maemo.org - Talk - View Single Post

	gogol	2007-08-21 , 10:46
	Posts: 177 \| Thanked: 57 times \| Joined on Aug 2007 @ Washington State, USA	#3

I found and hacked at that script for a while until I got Kismet on another machine to see loads of random ad-hoc networks. There seems to be no way to get the 770's cx3110x conexant chip into master mode, not without some other (nonexistent) drivers, however changing the MAC, SSID, TX power, could all be done easily.

This looked really promising though:
http://rfakeap.tuxfamily.org/

Overall features:

* Raw injection of beacon and probe response frames in monitor mode
* Try to forge coherent sequence numbers and BSS timestamps (depending on driver injection capabilities)
* Try to have a coherent time interval between beacons (which is hard to achieve without a real time kernel)

Command line interface will help you to choose between:

* Randomize Open/WEP/WPA/RSN crypto
* Randomize b/g cards
* Channel hopping
* TXpower hopping
* Randomize ESSIDs (alnum or not)
* Randomize BSSIDs
* Choose beacon interval
* Choose number of fake access points
* Choose a file with valid OUIs
* Choose a file with ESSIDs
* Choose between beacon or probe response frames
* Select a destination MAC address

Note it said IN MONITOR MODE! No hostap/madwifi drivers needed! The link provides c source, anybody deft with the scratchbox willing to compile this? We'd have the uber portable wardriver bomb...

__________________
~Nokia n810 OS Diablo 5.2008.43-7~ my (old 770) hax: http://770hax.today.com

Quote & Reply |