Kismet SVN
 

Kismet is an 802.11 layer2 wireless network detector, sniffer, and intrusion detection system. Kismet will work with any wireless card which supports raw monitoring (rfmon) mode, and can sniff 802.11b, 802.11a, and 802.11g traffic.

Kismet identifies networks by passively collecting packets and detecting standard named networks, detecting (and given time, decloaking) hidden networks, and infering the presence of nonbeaconing networks via data traffic.

http://qwerty12.maemobox.org/screenies/kismet.png

I compiled the latest SVN, applied tz1's patch to enable the GPS successfully if you wish it to, modified the config files to make it save in /media/mmc2/kismet and wrote a script that starts it for you properly.

WARNING: The config files use channels by default that is designated for people outside the US, you may get ****ed over by the authorities if you run kismet in the US with all the channels enabled.

I've ran kismet for 17 and 24 hours fine. Any longer, and it probably will mess up but at least it can run for more than a hour :)

The script will save your current autoconnect & search interval settings and then disable autoconnect and searching automatically as they mess up kismet. You then have 5 seconds before your current wifi connection is disconnected and if it doesn't exist, the logtemplate directory will be made as to stop kismet from exitting if it doesn't exist. After you close kismet, the internet connection will be reset so you don't have to reboot to use the internet again and your autoconnect & search interval settings will be restored.

DEPENDENCIES:

You need libpcap to run it:
http://repository.maemo.org/pool/dia...sso1_armel.deb

For my script, you need:

- Wireless tools - so that the internet connection can be reset without rebooting:
http://repository.maemo.org/pool/dia...ireless-tools/

- Rootsh - so that the internet connection can be reset (I run commands as root and I can't be arsed to make a sudoers file):
http://maemo.org/downloads/product/OS2008/rootsh/

- Aircrack - so that you have something to crack the dumps with and so that you can reset the internet connection:
http://www.internettablettalk.com/fo...d.php?p=190941


Source and deb here: http://qwerty12.maemobox.org/kismet/

Re: Kismet SVN
 

Aahh! That was the most annoying problem with the original kismet (which I still have installed), which is why I'm not using it much. Very good.

Re: Kismet SVN
 

Just tried to load the "Libpcap" package via application manager and it gave me an unsupported package alert.

Should I be doing this via xterm?

Re: Kismet SVN
 

i get the same message...

Re: Kismet SVN
 

You may find the deb file for diablo on gronmayer

use the search button with "libpcap0.8" and install the Maemo diablo/tools repository

Re: Kismet SVN
 

if you prefer to save and trasferring the deb file to your tablet

h*t*t*p://repository.maemo.org/pool/diablo/free/libp/libpcap0.8/libpcap0.8-dev_0.9.5-1osso1_armel.deb

remove the *

Re: Kismet SVN
 

Same error using the above libpcap0.8

Re: Kismet SVN
 

use apt-get or dpkg. this isn't meant to be user friendly

Re: Kismet SVN
 

i've tryed it today, no stop detection problems, i could get gps data with internal gps and minigpsd, but when you lanch the program from the icon it launch the server then hangs (but with the server correctly working in the background) before to launch the client. I've just opened another xterm and launch the client there and i got gps-data. Sure the fix is not so fast, you have to be patient..tomorrow i will check if i've misconfigured some option somewhere and if it's possible to have the correct behavior.
with no gps data it works perfectly.
Thanks qwerty12

Re: Kismet SVN
 

With GPS enabled (on the tablet using the hildon/bt calls instead of minigpsd or plain gpsd), sometimes it takes a bit longer for the server to come up to open the socket for the client. If the client is started before the server is ready, it just exits. The time it takes to get to the xterm, the server is usually ready.

Re: Kismet SVN
 

Hey for those of you who still have trouble with dependencies like libcap this is what worked for me...

apt-get -f install

When I did that it installed the missing dependencies for me. You may have to run it more than once though.

BTW...I'm using 43-7 on an N810.

Re: Kismet SVN
 

qwerty12 the link in the first post is dead, could you please provide another one, unless an even newer version of Kismet is available elsewhere.

So far I've installed libpcap, roothsh and Wireless tools, will install Aircrack (will search for the newest available) as soon as I get Kismet running.

Re: Kismet SVN
 

Unfortunately, I can't do so as I don't have the source - nor the packages - any more. :(

I'm peed because I wrote an awesome script for it too. But, I actually need this as well and soon as I rebuild, I'll be sure to reupload deb and sources.

Re: Kismet SVN
 

Please do, unless someone has saved and can upload it somewhere.

Re: Kismet SVN
 

I'm more than happy to host anything you want... I could even set up qwerty12.qole.org ;)

Re: Kismet SVN
 

Does ANYBODY have the binaries for the Kismet SVN that were here?

It would be greatly appreciated.

Re: Kismet SVN
 

The Kismet newcore builds but it uses a totally diffefent config system so I'll look into that after some Mer work.

Re: Kismet SVN
 

Cool.

I just setup SB, so I'll cross compile it. I don't plan on waiting around for binaries to come up, or people to port stuff over to ARM.

I'll do it myself and then post up for other users.

Thanks qwerty12.

