Page 5 of 6

idea to crack WEP with chopchop

PostPosted: Wed Mar 21, 2007 7:04 am
by bigbadbo
Hi all

This is my first Post on this site so hang in their with me !.

OK ...

KOREK chopchop theory obtains the Keystream of a particular packet, Idealy from an ARP packet from the AP.

And then we can forge an ARP Packet with packetforge-ng and some other stuff !

However, if we inject our new forge ARP packet, were still only generating as much traffic, according to the size of that ARP (68bits)

How about if you apply that keystream to a much larger packet, for instance ...
a GET packets, thats 400+ bits, this will generate much more traffic leading to a quicker attack

I know packetforge-ng has a custom packet capability, but im unsure how to use it

regards
Kai

PostPosted: Wed Mar 21, 2007 7:08 am
by Starpoint
bigbadbo wrote:Hi all

This is my first Post on this site so hang in their with me !.

OK ...

KOREK chopchop theory obtains the Keystream of a particular packet, Idealy from an ARP packet from the AP.

And then we can forge an ARP Packet with packetforge-ng and some other stuff !

However, if we inject our new forge ARP packet, were still only generating as much traffic, according to the size of that ARP (68bits)

How about if you apply that keystream to a much larger packet, for instance ...
a GET packets, thats 400+ bits, this will generate much more traffic leading to a quicker attack

I know packetforge-ng has a custom packet capability, but im unsure how to use it

regards
Kai


And your goal in all this is WHAT?

PostPosted: Wed Mar 21, 2007 7:21 am
by streaker69
Starpoint wrote:And your goal in all this is WHAT?


Zombie Revival? Discuss the blasé practice of cracking wep?

Where is Devine anyway?

PostPosted: Wed Mar 21, 2007 7:36 am
by Dutch
streaker69 wrote:Zombie Revival? Discuss the blasé practice of cracking wep?

Where is Devine anyway?

Last I saw him, he was jamming with Elvis at the truckstop orbiting Betelgeuse.

Dutch

PostPosted: Wed Mar 21, 2007 7:44 am
by ccie4526
streaker69 wrote:Zombie Revival? Discuss the blasé practice of cracking wep?


Well, Dutch has weighed in on the topic, so I'm guessing it's up to G8t for the two week vacation. :D

PostPosted: Wed Mar 21, 2007 8:12 am
by beakmyn
Wait you can crack WEP?! How long has this been possible?

PostPosted: Wed Mar 21, 2007 8:13 am
by ccie4526
beakmyn wrote:Wait you can crack WEP?! How long has this been possible?


Lessee, Dutch joined the NS forums in March of 2004, so I would suggest since about then. :D

PostPosted: Wed Mar 21, 2007 8:35 am
by Dutch
ccie4526 wrote:Lessee, Dutch joined the NS forums in March of 2004, so I would suggest since about then. :D

How often do I have to tell you lot... I don't crack wep, I crack whips over the tards!

Dutch

PostPosted: Wed Mar 21, 2007 8:38 am
by Barry
Dutch wrote:How often do I have to tell you lot... I have Thorn's E-cupped Swedish nurse whip me!

Dutch




Fixed!! :D

PostPosted: Wed Mar 21, 2007 8:42 am
by Dutch
Barry wrote:Fixed!! :D

/puts Alaska on the Universal No-Ship list.. Again...

Dutch

PostPosted: Wed Mar 21, 2007 8:44 am
by Barry
Dutch wrote:/puts Alaska on the Universal No-Ship list.. Again...

Dutch



I'm used to it.;)

PostPosted: Wed Mar 21, 2007 9:39 am
by ccie4526
Barry wrote:
Dutch wrote:Originally Posted by Dutch
How often do I have to tell you lot... I have Thorn's E-cupped Swedish nurse whip me!

Dutch


Fixed!!


Ok, I'd say you owe me a new keyboard on that one, but this *is* a laptop, so you *really* owe me a whole new laptop. :D

PostPosted: Wed Mar 21, 2007 10:23 am
by Barry
ccie4526 wrote:Ok, I'd say you owe me a new keyboard on that one, but this *is* a laptop, so you *really* owe me a whole new laptop. :D



Naa, you can get replacement keyboards for laptops.:D

The goal in my previous idea

PostPosted: Wed Mar 21, 2007 11:18 am
by bigbadbo
Hi starpoint

my the goal to my previous idea will allow you to generate weak IV's by generating more traffic quicker, so you can crack WEP quicker

if injecting a 86bit ARP Packet will generate 1,000,000 weak IVS in 4 hours ...

then injecting a 400+bit GET packet will generate 1,000,000 weak IVS in 1 - 2 hours ?

therefore breaking the WEP key, can be alot quicker ...

regards
Kai

PostPosted: Wed Mar 21, 2007 11:32 am
by theprez98
bigbadbo wrote:Hi starpoint

my the goal to my previous idea will allow you to generate weak IV's by generating more traffic quicker, so you can crack WEP quicker

if injecting a 86bit ARP Packet will generate 1,000,000 weak IVS in 4 hours ...

then injecting a 400+bit GET packet will generate 1,000,000 weak IVS in 1 - 2 hours ?

therefore breaking the WEP key, can be alot quicker ...

regards
Kai

You should be able to crack WEP in 10-15 minutes or sometimes as few as 5.