Basic injection with rt73 a...pdf

(477 KB) Pobierz
Basic injection with rt73 a...
Basic injection with rt73 and BackTrack v2 for beginners
1 z 10
Aircrack-ng
Welcome, GUEST . Please login or register.
April 28, 2009, 09:27:56 am
Getting started: http://tinyshell.be/aircrackng/forum
/index.php?topic=2684.0
Login with username, password and session length
Search:
25321 Posts in 4056 Topics by 10045 Members
Latest Member: intonmeve
Advanced search
Aircrack-ng
General Discussion
Tutorials, tips and tricks and other
Basic injection with rt73 and BackTrack v2 for beginners
Æ previous next Ç
Pages: [1] 2 3 ... 7
Author
Topic: Basic injection with rt73 and BackTrack v2 for beginners (Read 41791 times)
blinco
Guest
Basic injection with rt73 and BackTrack v2 for beginners
Æ on: May 26, 2007, 09:39:26 am Ç
219851998.050.png 219851998.052.png 219851998.053.png 219851998.054.png 219851998.001.png 219851998.002.png 219851998.003.png 219851998.004.png 219851998.005.png 219851998.006.png 219851998.007.png 219851998.008.png 219851998.009.png 219851998.010.png 219851998.011.png 219851998.012.png 219851998.013.png 219851998.014.png 219851998.015.png 219851998.016.png 219851998.017.png 219851998.018.png 219851998.019.png 219851998.020.png 219851998.021.png 219851998.022.png 219851998.023.png 219851998.024.png 219851998.025.png 219851998.026.png 219851998.027.png 219851998.028.png
Basic injection with rt73 and BackTrack v2 for beginners
2 z 10
I already wrote a newbie guide to ipw2200 using BackTrack 2 , so here is one for rt73
cards.
Some rt73 cards are:
Edimax EW-7318USg / Hawking HWUG1 / Alfa AWUS036s
D-Link DWL-G122 C1
Linksys WUSB54GC
Belkin F5D7050 Ver 3
Asus WL-167g
This is intended for first-time aircrack-ng users, so it will only detail the most basic
procedure. You can find more complicated guides with troubleshooting for some of the
more complicated access points in other threads. I will be demonstrating a simple WEP
crack using ARP request replay. Please also read the newbie guide first so that you
generally know what you are doing.
By the way: if you are very new to linux, selecting text in the terminal window (with the
mouse) will automatically copy it, and clicking both mouse buttons at the same time will
paste. You can stop any aircrack programs with ctrl+c. To see the history of the terminal
window, you can scroll with shift+pageUp/pageDown.
BackTrack 2 supports rt73 injection out of the box, with the exception of fragmentation.
The drivers don't yet work with the fragmentation attack.
You will need the following information before starting. You can find access point details
using: "iwlist rausb0 scan" after you log into BackTrack.:
Access point bssid
Access point channel
==================
0. (optional) The aircrack-ng team has done such a great job lately that there have been
2 releases since BackTrack 2. So the first thing that you should do is update aircrack-ng
to v0.9. You should start backtrack connected to a LAN so that you can download the
updates.
wget http://download.aircrack-ng.org/aircrack-ng-0.9.tar.gz
tar -zxvf aircrack-ng-0.9.tar.gz
cd aircrack-ng-0.9
make
make install
1. Enable the rausb0 interface.
ifconfig rausb0 up
2. Enable prism headers (to show power levels in airodump-ng); allow transmission in
monitor mode (enables aireplay-ng attacks)
iwpriv rausb0 forceprism 1
iwprif rausb0 rfmontx 1
3. Put the card into monitor mode
iwconfig rausb0 mode monitor
airmon-ng start rausb0
4. Run airodump-ng to capture packets from your access point to dumpfile*.cap. You
should always specify a channel with airodump, because otherwise it will try to scan
through all channels, and that will break your injection attack.
airodump-ng --channel <Access Point channel> --bssid <Access Point bssid> -w
dumpfile rausb0
4a. After a few seconds in airodump-ng, you should notice that there are clients
connected to the access point. Connected clients will be listed under "STATION" at the
lower half of the screen. Take note of the MAC address of one of the clients - you will use
it in the next step.
219851998.029.png
Basic injection with rt73 and BackTrack v2 for beginners
3 z 10
Æ Last Edit: May 26, 2007, 09:55:11 am by David Ç
Logged
Romeo
Newbie
Re: Basic injection with rt73 and BackTrack v2 for beginners
Æ Reply #1 on: June 18, 2007, 12:38:55 am Ç
Posts: 2
Hello David,
thanks alot for this information.
when I do :
aireplay-ng --arpreplay -b <Access Point bssid> -h <client MAC addr. from step 4a>
rausb0
it starts normally but then it exits like this:
The interface MAC (00:19:5B:D2:67:9E) doesn't match the specified MAC (-h).
ifconfig rausb0 hw ether 00:12:F0:06:7C:65
Saving ARP requests in replay_arp-0618-012506.cap
You should also start airodump-ng to capture replies.
01:25:18 Packets per second adjusted to 375 355 packets...(28 pps)
01:25:20 Packets per second adjusted to 282
01:25:22 Packets per second adjusted to 212
01:25:24 Packets per second adjusted to 159
01:25:26 Packets per second adjusted to 120
01:25:28 Packets per second adjusted to 90
01:25:30 Packets per second adjusted to 68
01:25:32 Packets per second adjusted to 51
01:25:34 Packets per second adjusted to 39
01:25:36 Packets per second adjusted to 30
01:25:38 Packets per second adjusted to 23
01:25:40 Packets per second adjusted to 18
01:25:42 Packets per second adjusted to 14
01:25:44 Packets per second adjusted to 11
01:25:46 Packets per second adjusted to 9
01:25:48 Packets per second adjusted to 7
01:25:50 Packets per second adjusted to 6
01:25:52 Packets per second adjusted to 5
01:25:55 Packets per second adjusted to 4
01:25:57 Packets per second adjusted to 3
write failed: Resource temporarily unavailable
#
I checked both macs and they are correct.
can u tell me please where is the problem.
I have a D-link DWL-G122 C1 with the rt driversof BackTrack.
Logged
edge
Guest
Re: Basic injection with rt73 and BackTrack v2 for beginners
Æ Reply #2 on: June 22, 2007, 10:22:40 am Ç
How would this be different if you aren't using backtrack? What sterps do i have to go
through to enable rt73 packet injection? I am using Ubuntu Feisty BTW.
Logged
TuTuFF
Full Member
Re: Basic injection with rt73 and BackTrack v2 for beginners
Æ Reply #3 on: June 23, 2007, 08:15:51 am Ç
Posts: 135
219851998.030.png 219851998.031.png 219851998.032.png 219851998.033.png 219851998.034.png 219851998.035.png 219851998.036.png 219851998.037.png
 
