Updating Kismet, Mapping with Giskismet, and Installing G-Earth + Maps Live

[vvpalin]

First remove the old kismet

Quote:

apt-get --purge remove kismet
# press y
apt-get clean

Now lets grab the new one

Quote:

cd /pentest/wireless/
wget hxxp://www.kismetwireless.net/code/kismet-2009-05-RC2.tar.gz
# Change the above line to http
tar -xzvf kismet-2009-05-RC2.tar.gz
rm kismet-2009-05-RC2.tar.gz
cd /pentest/wireless/kisme*
./configure --disable-setuid
make dep
make
make install

Plug in your gps and wait about 60 seconds before doing this command

Quote:

gpsd -N -n -D 3 /dev/ttyUSB0

Now lets open kismet from bash in a new window and follow the directions. "man kismet for more help" but basically start the server and remember to put in your interface.

After we have our data lets see the results. For that we are going to use giskismet.

Download and extract

Quote:

wget -O giskismet-0.02.tar.gz \
"http://my-trac.assembla.com/giskismet/browser/tags/giskismet-0.02.tar.gz?format=raw"
tar -xzvf giskismet-0.02.tar.gz
rm giskismet-0.02.tar.gz

We need a few packages first.

Quote:

apt-get install \
libxml-libxml-perl \
libdbi-perl \
libdbd-sqlite3-perl

Do the install

Quote:

cd giskismet-0.02
perl Makefile.PL
make
make install

Before we map our data lets get google earth from HERE

Follow the directions "sh GoogleEarthLinux.bin" but when it asks for the binary path make sure you put

/usr/bin

Now to map the kismet data we can just issue these commands

Quote:

giskismet -x wardrive.netxml
giskismet -q "select * from wireless" -o output.kml

Or you can use this shitty little script i made to do it faster. Just save it as quick.sh and then "bash quick.sh"

Quote:

#start
function chanssid {
giskismet -x "$FILENAME" --channel "$CHANNEL" --essid "$SSID"
giskismet -q "select * from wireless" -o "$ONAME"
}
function channel {
giskismet -x "$FILENAME" --channel "$CHANNEL"
giskismet -q "select * from wireless" -o "$ONAME"
}
function ssid {
giskismet -x "$FILENAME" --essid "$SSID"
giskismet -q "select * from wireless" -o "$ONAME"
}
function blank {
giskismet -x "$FILENAME"
giskismet -q "select * from wireless" -o "$ONAME"
}
rm wireless.dbl
clear
echo Enter your .netxml file name with extension
read FILENAME
chmod 755 "$FILENAME"
clear
echo Do you wish to filter by channel y/n ?
read YNC
clear

if [ "$YNC" = "y" ]
then
echo Enter the channel you wish to display 3, 6 etc..
read CHANNEL
clear
fi

echo Do you want to filter by SSID name y/n?
read YNS
clear

if [ "$YNS" = "y" ]
then
echo Enter the SSID name
echo For more than one, use, a, comma
read SSID
clear
fi

echo Type the outpu file name
read ONAME
clear

if [ "$YNC" = "$YNS" ]
then
chanssid
elif [ "$YNC" = "y" ]
then
channel
elif [ "$YNS" = "y" ]
then
ssid
else
blank
fi

echo Your done just import $ONAME into G-Earth
#end

One more thing from google earth the satellite coverage is absolute shit so i found this wonderful plug-in that will allow switching from G-Earth imagery to Maps Live imagery which happens to be much better for my area.

http://www.mgmaps.com/kml/

[barecool]

Great Work Vvaplin worked like a charm, you create some awesome tuts and how tos very well explained.

Keep up the good work...

[xnoor]

works well man, except that packages URLs are bit changed..

thanks for the effort

[Murmudjum]

Hi,

First of all, thanks for this How To. It was just what I was looking for

I was trying to get my gps working with kismet, so I followed this How To and i almost got it working.


Problem:
Kismet info about position is not changing, it freez on the initial position. (latitude and longitude)

When I connect the gps to my Pc (using a USB cable), it gives me the options, Transfer files and NMEA.

As I read on the "How To" I guess I must chose NMEA. Then it give more options again:

• Off
• V1.5 APA
• V1.5 XTE
• V2.1 GSA

Wich one I must chose?

I used the V2.1 GSA, then I let the GPS get the signal. After waiting 60 seconds I run the gpsd and it starts.

Then I lunch the kismet, I start the server, select the source and it looks linke all is ok.

The Kismet show that gps is connected and it is giving all the informations. But the latitude, the longitude and the speed don't change when I move, they stay freezed. The most strange is that it changes the height on move.


GPS: Magellan explorist 210
dist: Backtrack 4

For more information just ask.

Sorry for my bad english


That's all i hope someone can help me out. Thanks in advance



Murmudjum

[vvpalin]

I have some updates for this thread ill be posting tomorrow, and a few suggestions for you to try.

However in the mean time have you tried doing airodump-ng -w filename --gpsd wlan0 ... if so is the data in there correct or not?

[Murmudjum]

Hello again,

Interesting, when I use airodump it works perfectly.

I'll wait for your suggestions, thank you a lot for helping me, and sorry for taking your time



Murmudjum

[vvpalin]

Sadly all my suggestions are based on it not working completely as i was going to tell you to try changing the protocol method with gpsd.

A quick fix to get newcore files if you really want them is to update aircrack "note you will need to do this as rc2 has probs saving gps files"

Quote:

wget http://download.aircrack-ng.org/airc...1.0-rc3.tar.gz
tar -xzvf aircrack-ng-1.0-rc3.tar.gz
rm aircrack-ng-1.0-rc3.tar.gz
cd aircrack-ng-1.0-rc3
make unstable=true
make install
cd ..
rm -rf aircrack-ng-1.0-rc3

If i remember correctly you should just be able to start it with the --gpsd option and it will save it in both csv and netxml format.

One thing tho, i would recommend not using the new format as its not supported by any other mapping program other than giskismet as far as i know. That however should change shortly when its more widely released but lol im still waiting for it.


I have also updated my mapping script in my first post to support graphing with airgraph-ng

[=Z£Y$=]

Nice write up vvpalin!!

I hope you dont mind me adding the following:

For Garmin devices make sure you do the following before running the gpsd otherwise no /dev/ttyUSB:

#modprobe garmin_gps
#mount -t usbfs none /proc/bus/usb

My device (Garmin GPSMAP 60CX) used to crash every time i was running kismet with gpsd in BT4 so i had to rely on another bluetooth gps device. However after upgrading the kismet and the gpsd (latest is 2.39) everything is working perfectly fine.

For upgrading gpsd :

First remove the existing
#apt-get --purge remove gpsd
press y
#apt-get clean

Then download the latest one:
cd /pentest/wireless/
wget hxxp://prdownload.berlios.de/gpsd/gpsd-2.39.tar.gz
# Change the above line to http
tar -xzvf gpsd-2.39.tar.gz
rm gpsd-2.39.tar.gz
cd /pentest/wireless/gpsd*
./configure
make
make install

After the install, it complained about a library file.
#ldconfig , seems to fixed that.

[Vpoint7]

Great post vvpalin,
Last time my reference was

Code:

w w w.linux-tip.net/cms/content/view/351/1/1/1/

[wavesoldier]

Nice work

I solved the problem with my empty output.kml file due to kismets gps position was not changing.

The aircrack-ng method works great

thank you