Re: rt73 + aireplay-ng = packet injection
 

I think you're on the wrong forum; internettablettalk is mainly about Nokia internet tablets, the 770, N800, and N810. ;)

Re: rt73 + aireplay-ng = packet injection
 

I am absolutely new to this area, but I noticed an item I wanted to run past those of you with more knowledge of the topic. The Immunity SILICA product is on the N770 or N800 depending on what you read, and seems to have some ability to breach networks. I'm not certain that this includes cracking wep/wpa, but would assume so, since they tout the usability of it. Anyway, my general question is:

It seems they have packet injection on the N770, and never mention any external adaptor. Does anyone have any more information or ideas on how that may have been done?

And, as a follow-on...is it POSSIBLE (assuming precision skills) to swap out a chipset? Are they somewhat uniform in power consumption, physical parameters, etc? Or would a unit require many other mods to accomodate?

Thanks so much.

Re: rt73 + aireplay-ng = packet injection
 

Hi, I got DLink DWA-110, will I be able to use this? has anybody tried with this? if so let me know.. thanks

Re: rt73 + aireplay-ng = packet injection
 

Since the integrated wlan driver just became opensourced, is it now possible to use paquet injection with n800/810 ?

Re: rt73 + aireplay-ng = packet injection
 

No, because that's not what happened. It's a new driver and it's still alpha. (Even if it was the existing driver open-sourced, someone would still need to write an injection patch...)

Re: rt73 + aireplay-ng = packet injection
 

Any ideas? Should I try to compile it myself?

Re: rt73 + aireplay-ng = packet injection
 

Hi, I've just bought the same adapter and I tried the steps in the beginning of the page but when i hit iwconfig i get this:

/home/user/MyDocs/.documents/test # iwconfig
lo no wireless extensions.

wlan0 NOT READY ESSID:off/any
Mode:Auto Channel:0 Access Point: Not-Associated
Link Quality:0 Signal level:0 Noise level:0
Rx invalid nwid:0 invalid crypt:0 invalid misc:0

/home/user/MyDocs/.documents/test #

What do I have to do? thanks....

Re: rt73 + aireplay-ng = packet injection
 

Great work

I have a question for you

What firmware have in your n800 ?

BR

Re: rt73 + aireplay-ng = packet injection
 

Wrong; software MAC radios with drivers written for mac80211 supports injection. It just seems that nobody has tested the new driver.

If someone could just pack a kernel with mac80211 and the new driver for us...

Re: rt73 + aireplay-ng = packet injection
 

hi, I'm newbie and luckily I could successfully do 'iwpriv wlan1 rfmontx 1' and then test with 'iwpriv wlan1 get_rfmontx' after doing 'ifconfig wlan1 up' but no matter how many times I try and despite moving around I keep getting this when checking injection with aireplay-ng './aireplay-ng wlan1 --test':

/home/user/MyDocs/.documents/test # ./aireplay-ng wlan1 --test
18:07:25 Trying broadcast probe requests...
18:07:26 No Answer...
18:07:26 Found 0 APs
/home/user/MyDocs/.documents/test #

Though there are lot of access points visible in my laptop in wireless connections.
I tried /sbin/ifconfig wlan1 and got the following:

/home/user/MyDocs/.documents/test # /sbin/ifconfig wlan1wlan1
Link encap:UNSPEC HWaddr 00-1F-1F-12-01-4A-44-EC-00-00-00-00-00-00-00-00
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:276 errors:0 dropped:0 overruns:0 frame:0 TX packets:1 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000
RX bytes:27008 (26.3 KiB) TX bytes:66 (66.0 B)

I don't know if its necessary to provide this detail or not, but still hoping it will give more details on what problem I'm facing. So, is there anything wrong or is it that I have to (as mentioned in the step by step guide by mutex) keep trying moving around (which in fact I did).
By the way I'm using edimax ew-7318usg and I'ven't done any extra thing other than the ones mentioned by mutex (Thanks mutex for your effort and the guide, I'm so impatience to see it do what its supposed to do..).
Thanks..

*EDITED:

Oh!! due to my nube in this thing its kinda irritating, my apology!! I resolved it as I had to change it to monitor mode with : "iwconfig wlan1 mode monitor".

I QUESTION THOUGH: when I tried to run the "./aircrack-ng -b <mac addr> dumpfile*.cap" it says: Please specify a dictionary (option -w). So, when I went to the manpage it was written: specify "-" to use stdin. So, should I type: "./aircrack-ng - -b <mac addr> dumpfile*.cap" ??? Thank you.

Re: rt73 + aireplay-ng = packet injection
 

I switched to a edimax ew-7318usg and no longer get the errors and crashing i was getting before, but now I get the no response, Found 0 APs as jaeezzy does.

If I use "iwconfig wlan1 mode monitor" I get the same results,

However If I use "airmon-ng start wlan1", t atleast finds the APs but is unable to inject. What is the difference between using iwconfig and airmon-ng to put the card into monitor mode?

