Simple check for proper injection

[pilotsnipes]

No just do exactly what I said.

[bigcat99]

Quote:

Originally Posted by pilotsnipes

No just do exactly what I said.

So,

Code:

1: after boot is done: modprobe rt2570
2: insert card
3: ifconfig rausb0 up
4: iwconfig rausb0 mode monitor
5: airmon-ng start rausb0 (just in case iwconfig didn't actually do it.)
6: aireplay -0 10 -a 01:02:03:04:05:06 rausb0
7: launch wireshark (ethereal) and look for deauth packets.
8: be sad because there were no deauth packets but a lot of malformed packets.

is just:

Code:

1: after boot is done insert card
2: airmon-ng start (DO NOT PUT rausb0 here)
3: aireplay -0 10 -a 01:02:03:04:05:06 rausb0
4: launch wireshark (ethereal) and look for deauth packets.

Doesn't work though. When I run airmon-ng start, it lists rausb0 but doesn't start the monitor mode. If I run iwconfig it still shows it as having mode managed and ifconfig doesn't list it unless I use the -a flag. If I do aireplay -0 10 -a 01:02:03:04:05:06 rausb0, I get an error write Failed: Network is Down.

So There has to be another step there somewhere. Would doing ifconfig rausb0 up before airmon-ng work? airmon-ng doesn't put the card into monitor mode unless I put rausb0 after start, but then I get the forced prism header error. I'm not quite sure what to do.

[pilotsnipes]

Ok I took a look at it.

Looks like the quick fix is to run airodump-ng before you run the aireplay command.

I've made a video to prove this works. I have a dwl-g122 B1 too.

1: after boot is done insert card
2: airmon-ng start (DO NOT PUT rausb0 here)
2a: airodump-ng rausb0
3: aireplay -0 10 -a 01:02:03:04:05:06 rausb0
4: launch wireshark (ethereal) and look for deauth packets.


I used airodump-ng -c 13 rausb0 in the video because that's where I knew to find my AP, on channel 13, you don't have to have that option in there.
LINK TO VIDEO (Rapidshare)

[bigcat99]

Quote:

Originally Posted by pilotsnipes

Ok I took a look at it.

Looks like the quick fix is to run airodump-ng before you run the aireplay command.

I've made a video to prove this works. I have a dwl-g122 B1 too.

1: after boot is done insert card
2: airmon-ng start (DO NOT PUT rausb0 here)
2a: airodump-ng rausb0
3: aireplay -0 10 -a 01:02:03:04:05:06 rausb0
4: launch wireshark (ethereal) and look for deauth packets.


I used airodump-ng -c 13 rausb0 in the video because that's where I knew to find my AP, on channel 13, you don't have to have that option in there.
LINK TO VIDEO (Rapidshare)

I am in no way doubting you that it works, I'll give that airodump-ng a shot and see what happens. Thank you.

Edit: Also, I can't watch your movie I'm on a mac and apparently the codec for techsmith doesn't exit on mac.

[CRiSiS]

Quote:

Originally Posted by bigcat99

I am in no way doubting you that it works, I'll give that airodump-ng a shot and see what happens. Thank you.

Actually i'm having the same problem. Using the above procudure doesn't give me any packets however if i use the airoscript it does work. I see death packets.

My problem is that i don't receive any ARP replies

[bigcat99]

Quote:

Originally Posted by bigcat99

I am in no way doubting you that it works, I'll give that airodump-ng a shot and see what happens. Thank you.

Edit: Also, I can't watch your movie I'm on a mac and apparently the codec for techsmith doesn't exit on mac.

Ok, doing airodump-ng before hand does indeed put it into monitor mode from what I can tell, properly. When I try aireplay though, still doesn't work. and when I try to use airoscript, i still get malformed packets. I have no idea what is wrong. I download BT 1.0 Final from the site, the md5 matches, I applied your patches and am trying it in parallels on my mac. Parallels is the same thing as vmware so this should be working the same. I have my mac set to never touch the card and i wait until the virtual machine is booted to insert the card.

[pilotsnipes]

Well that is strange, as the only difference between our systems is Mac/PC I can only deduce it's that.....

(Even though it shouldn't be)

[pilotsnipes]

Quote:

Originally Posted by CRiSiS

My problem is that i don't receive any ARP replies

Sometimes I have to wait nearly 5-10mins before the first ARP packet arrives and I can then re-inject.

[ahouston]

Firstly a big thanks to pilotsnipes - really,really good guide on getting this card working on BT 1.0

I've tried both the modified 1.0 Final CD (as per your guide) and the beta 2.0 CD - and I'm basically seeing [Malformed Packet: Prism] when I use Wireshark to look for deauth packets.

I'm using a DWL-G122 rev B1 (with firmware ver 2.03 according to the back) - and I've followed your mini-howto video above to ensure I'm not doing anything too stupid (I hope anyway..)

I've posted the video cap file from VMWare here - http://rapidshare.com/files/5469830/...nject.avi.html - hopefully a video speaks a thousand words..

I get the same thing when I run Ethereal under 1.0 final - it sounds like others have had this same problem with the DWL-G122, is it maybe a firmware related thing ??

[bigcat99]

Quote:

Originally Posted by ahouston

Firstly a big thanks to pilotsnipes - really,really good guide on getting this card working on BT 1.0

I've tried both the modified 1.0 Final CD (as per your guide) and the beta 2.0 CD - and I'm basically seeing [Malformed Packet: Prism] when I use Wireshark to look for deauth packets.

I'm using a DWL-G122 rev B1 (with firmware ver 2.03 according to the back) - and I've followed your mini-howto video above to ensure I'm not doing anything too stupid (I hope anyway..)

I've posted the video cap file from VMWare here - http://rapidshare.com/files/5469830/...nject.avi.html - hopefully a video speaks a thousand words..

I get the same thing when I run Ethereal under 1.0 final - it sounds like others have had this same problem with the DWL-G122, is it maybe a firmware related thing ??

YAY finally someone is having the exact same problem I am. I feel bad for you but at the same time I'm elated because someone else feels my frustration. Mine is fw 2.02. However ignoring the injection test, I tried cracking a WEP AP and it worked. I'm pretty sure the injection works, however ethereal(wireshark) shows malformed packets. I think I figured out what the problem might be though... if you go to the page for the drivers from the airocrack-ng newbie guide the guy says the forceprism thing is solved with iwpriv but I'm not sure exactly what to do.