vdub

I noticed earlier that if I change the mac on the wlan0 interface and then start airmon the mon0 interface uses the original wlan0 mac address not the spoofed mac.

I am not sure what I am doing wrong here but I have tried about 1600 keys in about 12 hours and have had to reset the router 3 times. This is the command I am using. reaver -i mon0 -b 20:4E:7F:A3:16:0A -d 10 -v -s ./204E7FA3160A.wpc I have created a 10 second delay between attempts and lowered my txpower to 1mW. This is a few week old Netgear N150 router. This router is out of stock so its never been used in a network. Its brand new. The only thing I changed in the configuration was the wpa2 key. I did not upgrade the firmware. Personally I don't see how this could possibly be effective in a situation where you don't have access to reboot the router every few hours. This could take weeks to get though. I'm also getting this error constantly WARNING: 10 failed connections in a row This error happens about every 2 or 3 key attempts. I also tried to suspend the terminal and change my mac address on my wifi card but that broke the program. I had to pull the wifi card and start over with the factory mac. However, that might be my fault because I think I changed the mac while still in monitor mode. The first 1000 keys went without a hitch and then this started happening.

You know I saw that but for some reason thought that it was meant for individual commands. I want to be able to restore the entire session. I will read the man page and play around with it. Thanks.

This may be a really stupid question but I searched Google and could not find a way to do it. I know you can suspend sessions with Ctrl_s and resume with Ctrl_q but lets assume that I am away from my shop and I ssh in to run a command. I want to allow this command to continue running on the remote system when I exit ssh, so I don't want to suspend the session. However, I want to resume that ssh session in a terminal later on the physical system. Is that possible?

I have to agree. I love the cool Linux spots. I enjoy when Darren uses a super complicated command to get simple output. Like a while back when he piped 3 or 4 commands together to get a tree view. Its classic, and even better when other people write in to show a completely different way to do the exact same thing. Its Linux at its root, pun intended, lol.

Woohoo, it finally finished Aircrack-ng 1.1 [20:13:10] 81000004 keys tested (1141.89 k/s) KEY FOUND! [ password ]

My system has a 7900GT in it right now. I have been thinking about upgrading to a 9000 series so I can use cuda. As of right now I don't think anything will take the 7900 for granted.

I am piping john though aircrack so the word list is getting generated in real time.

If anyone has this same card and wouldn't mind trying something for me could you post the results to this command? wget --output-document=/dev/null http://speedtest.wdc01.softlayer.com/downloads/test500.zip Here are my results Alfa rtl8187 Max: (145K/s) Time: 58m 54s Average: (145 KB/s) Internal Broadcom b43 Max: (2.11M/s) Time: 4m 32s Average (1.84 MB/s)

I'm using openSUSE, not ubuntu. So its zypper not apt-get and I am currently running 12.1. I will give that a shot. Another quick question. The handshake that I was able to get has been running for almost 17 hours. How long should the paraphrase "password" take to get? Is 17 hours excessive or normal? Edit: I also have aircrack limited to a single core, but its a 4Ghz core. I know that might make a difference.

Well I have tried different drivers and just about every suggestion I can find on line and just about every post that talks about the crummy performance of the Alfa AWUS036H concludes with the OP buying a different wireless card. I am topping off at 130K/s download speeds now. I don't get it. Why does everyone recommend this card if it performs so poorly? Does anyone have any ideas or do I just need to replace this card?

The problem I had was aireplay would not run. It would give me an error saying its stuck on channel -1 and exit. Right now I am trying different drivers for the rtl8187 to see if I can make it perform better. I have been really disappointed with its performance. It maxes out at under 1mb during downloads. I am experimenting with drivers in backtrack to see if I can get it working better. I just tried the compact-wireless drivers and I am topping off at 130K/s which is typical. I think maybe this Alfa AWUS036H just sucks. I here everyone recommending it but I also see pages and pages on Google of it getting horrible performance.

Yeah your right, I didn’t think about that. mdk3 does run non stop. I will have to play with aireplay again and see if I can get it to work this time. I think the problem was airdump would work on a static channel but aireplay would not. I will play around with it and see what happens. I think when I was researching the problem last time I found a patch for aireplay but it was easier just using mdk3 then patching aircrack.