Re: rt73 + aireplay-ng = packet injection
 

Unplugging and plugging back, changing to otg and back to host mode back again and even restarting my IT do the work for me coz still sometime I get "No Answer" message. Everything is working now even cracked both WEP and WPA2 passphrases.

Re: rt73 + aireplay-ng = packet injection
 

Thanks Jaeezzy, I didnt realize that it still works if you sometimes get that message.

Re: rt73 + aireplay-ng = packet injection
 

Can anyone compile driver for other than rt73 chipset?
For example Realtek 8187.
rt73 chipset is quite old and relatively hard to find.
Could somebody help with this specific driver? This driver is in back-track's3 kernel by default.

Re: rt73 + aireplay-ng = packet injection
 

http://www.internettablettalk.com/fo...ad.php?t=19575 - but people say that the diablo ones I compiled aren't working, I don't have a 8187 so I don't know...

Re: rt73 + aireplay-ng = packet injection
 

im confused, what does this do?

Re: rt73 + aireplay-ng = packet injection
 

just realised what this is, now reportinng it to the mods and when i find where i report it to the relevent legal organisations 7 months ago i hit a invisible limit, wierd i thought, then 6 months i went over again and got charged,i checked my router and discovered an extra ip i then changed my wep code assuming the default had been guesed it reappeared a week later so i disabled wi fi, for 2 months maybe more, i guess it was prats like the topic creator that allowed this scum to steal my wifi with this type of software. now this may seem harsh, im sure theres legit reasons to hack wifi cant think of any my self, but im sure this should NEVER be publicly available

Re: rt73 + aireplay-ng = packet injection
 

Well mrgreaper I would say that this software is a tool. Like any tool there are bad uses and good uses for it. There are bad uses like stealing wi-fi and there are good uses like security testing. For example you could run it against networks you have permission to use it on, such as your own, to test the security of your own network. So if someone runs it they might learn some things like, I should really change the default password, I should change the password to a strong password, or I don't really need wi-fi on, or I should really use WPA2 instead of the really, really. really, really, easily cracked WEP. Finally, security through obscurity does not work, if it did Windows would be the most secure OS out there. The presence of these tools, if anything, increases security by making the flaws in WEP something that router and wireless card manufactures cannot ignore. Really, finally, if you use WPA2 and a long non-dictionary password with some special characters you can make it almost impossible for someone to crack your network.

Re: rt73 + aireplay-ng = packet injection
 

mrgreaper, I am really sorry for you. Anyone who abuses this technology is really bad. There are only two usage scenario's I can see, one is testing your own set-up, and the other is cracking someone's internet if you really need it (aka you are completely lost, no cell signal, its getting dark, etc). I think this is ok, but overcharging you like that is really a crime. I don't think people here are interested in doing those criminal activities. If they really wanted to, they would use a much simpler laptop with Linux, not a tablet.

Also, I would advise you to listen to D'ohboy. I would also add a few notes. Turn OFF your router for added security. It takes like 5 seconds to turn it of and back on. Use WPA2 or whatever the newest security is. Use a 128 bit (or higher) password, made from RANDOM letters and numbers and symbols. There are generators on the internet for this. Seriously, the best thing you can do for these problems is turn your router off. You can't connect to a off router! Next, change you password every month. Its worth it, because most devices remember the password, so you only have to updated them once a month.

If you are a 1337 haxor, chances are the person leaching off your WiFi is some *****, so you can attack him back. :)

Don't blame the technology. If this was not public, then it would be even worse. Manufactures would think everything is fine and dandy, while the underground stoles the interweb.

Re: rt73 + aireplay-ng = packet injection
 

Oh, for sure:

http://www.ex-parrot.com/~pete/upside-down-ternet.html

I'd use that script to redirect the guy to goatse personally...

Re: rt73 + aireplay-ng = packet injection
 

nice,

cant turn my router off as my server pc would then lose netconnection and i use that to monitier my home while at work :(

if it was a stormy night and youu had a dead car and a dead phone i'd like to think you'd knock on a door before illegaly hacking someones wifi!

i reported this to the mods but couldnt find who to report it to officialy though i have emailed the C I B (citezens advice beuru) they should be able to advise me where to report this to.you serously believe everyone here just wants to check there wifi security?

Re: rt73 + aireplay-ng = packet injection
 

I do.

Huh? What?

Re: rt73 + aireplay-ng = packet injection
 

I've used programs like this to test my security too.

Re: rt73 + aireplay-ng = packet injection
 

I was making a crack at Windows, because they support security through obscurity. To quote Windows v Linux security: the real facts.
In addition good security practices like using WPA2, a strong password, and changing that password periodically are just good habits to have. Also I would liken this software to any other tool like for example torrent software, it can be used to pirate films and TV shows, but I have used torrents to download Ubuntu Linux ISOs. Software is just software it is how someone uses it that makes it bad or good.

Re: rt73 + aireplay-ng = packet injection
 

Depends on the part of town I'm driving through...

Are... are you kidding? None of this is illegal. You're threatening to report a bunch of geeks (who mostly live outside your country) with reporting them to... someone.