Basic injection with rt73 and BackTrack v2 for beginners
4 z 10
edge,
Steps should be pretty similar if not identical under Ubuntu. Until very recently I used
Ubuntu for aircracking with great success. Give the above method a go being sure to
check for typos etc (this was my downfall and caused no end of frustration when I was
starting out). One thing you may have to do (if you haven`t already) is get drivers for
your RT73 and patch accordingly. Specific instructions for the RT73 can be found on the
Wiki. Try a little experimentation if needs be and if you get stuck ask here or pop into
the #Aircrack-ng channel on Freenode.
G`luck!
Logged
Feroiz
Guest
Re: Basic injection with rt73 and BackTrack v2 for beginners
Æ Reply #4 on: June 27, 2007, 05:32:03 am Ç
The link to download the aircrack 9.0 is dead, do you have another link?
Thanks
Logged
darkAudax
Administrator
Hero Member
Re: Basic injection with rt73 and BackTrack v2 for beginners
Æ Reply #5 on: June 27, 2007, 02:18:36 pm Ç
Posts: 4558
Feroiz,
A new version of aircrack-ng has been released. Please always check the wiki home
page for the latest version and the download link: http://aircrack-ng.org/doku.php
d.
Logged
HeadRush
Guest
Re: Basic injection with rt73 and BackTrack v2 for beginners
Æ Reply #6 on: July 01, 2007, 01:50:56 pm Ç
219851998.038.png 219851998.039.png 219851998.040.png 219851998.041.png 219851998.042.png 219851998.043.png 219851998.044.png 219851998.045.png 219851998.046.png
Basic injection with rt73 and BackTrack v2 for beginners
5 z 10
Hi folkes!
Well I'm having a real laugh with this (MBP/vwmare/BT2) atm the moment thank you,
for all these tips you have left about the place!, ;-).
For some un-beknown reason my (new!) RT73 (D-link G122 rev c1) wireless card is not
playing fair with injection!
After setting the correct channel with
airmon-ng start rausb0 11
aireplay-ng -9 rausb0
gives me...
: trying broadcast probe requests
: no answer
: found 1 AP (my home AP with WEP enabled 0.5m away!)
: Trying direct probe requests
: (MAC address) - channel: 11 - 'Home'
: 0/30 0%
I take this as no injection on the card/driver. This was with the out-of-the box driver
from BT2.
So I went for the RaLink RT73 USB Enhanced Driver (installed - I think OK) and same
result... ..
I'm running airdump-ng fine but as expected #Data is slow, slow slow...
any further clues.? Everything works but no injection.. http://aircrack-ng.org
/doku.php?id=injection_test doesn't tell you what to do if you've got no injection!!.. ;-).
Try other hardware?... It's new... ;-(.
Logged
HeadRush
Newbie
Re: Basic injection with rt73 and BackTrack v2 for beginners
Æ Reply #7 on: July 01, 2007, 01:57:03 pm Ç
Posts: 3
I mean to say: any further tips n' tricks to try. Apart from buy another usb stick.. Not yet
surely.. ;-).
I take away my WEP on the network and nothing changes in: aireplay-ng -9 rausb0,
output.
sorry people simple answer unplug usb stick before modprobe rt73.. and replug. connect
to device and injection works... Yippee!!
Æ Last Edit: July 01, 2007, 02:15:14 pm by HeadRush Ç
Logged
darkAudax
Administrator
Hero Member
Re: Basic injection with rt73 and BackTrack v2 for beginners
Æ Reply #8 on: July 01, 2007, 05:02:21 pm Ç
Posts: 4558
HeadRush,
I am not sure which drivers you are using. Try the one the ASPj ones:
http://homepages.tu-darmstadt.de/~p_larbig/wlan/rt73-k2wrlz-1.0.0.tar.bz2
I use them and they are excellent.
d.
219851998.047.png 219851998.048.png 219851998.049.png 219851998.051.png

Plik z chomika:

Inne pliki z tego folderu:

Inne foldery tego chomika:

Zgłoś jeśli naruszono regulamin