Articles

Metasploit Framework Windows Tutorial
Remote Desktop Connection
Windows Processes That May Be Dangerous
How-To use NetCat a Tutorial
Common Linux Commands
Common Ports
Netcat Commands
HTTP Response Codes
War-Google Hack Terms
Wardriving
Avoiding Social Engineering and Phishing Attacks
Intrusion Detection on Linux
Linux Intrusion Detection
Penetration Testing Guide
Penetration Testing Tools
Social Engineering Fundamentals, Part I: Hacker Tactics
Social engineering (computer security)
The Psychology of Social Engineering

The Archives

General GSO
GovernmentSecurity.org News & Suggestions
In The News
Open Topic
General Security Information
Trash Can
Exploit & Vulnerability Mailing List Archives
Trial Member Forum
Product and Program Reviews GSO Tutorials
System Security
Windows Systems
Beginners Section
Linux & Unix Systems
File Downloads
Exploit Research & Discussion Trojan & Virus Errata
Networking Security / Firewall / IDS / VPN / Routers
System Hardening
E-Mail Security
Wifi Security
Trial Member Uploads
Upload discovered Trojans & Mal ware
GSO Programming Section
C , C++ , VC++
Visual Basic.NET
Perl /CGI
Java/Javascript
PHP/XML/ASP/HTML
Assembly + Other
The Cork Board
Network Security Consultant Directory
Network Security Jobs
The Archives
Encryption Information
General Network Security
Internet Anonymity
HTTP Protocol Security
Linux Security
MS IIS Information
Exploit Articles
Programming / Tool Design
GSO Software Projects
Public Downloads
Microsoft Security Questions and Papers
Help - Search - Member List - Calendar
GovernmentSecurity.org > System Security > Wifi Security
exobot
May 25 2005, 09:48 AM
hxxp://whoppix.hackingdefined.com/Whoppix-wepcrack.html

Pretty much what the title says, cracking WEP in ~10 minutes, using a live version of Whoppix. Quite neat, will try it out this weekend, see how long it takes me...

Edit: Whoops, wrong forum - had both open at the same time, must have clicked the wrong one - Sorry, can a mod move it to Wifi security please?
genxweb
May 25 2005, 01:26 PM
Very nice. Though I do have one question. If you are using the live distro ie running from mem where is that 160 meg file going to be stored and still provide enough memory to to process the wep crack. They didn't say if they mounted a local partion (need to be fat to write to it or thumb drive).

The method they used was ust to increase the unique iv by replaying a packet to the network. Very effective. The video was really nice too.
ssj4conejo
May 25 2005, 09:23 PM
This method defienetely works, i've tried it before on a friends network and its great. But there has to be sometype of activity going on, atleast a little bit, you wont be able to crack a network with no activity. Air replaying is the shit, and the newest beta works with one wireless card = ). As far as storing the file, my files have been something from like 80 - 100 mb. So even a 128 mb usb drive would probably suffice.
Yorn
May 26 2005, 12:21 AM
topic moved.
bonarez
May 26 2005, 01:47 AM
QUOTE
But there has to be sometype of activity going on, atleast a little bit

I heard it is possible to force the ap to generate traffic by sending some malformed packets. dunno much about wireless though, and I'm sure it would make a 'noisy' attack. anyone knows how that works?

edit: I'll start by watching the vid myself
twistedps
Jun 21 2005, 05:39 AM
you can supposedly use void11's tool and have clients disconnect/reconnect which will iuncrease data... ive had a lot of problems with this tho, and have got about 20,000 unique IV's and found no luck cracking with 64/128bit keys... although ive only tried one WEP point, the other ones around here are WPA...
i'll need tro play around with it a bit more when i get some time,
Pro21
Jun 21 2005, 07:14 AM
Do you know if exist an void11 tool for windows ? Because my wifi card isn't compatible on a linux kernel sad.gif Even with a commercial driver(the driver is not stable) :@
Serhat
Jun 21 2005, 05:07 PM
QUOTE(Pro21 @ Jun 21 2005, 07:14 AM)
Do you know if exist an void11 tool for windows ? Because my wifi card isn't compatible on a linux kernel sad.gif Even with a commercial driver(the driver is not stable) :@
*



you tried ndiswrapper? might do the trick...

QUOTE
Some vendors do not release specifications of the hardware or provide a linux driver for their wireless network cards. This project provides a linux kernel module that loads and runs Ndis (Windows network driver API) drivers supplied by the vendors.

http://ndiswrapper.sourceforge.net/

Serhat
Necrocide
Jun 21 2005, 09:07 PM
In order to use Kismet you will have to get a wireless card that either contains Prism2/2.5 chipset - Or one of the old Hermes I chipsets. They are hard to get now-a-days, but sometimes you can find 'em on eBay!

NdisWrapper is not supported in Kismet as far as I know

myth
Jun 23 2005, 04:15 AM
QUOTE(Necrocide @ Jun 22 2005, 07:37 AM)
In order to use Kismet you will have to get a wireless card that either contains Prism2/2.5 chipset - Or one of the old Hermes I chipsets. They are hard to get now-a-days, but sometimes you can find 'em on eBay!
*




http://www.governmentsecurity.org/forum/in...showtopic=15173

Just trying to help dispell that common myth...

Pro21, check if your card works with kismet via the Whoppic Live CD or the Auditor Live CD. If Auditor works, then you've got orinoco, and a like to the patch is on that post.
Freakazoid
Jun 23 2005, 12:11 PM
The bad thing of wep cracking is, that u need a wlan adapter which handles monitor mode. Just a few adapters can work in monitor made sad.gif sad.gif sad.gif sad.gif sad.gif sad.gif sad.gif sad.gif sad.gif
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
Invision Power Board © 2001-2005 Invision Power Services, Inc.