Requesting some help cracking our WEP network

retnuh · 07-05-2005

As stated in previous postings, my son, grandson, and I are trying to crack our WEP 128 protected “b” network on channel 1 just to see if we can do it.

We installed the latest version of the Auditor CD on my laptop which has a 1G processor and 512mb memory. We are using an Orinoco Classic Gold card with a Hermes chipset with the latest Agere drivers.

After booting into the Auditor install, we are placing the card into “monitor” mode with the command “iwpriv eth0 monitor 2 1”. Then we started Airodump which begins capturing IVs at about one per second. To speed up the IV capture, we started Aireplay on the same laptop.

Aireplay asks if we want to use this packet, we confirm the BSSID and reply yes. Aireplay begins and Airodump continues to collect packets; however, the IVs never increase in speed. We have done this at least 100 times and the IVs are never captured faster than one per second.

Any ideas of what we are doing wrong?

Thanks,
retnuh

King_Ice_Flash · 07-05-2005

You need another card. Your card can not TX in Monitor mode. One card to play back, and one to receive.

retnuh · 07-05-2005

Thanks King_Ice_Flash. Can we place my Linksys card in the other PCMCIA slot on the same laptop and do it that way? We have checked and it will fit.

Thanks,
retnuh

scdako · 07-05-2005

You also may want to check out this fairly well done link. It may be of some help to you

retnuh · 07-06-2005

Thanks Scdako. I'll check it out and see if it addresses my question.

retnuh

Dutch · 07-06-2005

Quote:

Originally Posted by retnuh

Thanks King_Ice_Flash. Can we place my Linksys card in the other PCMCIA slot on the same laptop and do it that way? We have checked and it will fit.

Thanks,
retnuh

I wouldn't recommend doing that, unless one of the cards utilize an external antenna which can be placed at least 1 meter away. And even if you use such a setup, you still run the risk of overloading the receivercircuitry on the card used to sniff the network.

Better get an Atheros, Prism 2 or Prism54 based PCMCIA wifi card, if you want to do injection from the same laptop used to sniff.

Now you understand why people have multiple cards based on different chipsets in their toolbox ?
One chipset might be better at one task. Another chipset better at another task.
As I've said before: Get the proper tools, for the task you want to achieve. You won't go wrong with the following guidelines :

A) Define task and goal.
B) Research tools available to achieve the goal
C) Purchase the best tool, within budget, according to results of B)
D) Perform task, and achieve the goal.
E) Celebrate with a beer and a stookie.

Dutch

retnuh · 07-06-2005

Thanks for the feedback Dutch. While we do have an external antenna to plug into the Orinoco, I don't think we want to risk destroying the card. Maybe we need to look into selling the Orinoco and buying an Atheros, Prism 2 or Prism54 based PCMCIA wifi card. However, first I had better check and see which one is compatable with NS. We don't want to lose the ability to wardrive just to see if we can crack our network security.

retnuh

King_Ice_Flash · 07-06-2005

Quote:

Originally Posted by retnuh

Thanks for the feedback Dutch. While we do have an external antenna to plug into the Orinoco, I don't think we want to risk destroying the card. Maybe we need to look into selling the Orinoco and buying an Atheros, Prism 2 or Prism54 based PCMCIA wifi card. However, first I had better check and see which one is compatable with NS. We don't want to lose the ability to wardrive just to see if we can crack our network security.

retnuh

Atheros support is poor for NS. I would keep the orinoco and get a prism 2 card also.

Scruge · 07-07-2005

Quote:

Originally Posted by retnuh

Any ideas of what we are doing wrong?

retnuh

I've been following this thread off and on and have come to the conclusion that teaching a juvenile male how to crack a security system isn't what I'd call being a responsible adult.
What controls do you have in place to insure your grandson doesn't attempt this on someone else's system while he's visiting a friend? Isn't this like teaching him to pick a lock. Why not teach him something more useful like networking 101 or building a computer or programming. There are plenty of other things besides cracking security systems.

just my humble opinion...

wrzwaldo · 07-07-2005

Quote:

Originally Posted by Scruge

I've been following this thread off and on and have come to the conclusion that teaching a juvenile male how to crack a security system isn't what I'd call being a responsible adult.
What controls do you have in place to insure your grandson doesn't attempt this on someone else's system while he's visiting a friend? Isn't this like teaching him to pick a lock. Why not teach him something more useful like networking 101 or building a computer or programming. There are plenty of other things besides cracking security systems.

just my humble opinion...

My thoughts exactly. While it is important to understand what goes on on both sides of the fence there are plenty of things you could be working on at this point. Unless he/you have mastered network setup/configuration issues then I say get back on the inside of the fence and learn that aspect of security.

Just my 2 pennies

retnuh · 07-07-2005

Scruge & Wrzwaldo, I appreciate your concerns and I too wondered to what extent my grandson should be allowed to participate. He is an extremely good boy who has never been in any trouble at school, or elsewhere; however, being fifteen, I know the peer pressure, and opportunity to impress his friends, can be extremely powerful. For these reasons, my son and I decided to keep my grandson’s involvement to a minimum. We have strongly emphasized the legal, and moral, aspects of what we are doing. As an additional safeguard, the Orinoco card is locked in my data safe when I am not personally involved in its use.