I use this software for security testing on several networks, mon amie.

Where are the grammar nazis when you need them, anyway? ;)

/shrugs

Re: rt73 + aireplay-ng = packet injection
 

I didn't understand your comment because most of the (non-embedded) computers in the world run Windows, and the Windows API is designed for a great deal of backwards-compatibility; there's very little obscure about Windows at all. :D

Re: rt73 + aireplay-ng = packet injection
 

Heh, I guess I should have made a distinction between the obscure of "Man this weeks Robot Chicken referenced a lot of obscure 80's cartoons" and obscure of "The curtain obscured the man behind the curtain."

I also wonder if setting your router to hand out only a limited number of IP addresses would help security.

Re: rt73 + aireplay-ng = packet injection
 

Who is Robot Chicken? ;)

And Bill Gates might be standing behind the curtain, but I can see his shoes.

WPA with a strong password is fine. Unless you're a bank or something.

Re: rt73 + aireplay-ng = packet injection
 

closed source meaning they legally wont let u modify it if one can get their hands on it?

.. must be someone with spare time and skills to rewrite the internal NIC driver

I'll throw at least $40 in for whoever does it

Re: rt73 + aireplay-ng = packet injection
 

you can guess what's on my xmas wishlist!

Re: rt73 + aireplay-ng = packet injection
 

Can someone help me out? I have a usb WiFI adapter with a RT8187 chipset. Do I need to compile the drivers for my 770 myself, or are there already some around somewhere?

Re: rt73 + aireplay-ng = packet injection
 

someone compiled r8187/rtl8187 already? just still waiting for...

Re: rt73 + aireplay-ng = packet injection
 

BAHAHAHAHAHA

i'm sorry, it must be something in the water because people seem to getting more insane every day. Watch FOX news much? :eek:

Re: rt73 + aireplay-ng = packet injection
 

I need help. I just can't get it to work on my N800... I have an Edimax EW-7318Ug.

I'm stuck at loading the driver. When I enter "insmod ./rt732.ko" the command line freezes. Output from dmesg:
Output from lsmod:
I can't kill the insmod proccess even with the -9 switch. I have to unplug the adapter.

After plugging it back in lsmod says:
and dmesg output is:
It seems that the driver is not loaded, though... iwconfig only shows lo and wlan0:
Can anyone help me? Can you recommend me another adapter?
Thanks!

Re: rt73 + aireplay-ng = packet injection
 

I don't have that adapter anymore... Please, recommend me another one, that's tested with the N800 and is 100% working.

Thanks!

Re: rt73 + aireplay-ng = packet injection
 

I'm getting the -exact- error messages you are, to the letter.

And just to check I followed the same steps you did to debug it and I got all of the exact same results, I'd like to clarify though that the lsmod changes it to "Live" after the devices is removed, not when it's plugged back in... Also that if you insmod while the device is -not- plugged in, it doesn't hang, and drops the driver into the "Live" status immediately. Seems like it gets stuck on something only while the device is plugged in, but regardless, the device never works.

I'm currently not using a self powered USB hub, so that very well be the cause... Seems consistent that those weird timeout errors could be due to lack of power. I'm going to get a self powered hub in the next few days so i'll report back about whether or not it was the problem.

For the record I'm using a linksys WUSB54GC which I purchased from target about 6 months ago and can inject with successfully in ubuntu using this patch. I'm running on diablo on my N810, and am using a hacked usb cable for host mode (though I also tried dumping in 'host' to no additional effect).

Re: rt73 + aireplay-ng = packet injection
 

I got a battery pack hooked up to a self powered hub (portable w00t) and now it works perfectly... I had some issues at first but after reloading the driver and fiddling with it, the original instructions by mutex seem to work...

Except that I can't seem to get injection working... Testing with aireplay yields:

And doing using aireplay's replay attack doesn't seem to be affecting the data count. I caught many packets passively though, so that seems to work fine, but then when I tried running aircrack I ran into more problems...

No matter what I did after capturing about 140k IVs I couldn't coerce the key out of it, using PTW, -z, regular aircrack-ng, nothing. Could be due to the older version of aircrack? I transferred the cap file over to my desktop and it cracked it in 2 seconds with the default settings of aircrack-ng 1.0 rc1... ??? lol

Anyways, mixed success... I'll let you guys know if I get injection working and can figure out what I was doing wrong, otherwise let me know if you're not yet to the point I'm at and need elaboration on something.

Re: rt73 + aireplay-ng = packet injection
 

So does anyone know if a patch for the tablets internal NIC driver is possible or is it still wishfull thinking.

Re: rt73 + aireplay-ng = packet injection
 

Has anyone got the rt73.ko and rt73.bin for 2.6.21?

Edit: found them here http://wiki.maemo.org/USB_to_ethernet_networking

Re: rt73 + aireplay-ng = packet injection
 

mrgreaper while your at it you need to "Report" Rapidshare.com for hosting millions of illegal files !!!!

Also you cant stop information ....Freedom of speech also means written words..... if not what about all the def people out there ???