?
Solved

Ipw2200 injection problem

Posted on 2009-04-02
4
Medium Priority
?
1,234 Views
Last Modified: 2013-11-09
i cannot inject packets in backtrack 3,aircrack-ng,aireplay-ng using my laptop's wireless NIC ipw2200b/g.i have tried following tutorials but nothing work.plz help!!!
0
Comment
Question by:byront93
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 7

Accepted Solution

by:
computerfixins earned 500 total points
ID: 24049447
Are you using the ipwraw driver?

ie:
#modprobe -r iwl3945 (replace with your driver)
#modprobe ipwraw

some cards are not capable of injection...

tutorial i had posted once upon a time, gives the general idea...
http://forums.extremeoverclocking.com/showthread.php?t=307813
0
 

Author Closing Comment

by:byront93
ID: 31565721
Thanks, now i can finally crack WEP :-). Any way to crack WPA know??? :-P
0
 
LVL 7

Expert Comment

by:computerfixins
ID: 24053150
Remember its not "cracking" its testing wep. :)

Disclaimer:  All instructions are intended for security auditing or educational purposes only!!  Should never be used for cracking a network you do not have permission to test. (I got banned from yahoo groups for a post similar to this; why I use google now:)

WPA psk (typically wrongly known as tkip) is somewhat crackable with dictionary / brute force.  Like any brute force, if there using a English word, it will only take minutes.  Otherwise...  You need to generate a rainbow table, etc, etc...  

WPA AES is completely untouchable at this point...

Basically same idea, authenticate with base station / access point:

Then

download a word list
http://ftp.se.kde.org/pub/security/tools/net/Openwall/wordlists/ 

generate word list
# zcat all.gz | egrep -v '^#' > dictionary

Start aircrack
# aircrack-ng -w dictonary -0 wpaout.cap

Opening wpaout.cap
Read 15683 packets.

   #  BSSID              ESSID                     Encryption

   1  00:A1:B0:30:5C:84  HOGE                      WPA (1 handshake)

Index number of target network ? 1


0
 
LVL 7

Expert Comment

by:computerfixins
ID: 24053559
Also chop, chop attack...  which is fairly useless...  more of a proof of concept.

First needs to be PSK / TKIP, QOS needs to be on, then you can run chop chop...  

All you can do is inject arp packets, syns, dns, other small stuff...  
0

Featured Post

Four New Appliances. Same Industry-leading Speeds.

But don't take it from us.  The Firebox M370 is Miercom tested and Miercom approved, outperforming its competitors for stateless and stateful traffic throughput scenarios.  Learn more about the M370, M470, M570 and M670 and find the right solution for your organization today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Before I go to far, let's explain HA (High Availability) and why you should consider it.  High availability is the mechanism used to provide redundancy to any service at the same site and appears as a single service to the users of that service.  As…
#Citrix #Citrix Netscaler #HTTP Compression #Load Balance
This Micro Tutorial will show you how to maximize your wireless card to its maximum capability. This will be demonstrated using Intel(R) Centrino(R) Wireless-N 2230 wireless card on Windows 8 operating system.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Suggested Courses
Course of the Month8 days, 11 hours left to enroll

764 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question