My grandson is fully capable of performing routine maintenance procedures such as Windows updates, virus protection updates, hard drive defrag, etc. In addition, he has helped in setting up our network and in rebuilding and upgrading our computers.

I did not want to exclude him from participating with us in something totally legal; however; I also did not want him to be able to perform a WEP crack completely on his on. That is why we have taken the afore mentioned safeguards.

Again, thank you for expressing your concerns; and, should those concerns cause you to choose not to participate in assisting us, I totally understand.

Thanks,
retnuh

Scruge · 07-07-2005

Quote:

Originally Posted by retnuh

Scruge & Wrzwaldo, I appreciate your concerns and I too wondered to what extent my grandson should be allowed to participate. He is an extremely good boy who has never been in any trouble at school, or elsewhere; however, being fifteen, I know the peer pressure, and opportunity to impress his friends, can be extremely powerful. For these reasons, my son and I decided to keep my grandson’s involvement to a minimum. We have strongly emphasized the legal, and moral, aspects of what we are doing. As an additional safeguard, the Orinoco card is locked in my data safe when I am not personally involved in its use.

My grandson is fully capable of performing routine maintenance procedures such as Windows updates, virus protection updates, hard drive defrag, etc. In addition, he has helped in setting up our network and in rebuilding and upgrading our computers.

I did not want to exclude him from participating with us in something totally legal; however; I also did not want him to be able to perform a WEP crack completely on his on. That is why we have taken the afore mentioned safeguards.

Again, thank you for expressing your concerns; and, should those concerns cause you to choose not to participate in assisting us, I totally understand.

Thanks,
retnuh

I personally think you've got your priorities screwed up. What purpose is served by you, your son or your grandson cracking your own WEP? Are you a cryptologist with plans to strengthen the ciphers? I doubt it. Isn't knowing it can be done, enough? I've been around this stuff all my life and never once have I felt compelled to crack WEP. However I could without ever asking one single question in a public forum. Which takes me to my next point. Why don't you, your son and grandson learn to use the SEARCH key, rather than involving others in contributing to the delinquency of a minor?
Has it ever occurred to you that males tend boast their accomplishments. I can hear your grandson in the halls of his school, telling all his friends how he spent his summer with good ole grandpa. Later in the school year, someone breaks into the school's computer network and alters the records. After the officials interrogate a few of the students, your grandson's name comes up numerous times. Now he's the prime suspect. Go deal with that headache gramps.
Just because you're a seasoned citizen doesn't exempt you from being a F*ktard.

And just so you know, I'm one of your peers.

Starpoint · 07-07-2005

Quote:

Originally Posted by Scruge

I personally think you've got your priorities screwed up. What purpose is served by you, your son or your grandson cracking your own WEP? Are you a cryptologist with plans to strengthen the ciphers? I doubt it. Isn't knowing it can be done enough. I've been around this stuff all my life and never once have I felt compelled to crack WEP. However I could without ever asking one single question in a public forum. Which takes me to my next point. Why don't you, your son and grandson learn to use the SEARCH key, rather than involving others in your crime of contributing to the delinquency of a minor?
As it ever occurred to you that males tend boast of their accomplishments. I can hear your grandson in the halls of his school telling all his friends how he spent his summer with good ole grandpa. Later in the school year, someone breaks into the school's computer network and alters the records. After the officials interrogate a few of the students, your grandson's name comes up numerous times. Now he's the prime suspect. Go deal with that headache gramps.
Just because you're a seasoned citizen doesn't exempt you from being a F*ktard.

And just so you know I'm one of your peers.

I have on my own network did the WEP cracking to see how its done... once I did that, the thrill was gone and I moved on to other things wireless. Do I care if my neighbor has an open wifi that *IF* I wanted to I could use? No.. he has DSL which is slower than my Cable modem... ALOT slower. am I going to do something illegal on his that I would not do on my connection? No.

Learning how something works can be fun and educational. Just make sure your grandson understands 110% that using anyone's wifi connection other than the one he legally owns or has permission to use (posted public hotspot) is breaking the law and should he get caught, you will not come to his aide, rather you will be a witness against him. (cruel but effective)

Heck my father taught me how to move railroad locomotives when I was 16.. and to this day I know how.... but do I sneak onto rail yards and move locomotives? NO

teaching RIGHT from WRONG is important.... so in my opinion if you want to crack your own wep key to see how its done... go ahead..

streaker69 · 07-07-2005

Quote:

Originally Posted by Starpoint

I have on my own network did the WEP cracking to see how its done... once I did that, the thrill was gone and I moved on to other things wireless. Do I care if my neighbor has an open wifi that *IF* I wanted to I could use? No.. he has DSL which is slower than my Cable modem... ALOT slower. am I going to do something illegal on his that I would not do on my connection? No.

