Aircrack-ng

Please login or register.

Login with username, password and session length
Pages: [1] 2 3 ... 10
 1 
 on: June 17, 2018, 01:39:25 PM 
Started by bilgeRat - Last post by user85471
It would be terrific to add a switch to airodump-ng that sends RTS to an iPhone/iPad or other iOS device recovering the true, globally unique MAC.

Isnt it necessary to send this RTS to any device (Bruteforce)?
As long the format is unknown you cant use airbase-ng to expose real MAC, see
https://forum.aircrack-ng.org/index.php/topic,864.0.html

 2 
 on: June 17, 2018, 01:33:13 PM 
Started by twgator - Last post by user85471
You can do some very basic stuff by looking at the mac address and tell what device is behind it but it's not always accurate (since it can be faked).

Cause you speak about, i made a filter for myself for the fake adresses. Cause of this stupid MAC faking devices airodump is a bit unusable. The fake devices send more probe requests than common devices. Means airodump get ‎flooded. You could offical do an option to filter the ones with localbit, but not Accesspoints, they can use local bit valid. There are some invalid MAC Randomizer that uses AA:BB:CC:RR:RR:RR they can´t be secure filtered you just see that the framecount in the log is just 1-3.

Fingerprinting is easy, many of the fake devices send Manufacturer/Model/Modelname of the phone. Others send pretty unique HEX Bytes and of course you have a 12 Bit counter and the requested SSID. Huawei Randomizion even send the password of their Accesspoints as SSID Probe request(Plain). I had added it to airodump but it would break compatiblity of the output.

But cause of original MAC is unique you can setup airbase-ng to make an accesspoint, it could
take SSID of the probe requests of fake devices. If such a device sees a known access point it stops sending fake MAC and sends it real one. Means you get again a original unique MAC.
Bur dont forget to filter local bit or it disturb your own devices.

 3 
 on: June 17, 2018, 11:56:50 AM 
Started by user85471 - Last post by user85471
1. directed probe request with SSIDs dont make airbase-ng to use this SSIDs in beacons. Setting -C 100 -P. It just use "default"
2. beacons stop after about 12 Hours. Probes still received(-v), airodump-ng still runs = no interface problem.

Newest Version 1.2 rev 1ca5e26

Done some debug, added after seq++;
if (seq%1000==0) printf ("%d\n", seq);

it stops output at 655000.

 4 
 on: June 12, 2018, 01:06:00 PM 
Started by mot1639 - Last post by misterx
It is because the CSV doesn't contain that information.

You can use aircrack-ng to determine if there is a handshake or wpaclean.

 5 
 on: June 12, 2018, 12:31:30 PM 
Started by mot1639 - Last post by mot1639
dear all ,

thank you first of all for such great program (aircrak-ng)

i mange to capture the hand shake using the following two command which work more than fine ...

Code: [Select]
airodump-ng -c 6 -w t1 --bssid 6A:44:A4:A4:E4:54 mon0 [code]
aireplay-ng -0 0 -a 6A:44:A4:A4:E4:54 mon0

this two code work fine , and i see in output result screen that it capture the hand shake " i see the handshake word , but ..................

when i go to t1-01.csv fot later work , i can not see the hand shake word !!!!!!!!!!!!!

what i want to do is simple :: run this two code in background using python : :

Code: [Select]
os.system("nohup airodump-ng -c 6 -w t1 --bssid 6A:44:A4:A4:E4:54 mon0 &")
os.system("nohup aireplay-ng -0 0 -a 6A:44:A4:A4:E4:54 mon0 &")

and then write simple program to read only output t1-01.csv to track handshake word ,,,,, ,but the issue the hand shake does not shown in csv ???!!!!


please advice " when i know the handshake has been capture without seeing out put result screen !!



regards for you all

 6 
 on: June 08, 2018, 12:52:39 PM 
Started by kraken - Last post by misterx
Driver is still in beta version pretty much. It's up to you.

 7 
 on: June 08, 2018, 12:10:32 AM 
Started by kraken - Last post by kraken
Have you checked the FAQ? https://aircrack-ng.org/doku.php?id=faq#what_is_the_best_wireless_card_to_buy
Thank you for your answer

but how about AWUS036AC or AWUS036ACH ?

 8 
 on: June 07, 2018, 11:25:27 PM 
Started by kraken - Last post by misterx
Have you checked the FAQ? https://aircrack-ng.org/doku.php?id=faq#what_is_the_best_wireless_card_to_buy

 9 
 on: June 07, 2018, 11:24:49 PM 
Started by newb.hacker - Last post by misterx
Some access points allow to see that. You can also look in the connection properties of each devices. I know for sure Windows, Linux and Android do. For Apple, they probably do too in the settings but it's probably burried pretty deep.

 10 
 on: June 07, 2018, 09:35:50 PM 
Started by kraken - Last post by kraken
 I want to buy Wireless Adapter but I'm confused .I do not know which model is better .
I work with Linux so Wireless Adapter has to support it ...
and I love Aircrack-ng  so again Wireless Adapter has to support it ...

My available Wireless Adapter list for buying
AWUS051nh v2
AWUS036nhr v2
AWUS052nh
AWUS036AC
AWUS036ACH
plz
Guide me...
(sorry for my English I'm not good Language learner)

Pages: [1] 2 3 ... 10