Page 2 of 2

PostPosted: Sun Oct 24, 2004 8:26 am
by CountZero
true enough

PostPosted: Fri Oct 29, 2004 1:40 am
by Snooze77777
King_Ice_Flash wrote:Why don't you just download it from the airsnort site.

Because this zipped file actually contains the specific dll's needed to run the program!

PostPosted: Fri Oct 29, 2004 1:59 pm
by Snooze77777
Let me qualify that. The program appears to be running, the GUI comes on fine, but I don't pick up any packets when I know there is plenty of traffic. Think we better stick to letting the Penguin run Snort until somebody packages a complete tested version for Windows.

PostPosted: Thu Nov 25, 2004 3:21 am
by Vandyck
The program appears to be running, the GUI comes on fine, but I don't pick up any packets when I know there is plenty of traffic.
Exactly the same for me. It's driving me crazy :(

Does anyone have some news by now ? any better result than that disparing blank screen ?

Just joined, Airsnort works fine

PostPosted: Sun Nov 28, 2004 10:02 pm
by Daytranno
Hi guys,

Regarding the questions with Airsnort it works fine for me but I had to do some tweaking to get it to work so here is what I know, also take note, I have included a screenshot before people start asking for "Proof".

First off you will need to install the following in your PATH or optionally you can install everything in the same folder that you run your compiled binary from. Always compile your own exe in my opinion that way you know its working, in windows you can run nmake from MS Visual Studio 6 and it compiles without problems.

You will need:

Peek.dll
peek5.sys
Atk-1.6.0
freetype-2.1.8
gettext-runtime-0.13.1
glib-2.4.7
gtk+-2.4.13
libiconv-1.9.1.bin.woe32
libpng-1.2.7-bin
pango-1.4.1

The reason you need some of these things NOT mentioned in the README is dependancy that is normally installed by Cygwin might not be there if you didn't do a full cygwin install. Especially the Freetype and Gettext runtime files.

Next, I used the Atheros 3.0 Drivers. This was key. You cannot use the standard drivers. You MUST use the appropriate drivers.

The best way to verify that AirSnort will work is to get Airopeek (demo) working and not complaining about drivers. Once I got Airopeek working Airsnort started working immediately.

I will tell you this, AirSnort on Windows does some strange things from time to time. It works much better on Linux.

For the record, Aircrack/Airodump work much better. Together they take about half the time that AirSnort does. The only minor thing I noticed was that Airsnort seems to accurately grab stuff from the older Symbol Wireless Access Points better than does Airodump. The reason for this, as far as I can tell, is that the older Symbol products does some sort of reverse of the first and last bit in a 40-bit system. This seems to be really strange, but it would explain why the older Symbol encryption systems only work with Symbol cards.

With all that said, look at the screenshot if you need proof. Nothing interesting there since I'd hate to give away my own network but it does show display in the output window as it should and it does work properly.

Good luck,

Daytranno