Re: Kismet SVN
 

I think I have the file you're referring to. Unfortunately it's bigger than the maximum attachment size, so I've split it into two. Join together as follows:

$ gunzip kismet_2007-10-R1+svn2377-0.sipb1_armel.deb.00.gz
$ gunzip kismet_2007-10-R1+svn2377-0.sipb1_armel.deb.01.gz

$ cat kismet_2007-10-R1+svn2377-0.sipb1_armel.deb.00 kismet_2007-10-R1+svn2377-0.sipb1_armel.deb.01 >kismet_2007-10-R1+svn2377-0.sipb1_armel.deb

Check it's joined okay by comparing the MD5:

$ md5sum kismet_2007-10-R1+svn2377-0.sipb1_armel.deb
594e2ba45cf98c78be53984082502270 kismet_2007-10-R1+svn2377-0.sipb1_armel.deb

Re: Kismet SVN
 

And here's the source code, split in the same way. Joining instructions:

$ gunzip kismet_2007-10-R1+svn2377-0.sipb1.tar.gz.00.gz kismet_2007-10-R1+svn2377-0.sipb1.tar.gz.01.gz kismet_2007-10-R1+svn2377-0.sipb1.tar.gz.02.gz

$ cat kismet_2007-10-R1+svn2377-0.sipb1.tar.gz.00 kismet_2007-10-R1+svn2377-0.sipb1.tar.gz.01 kismet_2007-10-R1+svn2377-0.sipb1.tar.gz.02 >kismet_2007-10-R1+svn2377-0.sipb1.tar.gz

Check you've joined it correctly:

$ md5sum kismet_2007-10-R1+svn2377-0.sipb1.tar.gz
6f8dac596bce92dda675b3dadcf4da44 kismet_2007-10-R1+svn2377-0.sipb1.tar.gz

Re: Kismet SVN
 

You're ****ing awesome. Let me clean up this version tomorrow and I'll have it in Extras. Thanks!

Re: Kismet SVN
 

Thanks to cpm, Kismet should be in Extras-devel! But the autobuilder is ****ing up (I've got a e-mail saying that building failed but summary.log says nothing and there are no logs saying as to why it's failed. And I see a string of packages before mine that have "failed") so I'll upload it to qwerty12.qole.org!

http://qwerty12.qole.org/kismet_2007...ipb1_armel.deb

Did things properly and wrote a sudoers file instead of depending on rootsh and some other minor tweaks.

Source: https://garage.maemo.org/builder/dia...0.sipb1.tar.gz

You may want to install aircrack:
http://freefile.kristopherw.us/uploa...c3-2_armel.deb
http://freefile.kristopherw.us/uploa....1-5_armel.deb

I can't upload that because they were built in a custom target in Scratchbox. I am now free to try and get a sane config file for the new Kismet Newcore :) (and I will try and get into extras when the autobuilder works again)

Re: Kismet SVN
 

qwerty12: Are these binaries pre-patched with tz1's GPS diff? The Hildon BT API call stills runs as root, even though kismet_server drops privileges.

Re: Kismet SVN
 

Yes, I just found TZ1's patch and made sure it was applied. The patch is only for kismet_server.cc. But I have an N810 now and I'll test out the GPS later.

Re: Kismet SVN
 

Bah, tried it on N810. GPS activates, gets a lock and then just stays at "Hildon BT 0:". I'll look into it sometime.

Re: Kismet SVN
 

Thanks for the work qwerty!

I was going to ask about if you saw the app stop at "Hildon BT 0", but I see you already have. The unit is still tracking as I just did an hours wardrive with the screen stopped at "Hildon BT 0" and I look at the data file and everything is there INCLUDING GPS data. I was going to ask if it's kosher to run from the CLI because I'm not sure how to look at the instructions in the "kismet" icon in Extras.

Re: Kismet SVN
 

Can't take credit for it - the work has been done by others :)

Thanks for the report, I thought it was just stuck :)

Re: Kismet SVN
 

Like stated, the server will hold and won't automatically run as a daemon. No big deal, I can spawn a new process for kismet_client and run it - or just run KismetQT from inside a Debian chroot environment.

The n810's GPS takes ridiculously long to initiate, I'll post my tests after pairing it my E71, if gpsd will poll from it.

cpm, thanks for the source. qwerty12, thanks for the build.

Re: Kismet SVN
 

I'm sorry but the file at https://garage.maemo.org/builder/dia...0.sipb1.tar.gz does not contain the source. Can you repost?

-power

Re: Kismet SVN
 

You're copying and pasting the truncated link into your browser. Click on the full link (as it is in my post) and the source will be there.

Regards

Bleh, I'm being a smart *** (but not even right). They must've removed it as I get a 505b file saved. Lemme upload it again, sorry!

http://qwerty12.qole.org/kismet_2007...0.sipb1.tar.gz

Re: Kismet SVN
 

I installed the libs, installed aircrack-ng (rc2) and installed kismet (from qwerty12.qole.org) and everything seems to be running okay.

In Kismet, i cannot seem to find a way to single in on just one network. Also, where is it saving the IVs to (or do you have to hit something to make it save...)?

I've searched and searched, and the problem with searching through old posts is that you don't know what information is still good, or obsolete (that's a general observation, not just for this topic).

Any help / tips / tricks / wisdom would be greatly appreciated.

|||EDIT:
Back here again... It all seems so much easier this time ;)

Re: Kismet SVN
 

maybe kismet documentation could be of any help?

http://www.kismetwireless.net/documentation.shtml

Re: Kismet SVN
 

Indeed. I was going to post that - but to answer your questions;

You need to sort and select an AP then lock on to it. press 's' to sort, press 'f' for first found and then press 'L' (capital) to lock onto that channel (it won't hold by BSSID). Use airodump-ng for that instead.

You will also need to read /etc/kismet/kismet.conf to find your log file directory. The conf file looks a bit intimidating at first if you're not used to reading them, but it's very straight forward.

Re: Kismet SVN
 

Updated the deb found here. Replaced with tz1's older GPS hack that works. I couldn't make the GPS stop when exiting so you'll have to reboot when finished.

Re: Kismet SVN
 

Everytime I try to install LIBCAP it tells me that it's an invalid package.
How do I get around this?