2wirexx what is it? (DUH!?! another one bites the dust...)

Esente · #1 (**permalink**) 04-10-2006, 11:05 PM

I use BackTrack on my Laptop with the Live CD. When walking around my house, I found some AP with the SSID like 2WIRE517, 2WIRE121, 2WIRE256, ... Are they the real APs? Can I use Airodump and Aireplay on them? Besides, when I use Airodump, it collects a lot of Beacons from those APs, but can't get any Data (the IVs). Sometimes, it's really hard to see the Client MAC even it connected to the AP. Is there something wrong with the AP, or it's just BackTrack?

Falcon · #2 (**permalink**) 04-11-2006, 12:30 AM

Yes, they're real APs. 2Wire is a pretty popular wireless router brand. The main difference between them and Linksys is every router has WEP enabled by default. This the default WEP key is labeled on the box itself. You can check out http://www.2wire.com/ to see the different models. I've never had any trouble seeing the MACs, maybe somebody else has?

suprahero · #3 (**permalink**) 04-11-2006, 02:55 AM

i know that most of the DSL wireless router are 2WIRE, well atleast around my area.

papadoc · #4 (**permalink**) 04-12-2006, 05:52 PM

In my area SBC uses this model for all DSL subscribers. It is sent with 64 bit WEP enabled and is a sinch to crack.

Esente · #5 (**permalink**) 04-14-2006, 12:26 AM

So, basically, this type of AP is hard to crack, even with 64bit key? Most of the APs in my area is using 2WIRE.

MaNiaC · #6 (**permalink**) 04-14-2006, 02:39 AM

Quote:

Originally Posted by Esente

So, basically, this type of AP is hard to crack, even with 64bit key? Most of the APs in my area is using 2WIRE.

Not at all, its the same as any other router, remember there needs to be traffic on the network for you to start collecting data, might just be a quiet area. packet injection should speed things up but its effectiveness will decrease/increase depending how far away you are from the router and if you are using an antenna.

MaNiaC.

LOLobo · #7 (**permalink**) 04-14-2006, 03:37 PM

Yes but has anyone here actually done It...? On a 2WIRE AP?

I had issues while sending a fake ARP (-1 with Aireply), but I think that was because of my wireless card.

Esente · #8 (**permalink**) 04-14-2006, 08:25 PM

The problem is, the client does not always use wireless, so I can only do the crack when the client is connected. That's where airodump causes me some confusing. For example, after the first dump using "airodump eth0 wepdump 6" (wepdump is the cap file), it creates the file wepdump-01.cap instead of wepdump.cap. And when I terminal it (when the client log off), and start airodump again, it creates wepdump-02.cap

. Each wepdump-xx.cap contains only a number of IVs, so when I use aircrack, will it only use the IVs on each cap file, or will it use the IVs in all the cap files?

snakeyes37 · #9 (**permalink**) 06-04-2006, 07:35 AM

Is it me, or is the client mac address never dislayed? It always says theres 1 client connected yet when I check the connected clients in kismet it shows the mac address of the AP as the client thats connected, does that make any sense? No data is being transmitted yet the packet flag for the AP is flying through the roof but the size is 0B. Am I missing something here? Whats more is when I scan for connected clients in KisMac it shows atleast two to three mac address clients connectd to the AP!!! But it shows nothing in kismet, whats going on?

Thanks.

Kayrin · #10 (**permalink**) 06-04-2006, 10:30 AM

if you use *.cap when using aircrack. this should use all .cap files. If this is the only ap you have cap files for then it should work. If not, then ou will have to us ls to see all the cap files you have created, then add those you want to aircrack. Or, if this feature is still in aircrack, when *.cap is used it will ask you which cap files you want to use. Don't know much bout bt, but this is how I did things in Auditor.

HTH,

Kayrin

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode