Print

Please login or register.
1 Hour 1 Day 1 Week 1 Month Forever
Login with username, password and session length

Sorry Guest, you are banned from posting and sending personal messages on this forum.

This ban is not set to expire.

[Karp]

Good Afternoon All,

I have been practicing an Ethical Hacking course from UDEMY. I have been running some -ng commands on my WEP wifi to practice and get a feel for Pen Testing. I have always been extremely interested in Pen Testing and hope to one day be certified! Whenever I run the airodump-ng wlan0mon command I can gather all the information about my router and clients connected to it (exciting)! However, after about 10-30 seconds of running this it stops gathering information and the information that was showing slowly starts to disappear from the terminal. After this I can kill the program from running in the terminal and try to start it again. However, it seems like any -ng commands lag in the terminal until I reboot after the -ng commands stop working.


Hardware: Raspberry Pi 4
OS: Kali Linux 2020.3 64bit for RPi4
Wifi Adapter: Internal Raspberry Pi 4 Wifi adapter until my external Alfa comes in the mail.
Output of commands:
1) sudo iwconfig wlan0 power off (I have somewhat better luck when I turn off the Rasp Pi 4 wifi power management mode)
2) sudo airmon-ng check kill
3) sudo airmon-ng start wlan0
4) sudo airodump-ng wlan0mon
*airodump-ng gathers data about the router / clients and eventually stops
5) CTRL-C to kill the program
6) sudo airodump-ng wlan0mon
*airodump-ng lags the terminal hard and never displays any router/client information until I fully reboot and rerun the commands. Works again for 10-30 seconds.

I can also deauth for about 10-30 seconds before the program freezes? Resources on the Rasp Pi 4 are very low. CPU - 10% and RAM - 20% (4gb version).
I also have a fan so I don't think it would be overheating (doesn't feel hot)

Error Message: None
Links to same problem: None
Attempts to fix:
1) I have seen other users say to turn off the Power Management mode on the wifi and while this helps sometimes the -ng commands never last more than 30 seconds.
2) New/fresh flash
3) apt-get update && apt-get upgrade

Thank you, Karp

[misterx]

1. Is the pi up to date? apt update && apt dist-upgrade && reboot
2. Why are you turning off the power of the adapter?
3. Look in dmesg after the issues. And actually, clear it before running airmon-ng commands, then attach it here.

[Karp]

1. Is the pi up to date? apt update && apt dist-upgrade && reboot
1a. It seems to be up to date:
sudo apt update && apt dist-upgrade && reboot
Ign:1 http://kali.download/kali http://http.kali.org/kali InRelease
Err:2 http://kali.download/kali http://http.kali.org/kali Release
  404  Not Found [IP: 104.18.102.100 80]
Get:3 http://http.re4son-kernel.com/re4son kali-pi InRelease [8133 B]
Get:4 http://http.re4son-kernel.com/re4son kali-pi/main arm64 Packages [13.8 kB]
Reading package lists... Done     
E: The repository 'http://kali.download/kali http://http.kali.org/kali Release' does not have a Release file.
N: Updating from such a repository can't be done securely, and is therefore disabled by default.
N: See apt-secure( manpage for repository creation and user configuration details.

2. Why are you turning off the power of the adapter?
2a. I am not turning off the adapter but turning off the wifi power management mod. I saw a post that says it could help by turning off the wifi power management. (I doesnt) This issue happens whether I run the power management command or not.

3. Look in dmesg after the issues. And actually, clear it before running airmon-ng commands, then attach it here.
I can attach more logs / test if needed. I did not try to rerun the sudo airdump-ng wlan0mon command which would show nothing after it stops working. Once it stopped working I clear the terminal and ran dmesg and attached the part with errors (not everything)

edit: added logs as an attachment

[misterx]

1. It might not be, you don't have networking and it failed.
3. Please look at "Attachments and other options" and use that next time you're attaching a log file. What command did you run after putting it in monitor mode that led to this?

