This thread was created as a companion to the
Quick Guide to Breaking WEP because it exceeded the character limit. Still, useful.
Checking for injection
If you are unsure if your card is injecting properly there is a simple test you can do. First you will need to bring your card into monitor mode (
iwconfig DEV mode monitor where DEV is your wifi device. There may be additional steps involved in preparing your system for injection. Some cards do not support monitor mode, either.)
Then start wireshark (it's in the sniffers menu, or type "
wireshark" into a console. It's worth noting that until recently his tool was called ethereal.) Click the button to show the capture options (second from the left, little wrench icon) and select your wifi device from the drop down menu. Check the box to update the list of packets in realtime and then start the capture. If you want to display only the deauth frames you are about to broadcast, enter the following into the display filter of wireshark (NOTE:
Display filters and Capture filters are not the same thing. The display filter input box is labled "Filter:" and is located just below the options button.)
Display filter for deauth packets in wireshark
wlan.fc.type_subtype == 12
Next, in a fresh konsole or xterm window, type:
aireplay -0 10 -a 01:02:03:04:05:06 DEVICE . This command will broadcast 10 deauth frames to a nonexistant AP. If all goes well the deauth packets should show up in the wireshark capture frame.
As usual, I'm open to corrections and additions, PM me if you have any.
Links
Ethereal Wireless Filter List
Original WEP Cracking Tutorial