Wireless
From Rory.wiki
Contents |
Tools for Linux
Kismet
Available here. To get it installed on ubuntu you'll need to install libncurses sudo apt-get install libncurses5-dev seems to work ok. (as well as the usual build-essential)
Aircrack-ng
Available here. To get it installed on ubuntu you'll need to install libssl-dev sudo apt-get install libssl-dev (as well as the usual build-essential)
Some Notes from the official documentation here
- dump capture data to a CSV file -
airodump-ng -w <filename> --output-format csv <intferface>
- use airbase to capture wpa handshakes -
airbase-ng -c 9 -e <network_name> -z 2 -W 1 <interface>
- to set a card to a specific channel
iwconfig <iface> channel <x>
- to start a card in monitor mode
airmon-ng <iface> <channel>
Cracking WPA with Aircrack-ng
Start off by finding your target network and channel with either airodump-ng or kismet. Then start airodump-ng with switches to lock it to the channel of the network you're interested in and the channel with --channel and the --write and --output-format switches. If you're doing purely passive capture, leave this running until you get some WPA handshakes captured (pop-up should appear in the top right hand corner signifying this. Once you've got your captured handshakes run aircrack-ng with your dictionary file and it should crack the passphrase .... simples.
Cowpatty
Available here
More tools
Available here
WPA rainbow tables
Available here
Ubutuntu Notes
Network managed is pretty irritating when trying to do wireless work, as it constantly connects with wireless networks as you add network cards to your laptop. Unfortunately it doesn't appear straightforward to disable it, so I ended up uninstalling it (network-manager and network-manager-gnome) and installed wicd instead
