Page 5 of 6
idea to crack WEP with chopchop
Posted:
Wed Mar 21, 2007 7:04 am
by bigbadbo
Hi all
This is my first Post on this site so hang in their with me !.
OK ...
KOREK chopchop theory obtains the Keystream of a particular packet, Idealy from an ARP packet from the AP.
And then we can forge an ARP Packet with packetforge-ng and some other stuff !
However, if we inject our new forge ARP packet, were still only generating as much traffic, according to the size of that ARP (68bits)
How about if you apply that keystream to a much larger packet, for instance ...
a GET packets, thats 400+ bits, this will generate much more traffic leading to a quicker attack
I know packetforge-ng has a custom packet capability, but im unsure how to use it
regards
Kai
Posted:
Wed Mar 21, 2007 7:08 am
by Starpoint
bigbadbo wrote:Hi all
This is my first Post on this site so hang in their with me !.
OK ...
KOREK chopchop theory obtains the Keystream of a particular packet, Idealy from an ARP packet from the AP.
And then we can forge an ARP Packet with packetforge-ng and some other stuff !
However, if we inject our new forge ARP packet, were still only generating as much traffic, according to the size of that ARP (68bits)
How about if you apply that keystream to a much larger packet, for instance ...
a GET packets, thats 400+ bits, this will generate much more traffic leading to a quicker attack
I know packetforge-ng has a custom packet capability, but im unsure how to use it
regards
Kai
And your goal in all this is WHAT?
Posted:
Wed Mar 21, 2007 7:21 am
by streaker69
Starpoint wrote:And your goal in all this is WHAT?
Zombie Revival? Discuss the blasé practice of cracking wep?
Where is Devine anyway?
Posted:
Wed Mar 21, 2007 7:36 am
by Dutch
streaker69 wrote:Zombie Revival? Discuss the blasé practice of cracking wep?
Where is Devine anyway?
Last I saw him, he was jamming with Elvis at the truckstop orbiting Betelgeuse.
Dutch
Posted:
Wed Mar 21, 2007 7:44 am
by ccie4526
streaker69 wrote:Zombie Revival? Discuss the blasé practice of cracking wep?
Well, Dutch has weighed in on the topic, so I'm guessing it's up to G8t for the two week vacation.
Posted:
Wed Mar 21, 2007 8:12 am
by beakmyn
Wait you can crack WEP?! How long has this been possible?
Posted:
Wed Mar 21, 2007 8:13 am
by ccie4526
beakmyn wrote:Wait you can crack WEP?! How long has this been possible?
Lessee, Dutch joined the NS forums in March of 2004, so I would suggest since about then.
Posted:
Wed Mar 21, 2007 8:35 am
by Dutch
ccie4526 wrote:Lessee, Dutch joined the NS forums in March of 2004, so I would suggest since about then.
How often do I have to tell you lot... I don't crack wep, I crack whips over the tards!
Dutch
Posted:
Wed Mar 21, 2007 8:38 am
by Barry
Dutch wrote:How often do I have to tell you lot... I have Thorn's E-cupped Swedish nurse whip me!
Dutch
Fixed!!
Posted:
Wed Mar 21, 2007 8:42 am
by Dutch
Barry wrote:Fixed!!
/puts Alaska on the Universal No-Ship list.. Again...
Dutch
Posted:
Wed Mar 21, 2007 8:44 am
by Barry
Dutch wrote:/puts Alaska on the Universal No-Ship list.. Again...
Dutch
I'm used to it.
Posted:
Wed Mar 21, 2007 9:39 am
by ccie4526
Barry wrote:Dutch wrote:Originally Posted by Dutch
How often do I have to tell you lot... I have Thorn's E-cupped Swedish nurse whip me!
Dutch
Fixed!!
Ok, I'd say you owe me a new keyboard on that one, but this *is* a laptop, so you *really* owe me a whole new laptop.
Posted:
Wed Mar 21, 2007 10:23 am
by Barry
ccie4526 wrote:Ok, I'd say you owe me a new keyboard on that one, but this *is* a laptop, so you *really* owe me a whole new laptop.
Naa, you can get replacement keyboards for laptops.
The goal in my previous idea
Posted:
Wed Mar 21, 2007 11:18 am
by bigbadbo
Hi starpoint
my the goal to my previous idea will allow you to generate weak IV's by generating more traffic quicker, so you can crack WEP quicker
if injecting a 86bit ARP Packet will generate 1,000,000 weak IVS in 4 hours ...
then injecting a 400+bit GET packet will generate 1,000,000 weak IVS in 1 - 2 hours ?
therefore breaking the WEP key, can be alot quicker ...
regards
Kai
Posted:
Wed Mar 21, 2007 11:32 am
by theprez98
bigbadbo wrote:Hi starpoint
my the goal to my previous idea will allow you to generate weak IV's by generating more traffic quicker, so you can crack WEP quicker
if injecting a 86bit ARP Packet will generate 1,000,000 weak IVS in 4 hours ...
then injecting a 400+bit GET packet will generate 1,000,000 weak IVS in 1 - 2 hours ?
therefore breaking the WEP key, can be alot quicker ...
regards
Kai
You should be able to crack WEP in 10-15 minutes or sometimes as few as 5.