Learning how something works can be fun and educational. Just make sure your grandson understands 110% that using anyone's wifi connection other than the one he legally owns or has permission to use (posted public hotspot) is breaking the law and should he get caught, you will not come to his aide, rather you will be a witness against him. (cruel but effective)

Heck my father taught me how to move railroad locomotives when I was 16.. and to this day I know how.... but do I sneak onto rail yards and move locomotives? NO

teaching RIGHT from WRONG is important.... so in my opinion if you want to crack your own wep key to see how its done... go ahead..

I saw a Shaolin Monk move some pretty heavy stuff with a rope attached to his balls, that's now how you do it, is it?

wrzwaldo · 07-07-2005

Quote:

Originally Posted by Starpoint

Heck my father taught me how to move railroad locomotives when I was 16.. and to this day I know how.... but do I sneak onto rail yards and move locomotives? NO

teaching RIGHT from WRONG is important.... so in my opinion if you want to crack your own wep key to see how its done... go ahead..

WTF does teaching right from wrong have to do with cracking wep? All he is doing is "enabling" his grandson to crack wep whenever he feels like it. Of course that's something he will have to take credit for if the "grandson" ever uses this knowledge for evil.

And your locomotive anaolgy is flawed in that it is a whole lot easier to spot somone driving a locomotive than it is to see/catch someone trying to crack a wep key.

07-05-2005	#1 (permalink)
retnuh Registered Member Join Date: May 2005 Posts: 21	Requesting some help cracking our WEP network As stated in previous postings, my son, grandson, and I are trying to crack our WEP 128 protected “b” network on channel 1 just to see if we can do it. We installed the latest version of the Auditor CD on my laptop which has a 1G processor and 512mb memory. We are using an Orinoco Classic Gold card with a Hermes chipset with the latest Agere drivers. After booting into the Auditor install, we are placing the card into “monitor” mode with the command “iwpriv eth0 monitor 2 1”. Then we started Airodump which begins capturing IVs at about one per second. To speed up the IV capture, we started Aireplay on the same laptop. Aireplay asks if we want to use this packet, we confirm the BSSID and reply yes. Aireplay begins and Airodump continues to collect packets; however, the IVs never increase in speed. We have done this at least 100 times and the IVs are never captured faster than one per second. Any ideas of what we are doing wrong? Thanks, retnuh

07-05-2005	#2 (permalink)
King_Ice_Flash Alien Paranoid Stumbler Join Date: May 2003 Location: WI Posts: 2,625	You need another card. Your card can not TX in Monitor mode. One card to play back, and one to receive. __________________ "Yeah," said a voice from under the table, "you go to pieces so fast people get hit by the shrapnel."

07-05-2005	#4 (permalink)
scdako Geek Join Date: Dec 2004 Location: St. Thomas/ Ontario/ Canada Posts: 63	You also may want to check out this fairly well done link. It may be of some help to you __________________ "Some things Man was never meant to know. For everything else, there's Google."

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

07-05-2005	#3 (permalink)
retnuh Registered Member Join Date: May 2005 Posts: 21	Thanks King_Ice_Flash. Can we place my Linksys card in the other PCMCIA slot on the same laptop and do it that way? We have checked and it will fit. Thanks, retnuh

07-06-2005	#5 (permalink)
retnuh Registered Member Join Date: May 2005 Posts: 21	Thanks Scdako. I'll check it out and see if it addresses my question. retnuh

07-06-2005	#7 (permalink)
retnuh Registered Member Join Date: May 2005 Posts: 21	Thanks for the feedback Dutch. While we do have an external antenna to plug into the Orinoco, I don't think we want to risk destroying the card. Maybe we need to look into selling the Orinoco and buying an Atheros, Prism 2 or Prism54 based PCMCIA wifi card. However, first I had better check and see which one is compatable with NS. We don't want to lose the ability to wardrive just to see if we can crack our network security. retnuh

07-07-2005	#11 (permalink)
retnuh Registered Member Join Date: May 2005 Posts: 21	Scruge & Wrzwaldo, I appreciate your concerns and I too wondered to what extent my grandson should be allowed to participate. He is an extremely good boy who has never been in any trouble at school, or elsewhere; however, being fifteen, I know the peer pressure, and opportunity to impress his friends, can be extremely powerful. For these reasons, my son and I decided to keep my grandson’s involvement to a minimum. We have strongly emphasized the legal, and moral, aspects of what we are doing. As an additional safeguard, the Orinoco card is locked in my data safe when I am not personally involved in its use. My grandson is fully capable of performing routine maintenance procedures such as Windows updates, virus protection updates, hard drive defrag, etc. In addition, he has helped in setting up our network and in rebuilding and upgrading our computers. I did not want to exclude him from participating with us in something totally legal; however; I also did not want him to be able to perform a WEP crack completely on his on. That is why we have taken the afore mentioned safeguards. Again, thank you for expressing your concerns; and, should those concerns cause you to choose not to participate in assisting us, I totally understand. Thanks, retnuh