Reply
Thread Tools
Posts: 38 | Thanked: 1 time | Joined on Aug 2007
#1
Hi,

looks like a nice forum here!

Ok, now my question. I would like to try out aircrack here at my home network. Who can help me with this? A short step by step howto would be great.
 
Posts: 93 | Thanked: 4 times | Joined on Jul 2007 @ Anywhere but here
#2
I think, long story short, aircrack will not work properly on a 770. I know, I was bummed too.
 
mfresh's Avatar
Posts: 91 | Thanked: 25 times | Joined on Mar 2007 @ Marlow, Bucks
#3
The main problem with the aircrack-ng suite on the N800 (and the N770 to afaik) is that you can't do packet injection. This means that to crack a WEP key you have to wait around until enough traffic passes over the WEP protected link to crack the WEP key. If injection did work, you could effectively create the traffic you need yourself in a few minutes.

But you can use the suite. Try this after installing aircrack-ng
start Xterm, and become root.

Then enter:
airodump-ng wlan0

This will show you what networks are around, and the MAC addresses of the access points and computers which are connected, and what channels they are operating on. Make a note of the channel of the access point you want to test (ie your own one)

Now quit airodump-ng by doing a control c , then restart it by typing

airodump-ng -c X -w mycapture --ivs wlan0

but change the X for the channel number of your access point. This will start capturing data which you will use to crack the WEP key, in a file called mycapture-01.ivs in your home directory

Now you have to wait for a while, till you have captured enough data to crack the WEP key. If the access point is busy then you might not have to wait too long.

Anyway, after an hour or so, you can try cracking it.

Type:

aircrack-ng mycapture-01.ivs

and hope for the best.

aircrack will try to crack the key, and if you have enough data captured it should crack the key eventually. If not, it will keep trying, as you gather more and more data, until you are successful (or never if you are unlucky, or if there is not enough traffic on the network)

The latest version of aircrack-ng (0.9.1 I think) has been compiled for the N770 / N800 and this includes the new PTW wep attack. The PTW attack, which you activate by using the -z option when you use aircrack-ng, can crack keys with far far less captured traffic than the default attacks that aircrack-ng uses without the -z option, but sadly it only works on traffic captured as a result of a certain method of packet injection, and as the Nokias don;t support packet injection you can't use it.

(If you want to test it on the N800, use a capture file generated by traffic injection from another computer. If you have such a capture file, say injection.cap, you can transfer it to the Nokia tablet and test it by typing:

aircrack-ng -z injection.cap

and you should get the key very swiftly indeed)

Hope this helps, and think very hard before cracking someone else's access point as this could get you in trouble in many countries.

EDIT: Make sure you have wirelesstools installed too - see post later in this thread
__________________
mfresh
visit the Minty Fresh N800 blog

Last edited by mfresh; 2007-08-03 at 14:45.
 

The Following 17 Users Say Thank You to mfresh For This Useful Post:
airhurt's Avatar
Posts: 47 | Thanked: 1 time | Joined on Jun 2007 @ Northwoods of Wisconsin
#4
Thats an awesome explanation. Thank you much!
__________________
Nokia 770
ITOS 2006
Motorola RAZR V3c
Alltel Wireless
 
Posts: 25 | Thanked: 2 times | Joined on Jul 2007
#5
What a great tutorial, finally, a clear and simple guide to basic packet capture.

Sadly, I can't seem to get airodump-ng to display a list of networks,
Code:
airodump-ng wlan0
does not seem to get recognized as a valid entry and displays the list of available command line options (-c -w ....)

The aircrack part of the tutorial works great. Since I couldn't generate a packet dump with airodump, I've used Kismet, but I really hate having to reboot after it's usage (fearing a WSOD), and would much prefer if I could get airodum to function.
 
mfresh's Avatar
Posts: 91 | Thanked: 25 times | Joined on Mar 2007 @ Marlow, Bucks
#6
oprion - that's very strange that airodump-ng doesn't work. You definately seem to be typing the right command.

Just as a matter of interest, if you type ifconfig does wlan0 show up?

airodump-ng on the N800 is a little flakey anyway - I think because of driver issues you tend to get phantom APs as well as real ones showing up, and it will sometimes misdiagnose WEP protected APs as WPA2 etc etc. I don't know if the same is true on a N770
__________________
mfresh
visit the Minty Fresh N800 blog
 
Posts: 2 | Thanked: 0 times | Joined on Aug 2007
#7
Originally Posted by mfresh View Post
oprion - that's very strange that airodump-ng doesn't work. You definately seem to be typing the right command.

Just as a matter of interest, if you type ifconfig does wlan0 show up?

airodump-ng on the N800 is a little flakey anyway - I think because of driver issues you tend to get phantom APs as well as real ones showing up, and it will sometimes misdiagnose WEP protected APs as WPA2 etc etc. I don't know if the same is true on a N770
Hey Mfresh, I too am having the same problem getting airodump-ng to work. Gaining root is no problem, and I have tried a number of airodump commands all which return the same error... "Can't find wireless tools, exiting." And if I just type airodump-ng wlan0 I get the same command list that opiorn gets.

Soo.... i tried the ifconfig and wlan is nowhere to be found. just lo. Any ideas? PS, thanks for your help.
 
brendan's Avatar
Posts: 531 | Thanked: 79 times | Joined on Oct 2006 @ This side of insane, that side of genius
#8
open xterm
sudo gainroot
apt-get install wirelesstools
__________________
Nokia n800
OS 2008
Pharos iGPS 360-BT
ElmScan 5 BlueTooth
BlackBerry Bold (9000)
AT&T Wireless
 
Posts: 2 | Thanked: 0 times | Joined on Aug 2007
#9
DUDE, THAT WORKED... brendan, THANK YOU!
 
mfresh's Avatar
Posts: 91 | Thanked: 25 times | Joined on Mar 2007 @ Marlow, Bucks
#10
Nice one brendan
__________________
mfresh
visit the Minty Fresh N800 blog
 
Reply

Thread Tools

 
Forum Jump


All times are GMT. The time now is 05:43.