Hi all, I thought I'd share a tool I've made that might be of use to somebody here.
This is a fork of aireplay-ng (specifically the test (-9) functionality) for enhanced packet injection testing.
I created this project due to the limitations of the existing aireplay-ng packet injection test functionality. Using the packet injection test functionality of aireplay-ng enables you to test the ability for a wireless adaptor to perform packet injection, as well as its ability to both send and receive packets between the local client and remote access point.
Using this test mode has several limitations, including:
- A fixed limit of only 30 packets sent to a remote AP for injection testing
- A short timeout for sampling available nearby networks, resulting in only a small sample being tested
- Inability to select a target BSSID for injection testing of a specific network
- No channel hopping capability
By making the above options user-configurable, this project aims to provide a highly versatile packet injection test to provide real-time feedback without the requirement to authenticate with the remote device, enabling testing and adjustment of factors such as adaptor configuration and antenna positioning to achieve the most reliable two-way connection between a local client and remote AP.
I built this for provisioning and testing of long-distance links, but this would also be ideal in selecting the best targets for aircrack-ng / reaver / bully / pixie etc attacks that rely on packet injection.
This is pretty much my first major attempt at forking existing open-source work. I'm entirely unfamiliar with the process of creating makefiles too, so while I've got the makefiles present in the project, they're copied straight from aircrack-ng 1.2-rc4 and
make won't work; if anybody could help me out with this, that'd be great!
Code, usage and further information available here:
https://github.com/cjastone/airejectFeedback welcome!