FYI aircrack-ng -p {number of cores} This is how you limit the number of cores aircrack uses. taskset doesn't work on aircrack. At least now I can use my system while it runs and my temperature will not reach over 70c. I have a quad core AMD FX @ 4Ghz and earlier with all 4 cores going at 100% after an hour the CPU was at 72c and the system was barely responsive. I have a new way to burn in CPU's, lol. Your right, if I am going to set this up in the lab it might as well be as realistic as possible so I should be deathing anyway. The problem I have had is I have been using mdk3 for the deathing because aircrack has a bug that makes it hard to stay on a static channel. However, mdk3 works just as well, you just have to add hwaddr's to a black list and run mdk3 against it. Not that big of a deal. Honestly I think its better in some cases.

I have always used the wlan{x} device rather then the mon{x} device. If you run iwconfig you can see the wlan{x} is in monitor mode. I will give it a try but I know there was a reason I never used the mon{x} device, I think it might have given me trouble in the past. Honestly I can't remember why. For the testing I was doing I was manually reconnecting to the access point. Does deauthing give you a better chance of catching a handshake? According to the reading I did on aircrack's site they actually said you will have more luck cycling the connection yourself rather then deauthing. The problem is I was doing the attack against my Galaxy Note and if you deauth a note it just goes to 4G rather then reconnecting. It will eventually reconnect but not right away. So rather I just cycled between my test router and my home router. I will try deauthing and see where that gets me. Right now I need to figure out how to get john and aircrack to run on a single core with taskset. I was having problems with it earlier so I took a break from it.

As a repair tech I replace keyboards all the time. I have customers that like to drink wine and tea by the computers. I don't complain, it pays the bills. I have never personally had to replace a keyboard on my own system. I just use that as a gauge for harder parts like motherboards. On the subject of MAC's there are just to many con's just to have a brushed aluminum computer. Its just not worth it. Not even considering replacement parts. The system costs double what a comparable PC costs, the efi bios sucks trying to use it for anything but OSX, finally the biggest part, why give Apple money. If I am going to spend that kind of cash I would just get an ultrabook. I am a Linux user and have absolutely no desire to run a noob OS like OSX so why waste the money on a system that will make me look like an arrogant prick, no offense but most mac users are not even worth talking to. At least that’s the experience I have had. Present company excluded of course ;-). FYI, I hope this post doesn't come off as rude, it wasn't intended to be that way. I know that the people reading this are not your average users, Mac or not, so my comments are of course not directed at anyone here. I have just noticed that almost every noob buys a mac as a status symbol. It has nothing to do with the computer and they will argue why they are better until there face turns blue all while not knowing a thing about computers. The hardware in a mac is old and outdated and goes for a premium price. Also they use parts like Foxcon motherboards. I think Foxcon rates lower then FIC, if not its close. Then these people say that they are expensive because they are high quality. LMAO, the only high quality part on a mac is the case. Everything inside is bottom the the shelf junk. If you don't believe me then open one up. Foxcon motherboards, hynix memory, Toshiba hard drives, and the list goes on. Atleast Dell uses ASUS motherboards and seagate/WD hard drives. Anyway </end rant>

I have a problem. I setup a wrt54g router running ddwrt in my shop for pen testing. The ssid is Linksys and its using wpa. I am using airodump-ng and I am having a hard time capturing a handshake. I finally got it after connecting my phone to the access point but it took over 10 attempts to do it. I have my channel set to the same as the access point and everything else looks good. When I first started I accidentally used my normal wpa2 password and it failed to authenticate but airodump-ng claimed to have gotten that handshake. I restarted it and tried again and that’s when it took over 10 tries to get another. I tried with my phone and my wife's notebook. The wpa password on the access point is just "password". I want to play with piping john in to airocrack-ng. However, if this was a real world test and I was deauthing to get the handshake then it would take forever. Is there anything I might be doing wrong. Here is what I am doing. ## change channel iwconfig wlan0 channel 6 ## then airmon-ng airmon-ng start wlan0 6 ## now I have to bring the adapter down or it doesn't work ifconfig wlan0 down ## Then start airodump-ng airodump-ng wlan0 -c 6 --bssid xx:xx:xx:xx:xx:xx -w ./Linksys.0 The adapter is not configured on the system. This adapter is the alfa I use on my netbook and I have it connected to my desktop just for this purpose. I have dual Ethernet adapters and have no intention on making wlan0 work as an actual connection. Any tips would be appreciated. I read somewhere that you can force wpa in airodump but I could not figure out how.

