Madwifi, Kismet & Airecrack Installation & Patching Guide

[TheGreatVirus]

Madwifi, Kismet & Aireplay - Installation & Patching Guide.
By: TheGreatVirus / TiSnetworks
Other Resources From: duxzero (Original Madwifi Guide), kimbell (Aireplay Patch)


Note 1: This installation is based off of Backtrack (backtrack-beta-05022006) and is using the following fixes (splash-fix.mo, orinoco-fix.mo & nessus-fix.mo) you will also need a live connection to the internet.

Note 2: This should give you working Injection with Atheros Cards. I have tested it with the following cards: WG511T, UBIQUITI SRC 300mW 802.11b/g 100mW 802.11a Cardbus PCMCIA

---------------------------------------------------------------------------------------------

Download and Install Subversion: http://subversion.tigris.org/

Direct Link - http://subversion.tigris.org/downloa...n-1.3.0.tar.gz

Save it to your /root directory or anywhere else you wnat to do the work in.

Extract it with:

tar xvf subversion-1.3.0.tar.gz

CD Into the Directory:

cd subversion-1.3.0

Configure it:

./configure

Make and Install it:

make && make install

---------------------------------------------------------------------------------------------

Install the Madwifi Drivers

Use Subversion to Download Source:

svn checkout http://svn.madwifi.org/trunk madwifi-ng

CD Into the Directory:

cd madwifi-ng

Remove Old Modules:

rmmod -w ath_pci.ko

Note: If you get an error with this just ignore it.

Make and Install It:

make && make install

Note: During the install it will ask what to do with the old modules. I just remove them but you may back them up if you wish.

IMPORTANT: REBOOT YOUR LAPTOP!

---------------------------------------------------------------------------------------------

Install Kismet from Development Source

Use Subversion to Download Source:

svn co http://svn.kismetwireless.net/code/trunk kismet-devel

CD Into the Directory:

cd kismet-devel

Configure Without SUID:

./configure --disable-setuid

Make and Install:

make && make forceinstall

It is suggested you edit the following configs before you start Kismet:

/usr/local/etc/kismet.conf
/usr/local/etc/kismet_ui.conf

WARNING: Kismet no longer needs to be used with the "-c" command as of a current CVS update Kismet now supports creating a VAP in Monitor mode automaticaly. You now have no choice but to edit the source in the kismet.conf but once you have done so kismet is as easy to start as simple runnning kismet at the console.

Editing kismet.conf (UPDATED): The configs are strait forward and your source should be something like the following: madwifing_g,wifi0,Madwifing_g

Note 1: You may notice the Kismet UI is changed to restore it back to the way it was when you first installed Backtrack simply edit: /usr/local/etc/kismet_ui.conf and find & replace the following:

Quote:

# What columns do we display? Comma seperated. Read the documentation for what
# columns are valid.
columns=decay,name,clients,type,wep,channel,maxrat e,signalbar,noise,packets,flags,ip,size,dupeiv,wea k
# What columns do we display for clients? Comma seperated.
clientcolumns=decay,type,mac,manuf,data,crypt,size ,ip,signal,quality,noise

^ WARNING: Not sure why "weak" is coming out as "wea k" up in the quote above. Be sure to correct it if you copy/paste.

---------------------------------------------------------------------------------------------

Patching Aireplay (Aircrack)

Download Aircrack Source Direct Link: http://freshmeat.net/redir/aircrack/...rcrack-2.4.tgz

Download Aireplay Patch: See Attached

Extract It With:

tar xvf aircrack-2.4.tgz

Extract the Patch into:

/aircrack-2.4/linux

Note: This directory will be where you extracted it. =P

CD Into the Directory:

cd aircrack-2.4/linux

Note: The patch below reads v2.41 just ignore it aircrack 2.4 is correct.

Patch Aireplay:

patch -Np1 -i aircrack-2.41-madwifing.patch

Note: When it asks what to patch type: aireplay.c

CD Up a Directory:

cd ..

Make and Install:

make && make install

---------------------------------------------------------------------------------------------

Placing the Madwifi Card in Monitor Mode:

wlanconfig ath1 create wlandev wifi0 wlanmode monitor

Note 1: Creates a Virtual Device that is in Monitor Mode for your Atheros Based Card. Please note that ath0 which should be in Managed Mode by default should not be in use while using the Virtual Device in Monitor Mode (ath1)

Note 2: You should now have the following devices ath0 & ath1 and only ath1 should be UP.

Stopping Monitor Mode:

wlanconfig ath1 destroy

---------------------------------------------------------------------------------------------

If you followed this guide correctly you should now have a working Atheros card! if you have any questions feel free to ask.

Appended Notes: airmon.sh will not work for the Atheros cards by default there is a patched version of airmon.sh offered by the aircrack-ng release.

-TGV

[hobbes]

This is awsomes!

[dohc3si]

I was going to do something very similiar to this. Glad you beat me to it. haha...good work...everything looks accurate.

[Structure7]

Oh momma... can't wait to give this a go. Thanks!


......... thanks so much! Your guide is a great one... worked like a dream!

[Structure7]

To add to this, I didn't see where the Aireplay patch was:

Quote:

Originally Posted by TheGreatVirus

Download Aireplay Patch: See Attached

I found it in another forum (although I suppose it is here somewhere, too) and attached it.


Thanks again for the great writeup!

[TheGreatVirus]

lol, I had just fixed that. Thanks. Hope this guide worked out for you. =)

[padou]

Dear TheGreatVirus,

First, thanks a lot for your tuto.

As i do not have internet access yet from my BackTrack installed, would you know where i can download the "Kismet package" (via my windows XP/firefox) refered in your command line :

svn co http://svn.kismetwireless.net/code/trunk kismet-devel

Thanks in advance for your help.

Rgds // Laurent

[an0jv7]

TheGreatVirus, thanks for the rundown on this - question about the card NG511T though. Is that a netgear WG511T or something else? I tried asking google but no luck. Was wanting to get the WG511T if it the one you used.

thanks!

[TheGreatVirus]

Sorry guys I made a few mistakes with those model numbers. I corrected them. It was supposed to be the WG511T.

Also I attached the Patch As Well.

[hyperlitemofo]

How do we know if we need this patch. Im a bit of a newb
Kismet works with my card, so does airodump, but when i use aireplay to deauth and replay i can get it to like scan and everything but it never seems to find packets or deauth people? do i need this patch? Thanks alot