After checking this page hxxp://bcm43xx.berlios.de/?go=devices, the Broadcom 4311 is supported in the 2.6.20.6 and later kernels. I checked BT and it uses the 2.6.20-BT-PwnSauce-NOSMP. My question is, does the BT kernel support the Broadcom 4311. I've tested it for injection and it doesn't work. I had a similar problem, though, with the WUSB54g wireless card but was able to find a workaround.

After checking this page hxxp://bcm43xx.berlios.de/?go=devices, the Broadcom 4311 is supported in the 2.6.20.6 and later kernels. I checked BT and it uses the 2.6.20-BT-PwnSauce-NOSMP. My question is, does the BT kernel support the Broadcom 4311. I've tested it for injection and it doesn't work. I had a similar problem, though, with the WUSB54g wireless card but was able to find a workaround.
http://backtrack.offensive-security.com/index.php?title=HCL:Wireless

Injection is not supported.

The page that you refer to, says that the bcm43xx is patched for injection. Is that incorrect?

The page that you refer to, says that the bcm43xx is patched for injection. Is that incorrect?
The page does say that. However, Broadcom support is sketchy at best, and you can see from the Wiki entries that not many (if anyone) people have gotten it to work.

yep...i got one and you can see it's not working well if you do a --test attack on it that


aireplay-ng --test eth0 >>> will say you it's working

BUT

if you have 2 cards you can test attacks....
eth0 is card we want to test , ethX is a card wich will act as an ap

aireplay-ng --test -i ethX eth0

you can see with this command that none attack except fakeauth are working...............

so injection is not working really.....

Couldn't have said it better myself. Wait, I did say (http://forums.remote-exploit.org/showthread.php?p=30183#post30183) it. ;)

Is there anything we can do to make this driver capable of cracking a WEP key or use aireplay?

Is there anything we can do to make this driver capable of cracking a WEP key or use aireplay?

Yes there is, you could either

Re-write the driver and make it work properly
or
Wait until the people who wrote the driver fix the problems

Yes there is, you could either

Re-write the driver and make it work properly
or
Wait until the people who wrote the driver fix the problems

Ok since i even have to ask i know that im not capable of doing it, but would you mind giving me some info on what i would need to do to make it be able to perform injections?

Try using aircrack-ng v0.9.1. If memory serves me, I think the broadcom 4311 will do everything but the fragmentation attack.

Try using aircrack-ng v0.9.1. If memory serves me, I think the broadcom 4311 will do everything but the fragmentation attack.

Yes but dont you need to use aireplay-ng to gather enough packets to crack a WEP key?

well the truth with any of brcm chipsets is that some device works some not and that with the same chipset.... this driver is definitivly sketchy.......

i got one and i use ndiswrapper only for connecting internet only.......
i never use brcm for sniffing or injection (sniff could be ok)

it's really strange but i got these pbs not only under bt, but under ubuntu, slackware, fedora, DSL, wifiway..................

so FORGOT BRCM IF U WANT A STABLE CARD...........

guys from bcmXX are on this drivers for long time and no way to fix these strange things.....

well the truth with any of brcm chipsets is that some device works some not and that with the same chipset.... this driver is definitivly sketchy.......

i got one and i use ndiswrapper only for connecting internet only.......
i never use brcm for sniffing or injection (sniff could be ok)

it's really strange but i got these pbs not only under bt, but under ubuntu, slackware, fedora, DSL, wifiway..................

so FORGOT BRCM IF U WANT A STABLE CARD...........

guys from bcmXX are on this drivers for long time and no way to fix these strange things.....

What would be a good card then for sniffing/injecting?

have a lokk in bt HCL in the BT WIKI