Solved

Ipw2200 injection problem

Posted on 2009-04-02
4
1,218 Views
Last Modified: 2013-11-09
i cannot inject packets in backtrack 3,aircrack-ng,aireplay-ng using my laptop's wireless NIC ipw2200b/g.i have tried following tutorials but nothing work.plz help!!!
0
Comment
Question by:byront93
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 7

Accepted Solution

by:
computerfixins earned 125 total points
ID: 24049447
Are you using the ipwraw driver?

ie:
#modprobe -r iwl3945 (replace with your driver)
#modprobe ipwraw

some cards are not capable of injection...

tutorial i had posted once upon a time, gives the general idea...
http://forums.extremeoverclocking.com/showthread.php?t=307813
0
 

Author Closing Comment

by:byront93
ID: 31565721
Thanks, now i can finally crack WEP :-). Any way to crack WPA know??? :-P
0
 
LVL 7

Expert Comment

by:computerfixins
ID: 24053150
Remember its not "cracking" its testing wep. :)

Disclaimer:  All instructions are intended for security auditing or educational purposes only!!  Should never be used for cracking a network you do not have permission to test. (I got banned from yahoo groups for a post similar to this; why I use google now:)

WPA psk (typically wrongly known as tkip) is somewhat crackable with dictionary / brute force.  Like any brute force, if there using a English word, it will only take minutes.  Otherwise...  You need to generate a rainbow table, etc, etc...  

WPA AES is completely untouchable at this point...

Basically same idea, authenticate with base station / access point:

Then

download a word list
http://ftp.se.kde.org/pub/security/tools/net/Openwall/wordlists/ 

generate word list
# zcat all.gz | egrep -v '^#' > dictionary

Start aircrack
# aircrack-ng -w dictonary -0 wpaout.cap

Opening wpaout.cap
Read 15683 packets.

   #  BSSID              ESSID                     Encryption

   1  00:A1:B0:30:5C:84  HOGE                      WPA (1 handshake)

Index number of target network ? 1


0
 
LVL 7

Expert Comment

by:computerfixins
ID: 24053559
Also chop, chop attack...  which is fairly useless...  more of a proof of concept.

First needs to be PSK / TKIP, QOS needs to be on, then you can run chop chop...  

All you can do is inject arp packets, syns, dns, other small stuff...  
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
WLC 5508 controller configuration 4 109
Set linux box as ip router 3 51
Can I substitute another SAS HD for an HP MB 1000FAMYU ? 3 33
Understanding ping command in Ubuntu 5 30
Using in-flight Wi-Fi when you travel? Business travelers beware! In-flight Wi-Fi networks could rip the door right off your digital privacy portal. That’s no joke either, as it might also provide a convenient entrance for bad threat actors.
This Micro Tutorial will show you how to maximize your wireless card to its maximum capability. This will be demonstrated using Intel(R) Centrino(R) Wireless-N 2230 wireless card on Windows 8 operating system.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question