|
Re: Searching for Aircrack Howto!
sorry scrap that now i have another problem no data collects at all not even 1 after an hour !!
blag.com |
Re: Searching for Aircrack Howto!
Correct me if I'm wrong but most wifi networks nowadays are WPA. Not WEP. Is there a tutorial on how to use aircrack in WPA networks?
|
Re: Searching for Aircrack Howto!
Quote:
|
Re: Searching for Aircrack Howto!
Quote:
With WPA, you must force a host to deauthenticate a client, forcing them to reconnect. You can then capture what's called a wpa handshake which can be used to find the password. However, you cannot crack wpa, you must bruteforce it. This means that you must compare it against wordlists and if the key isnt in the wordlist, you're not getting the password. For instance, an 8-digit alphanumeric case-ensitive wpa key would have up to 62771017353866807638357894232076664161023554444640 34512896 different combinations. And this is WITHOUT symbols. On the same basis, a 64-digit wpa key would have up to 39402006196394479212279040100143613805079739270465 44666794829340424572177149721061141426625488491564 0806627990306816 different combinations. In short, it's possible but not feasible. Bearing in mind that a device like the N900 could probably only check a couple hundred keys per second. The best you could do is capture the handshake with the N900 then use a desktop to attempt to crack the password. :) |
Re: Searching for Aircrack Howto!
I think most likely you have to change your macaddress first when playing with aircrack :p.
EDIT: Do you want to say that the combinations is calculated like this: 10! + 26! + 26! for numbers and letters? Please help! |
Re: Searching for Aircrack Howto!
Well WEP is a joke, taking approximately 5 minutes to crack any key!
As mentioned WPA is just not possible to crack unless the passphrase is a dictionary word. This is when you turn to more imaginative methods, such as using airbase-ng in conjunction with a web server, to fake an AP and request the user's passphrase for "authentication" aka phishing. Not easily implemented on a mobile device let alone a desktop terminal. The inherent weakness of WPA/WPA2 is that people set passwords that are "easy to remember" or that are relatively short in length. Each time you extend your passphrase by one character you theoretically multiply the previous number of possible combinations by 94! |
Re: Searching for Aircrack Howto!
Quote:
Letters = 52 (small and caps) Numbers = 10 (0-9) 8 to the power of 62 (I think. Whatever it is, a word list that is guaranteed to crack ANY wpa key (including special characters, and up to 64 digit keys) would be thousands of terabytes.) |
Re: Searching for Aircrack Howto!
1 Attachment(s)
Quote:
also tell is this method correct to crack a WEP key i have installed rootsh aircrack-ng and macchanger also |
Re: Searching for Aircrack Howto!
Quote:
I suggest you type air in to your rootshell and tap "TAB" then you will all available programs starting with air*. Unfortunatley it doesn't work the other way and listing all programs ending with air. I supposed you don't know either how to code a trie neither do the shell-coder knows it? But I have installed aircrack-ng too and I have airreplay-ng. |
Re: Searching for Aircrack Howto!
1 Attachment(s)
ok he did not tell me to type -ng after aireplay well now there is new problem here is see image and plz help me
|
Re: Searching for Aircrack Howto!
Not sure... I always type the mode as "Monitor" not "monitor". Try that, see if it helps. I also found that launching kismet after setting your card to monitor mode with iwconfig, then closing kismet and trying to inject, gets me that output. I have to unload and reload the lxp drivers to get it to work again.
Oh, you also asked about macchanger: I just run "macchanger -r wlan0" after/before changing the mode, while the interface is down, both before and after injecting. |
Re: Searching for Aircrack Howto!
Case is not sensitive with that. AFAIK, kismet uses an upper ioctl to place the card into RFMON and creates a new VAP interface.
If you have the entire aircrack-ng suite, you could just use airmon-ng to do this for you - which will issue via iw* with "intelligent" driver tracing. |
Re: Searching for Aircrack Howto!
1 Attachment(s)
OH i am a noob (just find it out)lol
well i am following this tutorial on you tube http://www.youtube.com/watch?v=I6NcP...eature=related and stuck here (see in the video it happens at 3:00 ) help me i am in the last steps now(does this screen takes a looooong time) |
Re: Searching for Aircrack Howto!
