.net/projects/madwifi/
Capture interface: 'athX'
Madwifi drivers in 802.11a-only mode.

madwifi_b Atheros Linux madwifi-cvs
http://sourceforge.net/projects/madwifi/
Capture interface: 'athX'
Madwifi drivers in 802.11b-only mode.

madwifi_g Atheros Linux madwifi-cvs
http://sourceforge.net/projects/madwifi/
Capture interface: 'athX'
Madwifi drivers in 802.11g-only mode. This will,
obviously, also see 11b networks.

madwifi_ab Atheros Linux madwifi-cvs
http://sourceforge.net/projects/madwifi/
Capture interface: 'athX'
Madwifi drivers in 802.11a and 802.11b combo mode. This
will seamlessly switch between bands during channel
hopping.

madwifi_ag Atheros Linux madwifi-cvs
http://sourceforge.net/projects/madwifi/
Capture interface: 'athX'
Madwifi drivers in 802.11a and 802.11g combo mode. This
will seamlessly switch between bands during channel

abx5 · 08-06-2005

I use Atheros Card with latest version of Auditor. I can use it with Airodump 2.2 Beta 12 to capture 802.11a packets. It sometime shows up 802.11a traffic but rarely. (Don't know why.) What I usually have to do is to specify the exact channel number like 62 to be able to capture the 802.11a traffic.

I can also use Aireplay to inject the de-auth packets into 802.11a router without any problem.

That means the driver works with 802.11a device. Am I right? I also tried to use "iwpriv ath0 mode 1" force it to work only in 802.11a. However, when I fired up the kismet, it sets back to b/g freq only. (iwconfig shows it run in 5Ghz freq before, but once I fired up kismet, it goes back to 2.4Ghz.)

Any idea how to make this work?

Thank,

Dutch · 08-06-2005

Quote:

Originally Posted by abx5

I use Atheros Card with latest version of Auditor. I can use it with Airodump 2.2 Beta 12 to capture 802.11a packets. It sometime shows up 802.11a traffic but rarely. (Don't know why.) What I usually have to do is to specify the exact channel number like 62 to be able to capture the 802.11a traffic.

I can also use Aireplay to inject the de-auth packets into 802.11a router without any problem.

That means the driver works with 802.11a device. Am I right? I also tried to use "iwpriv ath0 mode 1" force it to work only in 802.11a. However, when I fired up the kismet, it sets back to b/g freq only. (iwconfig shows it run in 5Ghz freq before, but once I fired up kismet, it goes back to 2.4Ghz.)

Any idea how to make this work?

Thank,

As documented in the Kismet README, use the right capture source in the kismet.conf file, and set the correct channels to scan.
Use the listchan.pl script, included with kismet, to see which channels your card supports. This is different among the various regulatory domains, and has to be set correctly in your kismet.conf file.

Dutch

abx5 · 08-06-2005

Quote:

Originally Posted by Dutch

As documented in the Kismet README, use the right capture source in the kismet.conf file, and set the correct channels to scan.
Use the listchan.pl script, included with kismet, to see which channels your card supports. This is different among the various regulatory domains, and has to be set correctly in your kismet.conf file.

Dutch

It works now. Based on kismet.conf found on Auditor,I corrected the capture source from :

source=none,none,addme

To

source=madwifi_ag,ath0,addme

Thanks a lot,

devine · 08-06-2005

Quote:

Originally Posted by abx5

I use Atheros Card with latest version of Auditor. I can use it with Airodump 2.2 Beta 12 to capture 802.11a packets. It sometime shows up 802.11a traffic but rarely. (Don't know why.)

As of now, airodump/aireplay is not compatible with 802.11a (not implemented yet).

abx5 · 08-06-2005

Quote:

Originally Posted by devine

As of now, airodump/aireplay is not compatible with 802.11a (not implemented yet).

I think it's just not fully compatible but by knowing the channel and specify it allow Airodump to work with 802.11a. About Aireplay, I use it only to deauth and it works just to specify the MAC address of the target access point.

Thanks

devine · 08-09-2005

Quote:

Originally Posted by abx5

I think it's just not fully compatible but by knowing the channel and specify it allow Airodump to work with 802.11a. About Aireplay, I use it only to deauth and it works just to specify the MAC address of the target access point.

That's very interesting to know, albeit a bit surprising since by default the 20050707 madwifi patch will send packets at 5.5M (CCK modulation / 11b), which should not be recognized by 11a access points. Can you also inject 11a traffic (attack 3 / 4) successfully, or fake auth a client ?

abx5 · 08-09-2005

Quote:

Originally Posted by devine

That's very interesting to know, albeit a bit surprising since by default the 20050707 madwifi patch will send packets at 5.5M (CCK modulation / 11b), which should not be recognized by 11a access points. Can you also inject 11a traffic (attack 3 / 4) successfully, or fake auth a client ?

I didn't have a time to try other injection methods since I had to give my WRT55AG back to my friend. But I'm pretty sure about De-Auth. I tested it twice before your first reply. Then, I tested it a couple more times once you said that it's not compatible with 802.11a device.

08-05-2005	#1 (permalink)
abx5 Registered Member Join Date: Jul 2005 Posts: 15	Kismet and 802.11a devices Has anybody be able to used Kismet to detect 802.11a devices? I tested it with Auditor but all the program can detect are "B/G" networks, not "A" network. Thanks,

08-05-2005	#2 (permalink)
King_Ice_Flash Alien Paranoid Stumbler Join Date: May 2003 Location: WI Posts: 2,622	If your card is Atheros, make sure you're using the correct drivers. Mine was working fine. madwifi_a Atheros Linux madwifi-cvs http://sourceforge.net/projects/madwifi/ Capture interface: 'athX' Madwifi drivers in 802.11a-only mode. madwifi_b Atheros Linux madwifi-cvs http://sourceforge.net/projects/madwifi/ Capture interface: 'athX' Madwifi drivers in 802.11b-only mode. madwifi_g Atheros Linux madwifi-cvs http://sourceforge.net/projects/madwifi/ Capture interface: 'athX' Madwifi drivers in 802.11g-only mode. This will, obviously, also see 11b networks. madwifi_ab Atheros Linux madwifi-cvs http://sourceforge.net/projects/madwifi/ Capture interface: 'athX' Madwifi drivers in 802.11a and 802.11b combo mode. This will seamlessly switch between bands during channel hopping. madwifi_ag Atheros Linux madwifi-cvs http://sourceforge.net/projects/madwifi/ Capture interface: 'athX' Madwifi drivers in 802.11a and 802.11g combo mode. This will seamlessly switch between bands during channel __________________ "Yeah," said a voice from under the table, "you go to pieces so fast people get hit by the shrapnel." Last edited by King_Ice_Flash : 08-05-2005 at 03:54 PM.

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

08-06-2005	#3 (permalink)
abx5 Registered Member Join Date: Jul 2005 Posts: 15	I use Atheros Card with latest version of Auditor. I can use it with Airodump 2.2 Beta 12 to capture 802.11a packets. It sometime shows up 802.11a traffic but rarely. (Don't know why.) What I usually have to do is to specify the exact channel number like 62 to be able to capture the 802.11a traffic. I can also use Aireplay to inject the de-auth packets into 802.11a router without any problem. That means the driver works with 802.11a device. Am I right? I also tried to use "iwpriv ath0 mode 1" force it to work only in 802.11a. However, when I fired up the kismet, it sets back to b/g freq only. (iwconfig shows it run in 5Ghz freq before, but once I fired up kismet, it goes back to 2.4Ghz.) Any idea how to make this work? Thank,