OESF | ELSI | pdaXrom | OpenZaurus | Zaurus Themes | Community Links | Ibiblio

IPB

Welcome Guest ( Log In | Register )

 
Reply to this topicStart new topic
> Wesside-ng & Easside-ng, (solved: won't work with hostap, no fragmentation avalaible)
same
post May 13 2008, 01:22 AM
Post #1





Group: Members
Posts: 51
Joined: 29-October 07
From: barcelona
Member No.: 20,873



hello,

is wesside-ng (-k option enabled)/easside-ng working (apt-get install aircrack-ng)?

would be the perfect tool for using with zaurus on the road

QUOTE
"Wesside-ng is an auto-magic tool which incorporates a number of techniques to seamlessly obtain a WEP key in minutes. It first identifies a network, then proceeds to associate with it, obtain PRGA (pseudo random generation algorithm) xor data, determine the network IP scheme, reinject ARP requests and finally determine the WEP key. All this is done without your intervention."
http://www.aircrack-ng.org/doku.php?id=wesside-ng

Thnx for sharing your experience

(EDIT) usage examples:

wesside-ng
CODE
wesside-ng -i wlan0 -v $AP_MAC -c $AP_CHAN


easside-ng
CODE
buddy-ng
easside-ng -f wlan0 -s 127.0.0.1 -v $AP_MAC -c $AP_CHAN
Go to the top of the page
 
+Quote Post
Capn_Fish
post May 13 2008, 03:42 AM
Post #2





Group: Members
Posts: 2,350
Joined: 30-July 06
Member No.: 10,575



I don't think we can use it until Yoggun's kernel is patched for HostAP packet injection (I already PM'd him about it and gave him the patch link, so it ought to be in the next realease, thanks 2or0!).
Go to the top of the page
 
+Quote Post
same
post May 13 2008, 04:02 AM
Post #3





Group: Members
Posts: 51
Joined: 29-October 07
From: barcelona
Member No.: 20,873




thnx for the info Capn.

I installed debian some time ago (uboot age), but moved back to pdaxrom. if aircrack-ng beta2 works on debian i'll consider installing eabi again with dualbooting pdaxrom (cause does too many things eabi can't dry.gif )
Go to the top of the page
 
+Quote Post
2or0
post May 14 2008, 12:10 AM
Post #4





Group: Members
Posts: 217
Joined: 6-June 04
Member No.: 3,590



QUOTE(Capn_Fish @ May 13 2008, 03:42 AM) *
I don't think we can use it until Yoggun's kernel is patched for HostAP packet injection (I already PM'd him about it and gave him the patch link, so it ought to be in the next realease, thanks 2or0!).


The kernel was patched for 'HostAP packet injection'. If someone is interested, download and test the modules.
http://yonggun.tistory.com/72
Go to the top of the page
 
+Quote Post
same
post May 14 2008, 01:01 AM
Post #5





Group: Members
Posts: 51
Joined: 29-October 07
From: barcelona
Member No.: 20,873



lol

2oro, you always have it done before we claim! thanx for your work

then, can anyone test wesside-ng?

PS: testing injection

CODE
aireplay-ng -9 wlan0


it should reply something like this:

CODE
16:29:41  wlan0 channel: 9
16:29:41  Trying broadcast probe requests...
16:29:41  Injection is working!
16:29:42  Found 5 APs

16:29:42  Trying directed probe requests...
16:29:42  00:09:5B:5C:CD:2A - channel: 11 - 'NETGEAR'
16:29:48  0/30: 0%
16:29:48  00:14:BF:A8:65:AC - channel: 9 - 'title'
16:29:54  0/30: 0%
16:29:54  00:14:6C:7E:40:80 - channel: 9 - 'teddy'
16:29:55  Ping (min/avg/max): 2.763ms/4.190ms/8.159ms
16:29:55  27/30: 90%
16:29:55  00:C0:49:E2:C4:39 - channel: 11 - 'mossy'
16:30:01  0/30: 0%
16:30:01  00:0F:66:C3:14:4E - channel: 9 - 'tupper'
16:30:07  0/30: 0%


http://www.aircrack-ng.org/doku.php?id=inj...0482eb4a66345ab
Go to the top of the page
 
+Quote Post
Capn_Fish
post May 14 2008, 03:55 AM
Post #6





Group: Members
Posts: 2,350
Joined: 30-July 06
Member No.: 10,575



It worked for me (the test), but in real-world testing, it didn't. I'm marking it down to a touchy card.
Go to the top of the page
 
+Quote Post
same
post May 14 2008, 09:06 AM
Post #7





Group: Members
Posts: 51
Joined: 29-October 07
From: barcelona
Member No.: 20,873



QUOTE(Capn_Fish @ May 14 2008, 03:55 AM) *
It worked for me (the test), but in real-world testing, it didn't. I'm marking it down to a touchy card.


that's good, thanx for replying

┐are you using airoscript for the aircrack-ng suite? it's quite easy to use all-together

on the other hand, by "touchy card" i guess you mean low range? you could try to put a LR03 battery (unloaded is ok, no need to be brand new) on the CF card
Attached File  IMG_1317.JPG ( 14.79K ) Number of downloads: 29

easy mod to extend range (mine is a planex GW-CF11H). play with the position of the battery to get the best range.

anyway, would be nice that someone could post the impressions on using wesside-ng & easside-ng on the zaurus, in pdaxrom the wesside-ng version has no -k param, and I always get "ERROR max"

I know I should test it myself, but I had a hard time restoring all my customization of pdaxrom, couldn't fully restore my backup and I need a good reason to reinstall debian, again huh.gif
Go to the top of the page
 
+Quote Post
Capn_Fish
post May 14 2008, 12:16 PM
Post #8





Group: Members
Posts: 2,350
Joined: 30-July 06
Member No.: 10,575



By "touchy" I mean it SHOULD inject, but won't under some OSs and conditions (in pdaX, it needed its MAC changed, in Angstrom, it worked only without changing the MAC).