[Karp]

1a. I was definitely connected to the internet when I ran sudo apt update && apt dist-upgrade
2a. I ran sudo aireplay-ng -0 0 -a (router mac) -c (client mac) wlan0mon -D

I can rerun the commands without running aireplay-ng and get the logs for you / attach them correctly.

[misterx]

1a. Well, the point is that there was an issue (with name resolution) which prevented from checking for updates. Please fix it and make sure it is up to date, then reboot and try the commands again.
2a. What channel is the AP on?

[Karp]

1a. This name resolution is what comes preloaded on the Kali 2020.3 Raspberry Pi 4 os. I have edited the sources list in the past to be: deb http://kali.download/kali kali-rolling main contrib non-free
But... I was concerned this was not a Pi build due to the install taking 4 hours, kali running worse and it not helping the issue.
I can update everything again and post additional logs if you would be so kind to review.

2a. Channel 11

Edit: changed my source back to: deb http://kali.download/kali kali-rolling main contrib non-free and and ran the commands mentioned. Will try again after upgrade and provide new logs:
During upgrade it threw a warning (attached)

[misterx]

1a. Look, the network was down. Running airmon-ng check kill did that. Restart your system, update it then reboot.

[Karp]

After lots of research this afternoon I found that the source files included with the Kali 2020.3 Pi 4 os are indeed broken. I am currently upgrading with the source I mentioned above (ARM 64 packages) and will retest. Last time I did this, I continued to receive errors using the Rasp Pi 4 wifi chip. When I used my new Alfa adapter everything ran perfect but it does not work well w/ the Rasp Pi 4 internal chip. I will stick to the new Alfa adapter moving forward but still want to provide you with Pi 4 chip logs which you'll have later tonight.

I appreciate all the information you've provided and hopefully I can help you all with troubleshooting the Pi 4 wifi.

[Karp]

Additional error logs after a full update:

Commands:
1) sudo airmon-ng check kill
2) sudo airmon-ng start wlan0
3) sudo airodump-ng wlan0mon
4) sudo airodump-ng --band abg wlan0mon

After airodump-ng stopped capturing traffic I ran
1) dmesg

logs attached

Thank you!

P.S. I would be happy to run any additional commands and provide logs.

[misterx]

64 bit is still experimental. Switch to 32bit

[ohy1994]

Hi

Sorry to necro the thread but I have the same problem.

Did a apt update && apt full-upgrade.

Airodump can be run without any problem but whenever I run aireplay-ng -9 wlan0mon, it says injection works but the second time I run it, it doesn't detect any AP. airodump won't work after this as well. After a reboot, everything works again.

Do you require any kinds of log to debug?

I'm running latest kali 32 bit on raspberry pi 4

[misterx]

This is a driver issue, it's not providing packets anymore. There is nothing we can do. You can try contacting nexmon (they have a github repo).

Again, if you're running 64 bit, switch back to 32, because it is still experimental.

[Deep Jain]

I am having the same issue. Where you able to fix it?

[Michiel]

Same issue.
dmesg output:

99.765057] brcmfmac: brcmf_vif_add_validate: Attempt to add a MONITOR interface...
[   99.772888] brcmfmac: brcmf_mon_add_vif: brcmf_mon_add_vif called
[   99.778995] brcmfmac: brcmf_mon_add_vif: Adding vif "wlan0mon"
[  116.719387] device wlan0mon entered promiscuous mode
[  125.095485] ieee80211 phy0: brcmf_fw_crashed: Firmware has halted or crashed
[  127.840585] brcmfmac: brcmf_sdio_bus_rxctl: resumed on timeout
[  127.846984] brcmfmac: brcmf_sdio_checkdied: firmware trap in dongle
[  127.853886] brcmfmac: dongle trap info: type 0x4 @ epc 0x0019ce1e
                 cpsr 0x0000019f spsr 0x000001bf sp 0x0025ff34
                 lr   0x0019b18d pc   0x0019ce1e offset 0x25fedc
                 r0   0x0023265c r1   0x0025ccdc r2 0x00000008 r3 0x0025c0d0
                 r4   0x0025c0d8 r5   0x0000ff5b r6 0x0019870c r7 0x0025c0d0