A quick guide to cracking WEP

[granger53]

In Airodump, bottom row, labled "Station". These are the macs of real clients connected.

[hobbes]

Quote:

Originally Posted by granger53

Im a noob and dont know scripting yet....any way of changing the scripts to use xterm instead of konsole? My box is a pathetic thing and I have to use "lightweight" or no gui progs.

Change "konsole" to "xterm". The flags should be the same.

[Lasqar]

when I run aireplay to inject more packets it says:
read 878754 packets (got 13 ARP requests), sent 2865434 packets
.........the read and sent packets going fast but when I look at airodump the IVs go up only 10 a minute or less!
anyone have an idea whats the problem or solution??
thanks

[hobbes]

Quote:

Originally Posted by Lasqar

...the read and sent packets going fast but when I look at airodump the IVs go up only 10 a minute or less!

It may be that you are too far away from the AP for all your tx packets to get through. This can be remedied by moving closer or getting a better antenna/more powerful card. If you are extremely close to the AP (within one or two meters) then you may be experiencing antenna saturation. Back it off a bit and see if that helps.

Each router behaves differently when receiving ARP requests. Many of them have limits in place on how many they respond to. There are even some routers (Mac routers, in particular) that will broadcast deauth packets after a certain number of identical requests. Of course, this all means that clever and imaginative solutions are required to circumvent these countermeasures. Be creative.

The main thing to remember, though, is this.

[Lasqar]

I think your right about the distance...I was thinking maybe i need to patch my Backtrack with the madwifi but since its working then its another problem..I ll check it out thanks for your time & help.

[hobbes]

I updated the howto with a section on how to check for injection with ethereal, enjoy.

[TheGreatVirus]

Hobz, you are posting in all the wrong places. If you know what I'm talking about.

[trueblu8]

Quote:

Originally Posted by G-Stress

Excellent guide hobbes it worked with my DWL-G122 the packets only increased at about 30 every few seconds but it will work until I get antenna's for my Senao card

Holy cow, you got this to work using the DWL-G122 adapter? I bought about 5 or 6 different adapters and that's one of them but it won't work. Maybe it's because I'm running Auditor and not BT beta? Anyways I'm d/l-ing the BT Beta right now even though it's gonna take another 4 hours. If you could, please tell me how you were able to achieve success with this. I am so frustrated man, I can't get any of my atheros cards to deauth no matter what I try.

[spoon13]

You might find yourself more frusterated when you find out that the final was released before your beta download finished.

[trueblu8]

Quote:

Originally Posted by spoon13

You might find yourself more frusterated when you find out that the final was released before your beta download finished.

ahhhhh!!!! noway! You wouldn't happen to have a link to where i could d/l it would you? Yeah I finally got the beta release up and running at around 1am last night. And I have to tell you, 100 times better than the Auditor I was using, it's like night and day, makes that thing look like a piece of you know what, hahaha. BT even recognizes my dwl-g122 ralink, awesome. Now I'm just pissed that I special ordered that old dwl-122 prism2 off of ebay for $36. What the hell am I gonna do with that thing now? Maybe try and re-sell it. I only ordered it thinking that was the only adapter I might be able to do a deauth with on Auditor. I'm so un-educated on these things that it's embarrassing.