EDIT: airoscript doesn't work either. I'll run more tests later (it had errors, but closed the terminal windows too fast to read them).
Go to the top of the page
 
+Quote Post
BarryW
post May 14 2008, 02:07 PM
Post #9





Group: Members
Posts: 693
Joined: 4-June 04
From: Ohio
Member No.: 3,570



QUOTE(same @ May 14 2008, 01:06 PM) *
QUOTE(Capn_Fish @ May 14 2008, 03:55 AM) *
It worked for me (the test), but in real-world testing, it didn't. I'm marking it down to a touchy card.


that's good, thanx for replying

┐are you using airoscript for the aircrack-ng suite? it's quite easy to use all-together

on the other hand, by "touchy card" i guess you mean low range? you could try to put a LR03 battery (unloaded is ok, no need to be brand new) on the CF card
Attached File  IMG_1317.JPG ( 14.79K ) Number of downloads: 29

easy mod to extend range (mine is a planex GW-CF11H). play with the position of the battery to get the best range.

anyway, would be nice that someone could post the impressions on using wesside-ng & easside-ng on the zaurus, in pdaxrom the wesside-ng version has no -k param, and I always get "ERROR max"

I know I should test it myself, but I had a hard time restoring all my customization of pdaxrom, couldn't fully restore my backup and I need a good reason to reinstall debian, again huh.gif

You've got one of those "gold" stickers on the back of your cell phone too don't you.
Go to the top of the page
 
+Quote Post
same
post May 14 2008, 02:22 PM
Post #10





Group: Members
Posts: 51
Joined: 29-October 07
From: barcelona
Member No.: 20,873



Capn
QUOTE
EDIT: airoscript doesn't work either. I'll run more tests later (it had errors, but closed the terminal windows too fast to read them).
just watch the initial variables of airoscript.sh, you could have to change something.
for closing windows change DEBUG=0 to DEBUG=1, it will hold shell windows to see the error

Barry
QUOTE
You've got one of those "gold" stickers on the back of your cell phone too don't you.


┐have you tried that? i suppose not. the battery is just concentrating the WiFi signal, much as would any metallic item ( nail/screw etc) that acts as a radio antenna.

You don't need a battery- maybe just wrap some wire around the CF card & move it near a window (and keep doing the idiot), but battery is the more portable and does a very good job, at least for my card scheme.

use a program that reports you real time signal values, test things before talkin shit. or just shut up

EDIT: the gold sticker in action, from 3 APs seen to 15 or 20 APs.
Go to the top of the page
 
+Quote Post
mikeones
post May 14 2008, 02:43 PM
Post #11





Group: Members
Posts: 20
Joined: 20-July 06
Member No.: 10,468



QUOTE(BarryW @ May 14 2008, 05:07 PM) *
You've got one of those "gold" stickers on the back of your cell phone too don't you.

/me wonders if BarryW is on netstumbler.org forums... :-/
Go to the top of the page
 
+Quote Post
maemorandum
post May 15 2008, 12:44 AM
Post #12





Group: Members
Posts: 57
Joined: 12-March 08
From: North Pole
Member No.: 21,496



Zero:
- You can dismantle the spcelink cf-card to solder a sma-connector for better signals.

First:
- The kernel-driver for hostap is already patched for packet-injection. This seems surprising - but if you know how to test is, you will see, smile.gif

Second:
- Airoscript works perfect on eabi/yonggun with the patches hostap-drivers. If you know how to use it and how to set the parameters - test it.

Third:
- wesside-ng and easside-ng are absolutely experimental. And important: Both technics won┤t work with the hostap-drivers.
You have to use other drivers for it. Unfortunately there are no other patched drivers skipped with this kernel.

Forth:
- Do not play around with wep-cracking-technics if you absulutely don┤t know what you are doing!!!!!!!!! Only use them for your own ap - or yours might be the next victim. smile.gif
Go to the top of the page
 
+Quote Post
same
post May 16 2008, 04:46 AM
Post #13





Group: Members
Posts: 51
Joined: 29-October 07
From: barcelona
Member No.: 20,873



maemorandum thnx for your reply, very helpfull for this topic

as I could read so far:

QUOTE
Hostap Limitations
There are some important limitations with this driver:

Fragmentation attack does not work
...

http://www.aircrack-ng.org/doku.php?id=hostap

as wesside-ng uses fragmentation tech, it's not going to do anything with hostap driver
Go to the top of the page
 
+Quote Post
zeroc87
post May 20 2008, 11:43 AM
Post #14





Group: Members
Posts: 116
Joined: 6-December 06
Member No.: 13,145



can I install this kernel with uboot bootloader and not with sharp bootloader?thanks
Go to the top of the page
 
+Quote Post
xamindar
post Aug 30 2008, 01:02 AM
Post #15





Group: Members
Posts: 803
Joined: 30-March 04
From: California
Member No.: 2,368



anyone still messing with these? It looks like yongguns hostap driver doesn't even work at all. I get better luck with the orinoco drivers which don't even have injection. with orinoco "aireplay -9 eth4" at least gives me results that it found APs, but with hostap it just gives three messages about "invalid skb-cb magic" or something and quits.

wesside-ng just scans forever never finding any APs with hostap whereas with orinoco it finds one right away and attempts to crack it.

Is hostap just broken on yongguns kernel or am I missing something?
Go to the top of the page
 
+Quote Post

Reply to this topicStart new topic
1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)
0 Members:

 



RSS Lo-Fi Version Time is now: 24th October 2014 - 10:20 PM