Yeah I do to. In fact that’s what I do for a living. The problem is that ASUS eeePC parts are impossible to find even from ASUS. MAC's they are a different story. Apple monopolizes the parts and will not sell them to you. They want to put shops like mine out of buisness and make everyone go to Apple stores to get there Apples fixed. They don't want shops like mine working on Apples.

Do you have your router connected like a switch with your landlords router connected to one of the switched ports or do you have your landlords router connected to the internet port on your router? If you are using the internet port then you need dhcp turned on. Unless you want to share files with your landlord this is how I would connect it. Otherwise if you are using a switched port then turning of dhcp is fine.

WOW, steep price tag on that baby.

My Dell Mini 10v is getting a little ruff around the edges to. I have been looking but haven’t found many that excite me. The ASUS Lamborghini is cool looking but a little big for what I want. Also I can see that shiny surface as a fingerprint magnet as well. I wish Dell still made the Mini's. They are great solid netbooks. Mine has been dropped, thrown around in my tech bag, and all around beat up and it still runs great. Its just a little slow and the passive cooling makes it run hot. The Dell Duo looked cool but doesn't have any Ethernet port and only has one USB port. Kind of a deal breaker. I guess the only real options are Acer or eeePC's. However, Acers feel like playschool toys to me. They just don't seam to be built very well and I have had problems getting replacement parts for eeePC's in the past. The MAC's look cool but there is no way I will give that company a dime. Also MAC's have the same problem with replacement parts. If you need a new keyboard you have to let Apple install it for like $700. Apple will not sell you replacement parts. They only sell parts installed. I have been thinking about just moving up to a Dell 14" but I really like the netbook form factor. To bad no one makes them anymore. I may just install an SSD in my Dell Mini and call it good.

I would hate to state the obvious but I doubt things will stay the same. That's what we thought when G4 bought TechTV and we all know what happened there. How long did it take before every TechTV show was gone and replaced with a bunch of gaming shows for noobs. I am not sure what Hak5's agreement is with Revishion3 but hopefully they still own the rights to the program and can just go solo again if anything weird happens. I hate to say it but based on content I see Hak5 going first. Don't get me wrong I don't mean its bad content, I just mean that the show in general talks about subject maters that Discovery might have a problem with. At least that’s how most liberal media company’s are. I honestly really hope I am wrong, but I doubt I am.

The system I am using this on is a Dell Mini 10v with an Atom 1.667 dual core, 2Gb of ram and openSUSE 12.1 w/ KDE 4.8.3. and I am experiencing the same problem. I didn't see if the OP had mentioned if he tested the built in wireless card. If not I would see what it does. I personally get great performance out of my built in Brodcom. I do notice that if I am downloading a large file the wireless stops working after about a half hour or so. I have to disconnect and reconnect to get it to work again. That might be related but I doubt it. This happens on both Wireless cards. I have tried manually setting the rate with no success.

I have noticed that increasing txpower actually makes it worse if you are to close to the access point. I lowered mine to 36mW and actually saw improvement. Increasing the txpower in a situation where its un-necessary can leave you open for added interference. I went from 9Mbps to about 13Mbps by lowering the txpower from 20dB to 15dB. However, the internal card regularly hits 25Mbps+. I would only ramp up the txpower if you want to hit an access point that’s far away. If you set the regulation country you have to do it at every boot. The driver is suppose to regulate its own txpower based on the connection strength but I don't think it does. I was actually quite disappointed when I saw how bad the performance was. However, I was pleasantly surprised when I found out how far I could see access points. I guess its a trade off.

Why not try Chromium. http://chromeos.hexxeh.net/