Quote:
Code:
ERROR: Neither the sysfs interface links nor the iw command is available. |
Re: Searching for Aircrack Howto!
iw is available in extras, but has dependency issue with aircrack-ng for some ridiculous reason.
Remove aircrack-ng suite, install iw, grab aircrack-ng sources from svn, cross compile with unstable=true and send the binaries over manually. Again, I've been using this for many months just fine, pushing new svn to my N900 when it's available. |
Re: Searching for Aircrack Howto!
Only problem for people with no compiling experience what so ever being, well, the actually setting up an environment with which to compile.
Naturally, a problem that can be solved by researching. If you've got the time though, some quick questions: Okay, assuming I understood you and I can just compile on Debian for Armel, then move the binaries over to the N900. That's what your last post sounded like to me anyway. As such, I have a more technical question: When you do your compiles of Aircrack-NG, do you include the airolib-ng support? It seems like a good idea, since it lets you use precalculated lists of PMKs (if I understand correctly), but frak if I know. (I'm just going to compile with airolib-ng support. Worse case scenario it doesn't work when moved over, I assume, but getting a for-sure answer helps in case it doesn't work on my N900, but is actually supposed to work). |
Re: Searching for Aircrack Howto!
I made a very fully featured bash script for automating lots of aircrack functionality that I used to use all the time on my laptop (for perfectly legitimate reasons of course)
I'd be happy to share it but the only problem is I can't seem to work out how to open a new xterm window and run a command in it via a script |
Re: Searching for Aircrack Howto!
This is the EASIEST video there is :)
Follow this: http://www.youtube.com/watch?v=9LRSxQ7UoAc (watch and follow tutorial from 1:25 till end) just keep in mind that you have to type in wlan0 instead of mon0 But before you start video, you have to know this: Load the driver first! And when you start and everytime you run a new X Terminal, you need to be root :) That's all !:) |
Re: Searching for Aircrack Howto!
Quote:
Simply checkout via subversion and issue `make unstable=true` and you'll get all the binaries including wesside-ng, easside-ng and besside-ng. |
Re: Searching for Aircrack Howto!
You mean I don't have to do anything special to cross compile for arm, even though my virtual machine is in debian - just "make unstable=true" won't give me armel binaries from on a non arm virtual machine, right? I've been following this tutorial to figure out how to set up a compiling-for-arm version of
http://www.ailis.de/~k/archives/19-A...ing-howto.html Slightly revised to use a later version of the kernel (2.6.28.10 - I wasn't sure if going above the kernel the N900 uses would break anything), for the configure kernel part of the process. I'm currently looking up what processor to check off in the config, as the proper TI OMAP art processor type to go with the N900 one. - Edit - Finished that... Hopefully things went right. It gave me a giant list of option to type y/n/m/? to when I ran "make dep" as per the above how-to. I eventually just held down the enter key for a while. When it finished, it told me "make dep is unnecessary now". *Shrug*. On the gcc part now. |
Re: Searching for Aircrack Howto!
Yes, you need a cross compile environment setup.
If you're using Debian, just use the Maemo SDK ones to do it for you. http://wiki.maemo.org/Documentation/...l_Installation |
Re: Searching for Aircrack Howto!
Well, I'm deep enough in setting up a cross compiling environment already that I decided to keep going with it, but thanks for reminding me about the Maemo SDK. I'll be using that if this doesn't work... Which, well, it very well may not. I deviated from the tutorial for the much newer gcc sources, which, honestly, pretty much threw a fit, complaining about a bunch of missing stuff, which I then fetched from the gcc infrastructure ftp directory, and then all those threw a fit until I figured out how to run 'configure --host=i486-linux', so, well, it's a matter of luck now as to whether or not I fraked stuff up or did it right.
If I had thought of using the Maemo SDK before though, I probably would've done that (though I've had difficulty trying to set it up in a Ubuntu machine a while ago before; but at the same time, that was the automated-scripts-for-installing-scratchbox containing image, and now I am a bit more confident that I could figure out how to set it up directly from the wiki instructions without relying on the automated scripts). - Edit - Well I'll be damned. Maemo 5 SDK installed from the python-based GUI installer without a hitch. (Well, I haven't ran anything yet, but it didn't throw any errors at me, or anything to make me think it didn't work. After the 4 or so hours of just sitting around trying to set up a cross-compilation toolchain the non-automated way, this is a major relief to not have to have something break.) |
Re: Searching for Aircrack Howto!
Quote:
|
Re: Searching for Aircrack Howto!
nicholes: The "load the driver first" basically means just that: Make sure you've got the normal driver unloaded, and lxp's driver loaded. If you HAVE lxp's driver, there's a basic load/unload script that can be easily launched from x-terminal that comes with all the modules/driver. (It's even in the same folder when you download and unpackage it.)
Hawaii: I ended up figuring out how to compile within scratchbox (couldn't figure out how to compile from outside scratchbox using its tools, but whatever, not a big deal), and eventually figured out where scratchbox was chrooted to, so I figured that part out as well. As a result, I was able to compile all the binaries from the SVN code. The funny part? I have yet to figure out how to get those binaries out of the Debian VM I have set up. I tried SSH'ing out to my N900, but either my campus network or the host Windows Vista OS is causing problems (need to dig through all the firewall settings/logs, etc.), because it never gets a response. I CAN SSH to my Vista machine from either computer, but FreeSSHd, which is what I'm using as my Windows SSH server, can't do scp apparently. After the toolchain-figuring-out phase of yesterday though, I know this is just a matter of time. I can still probably use my Windows as the client, SSH into the VM. *Shrug* Just thought the fact that I got all of that done only to be stumped on how to get the binaries out was amusing. Technical question though: Do I need to copy over anything other than the binaries? (Are there some libraries that Aircrack-NG uses which the N900 won't have onboard, that I need to find wherever Scratchbox stuck them?) |
Re: Searching for Aircrack Howto!
Quote:
|
Re: Searching for Aircrack Howto!
No, simply copy the single binaries out - if scratchbox didn't throw any exceptions then it's fine, all the libraries are dynamically linked.
|
Re: Searching for Aircrack Howto!
Huh, apparently trying to set Shared Folders in VirtualBox has about a 50% chance of freezing both the Host and Guest OS on my machine.
Ultimately, I just went with tar-ing the binaries together and emailing them to myself as an attachment in gmail, which I then opened from the N900. I appreciate your help in all this hawaii. (Actually, now that I've seen how easy this is, all I need to do is figure out how to send stuff into the auto-builder, and there's no good reason other than possible time constraints to not keep pushing the latest builds to devel, no? I think if and when I do figure out how to do that, I'm going to request to become the maintainer for the current aircrack-ng package, get rid of the aforementioned iw conflict, and do just that.) |
Re: Searching for Aircrack Howto!
Hey,
I am new on this Forum, and tested this little Tutorial for airckrack.. But i used a N900. I hoped it would work, everything was fine, so I started to capture some datas. In the termina I saw, #Data 9674, so I thought thats enough, and I startet aircrack. After chosing the right Index, there came a message, that its quitting aircrack, because there are no packets in the file. Why didn't it save the packets in the file? I hope you can help me, sorry for my bad english, only "Schoolenglish" Thanks Jonathan |
Re: Searching for Aircrack Howto!
Quote:
If you are using the N900, you should try my GUI for aircrack called fAircrack. There's a link in my signature. |
Re: Searching for Aircrack Howto!
Hello, I have made video about aircrack:
http://www.youtube.com/watch?v=txBfZr-fFag I hope you will like it |
Re: Searching for Aircrack Howto!
Is it necessary to connect your device with gprs data ?
|
Re: Searching for Aircrack Howto!
hello there,, does the same thing work for the nokia n900??
|
Re: Searching for Aircrack Howto!
Good one !!! LOL
Quote:
|
| All times are GMT. The time now is 16:19. |
vBulletin® Version 3.8.8