Sabri Posted January 28, 2014 Share Posted January 28, 2014 Hi all. I am new and I have many doubts: 1. Are wlan0 and wlan1 interfaces especially related to some work in particular or they are interchangeable? Why should I have to enable them? 2. It seems that I can create a fake AP from the Karma infusion without starting Karma, is it right? 3. If I create a fake AP with Karma, on which interfaces clients connect to that AP? Just for starting...and sorry for the noob questions :) Quote Link to comment Share on other sites More sharing options...
thesugarat Posted January 28, 2014 Share Posted January 28, 2014 1. wlan0 is used for the creation of a real AP also it is used for Karma aka "fake" APs. wlan1 is used for client mode or jamming/deauthing and cannot be an AP. At least not at this time... 2. In the Karma tab you are simply setting the name of the real Access Point that wlan0 uses. Yes you can set this without turing on Karma. i.e. Karma is only good in certain instnances so you can set it to Free WiFi and essentially go "fishing" i.e. just wait for people to connect rather than trick/force them to connect via Karma. 3. wlan0 Try watching the Pineapple University videos... Quote Link to comment Share on other sites More sharing options...
Sabri Posted January 28, 2014 Author Share Posted January 28, 2014 1. wlan0 is used for the creation of a real AP also it is used for Karma aka "fake" APs. wlan1 is used for client mode or jamming/deauthing and cannot be an AP. At least not at this time... 2. In the Karma tab you are simply setting the name of the real Access Point that wlan0 uses. Yes you can set this without turing on Karma. i.e. Karma is only good in certain instnances so you can set it to Free WiFi and essentially go "fishing" i.e. just wait for people to connect rather than trick/force them to connect via Karma. 3. wlan0 Try watching the Pineapple University videos... Thank you for your answers. But which is the interface to I have to sniff with tcpdump? I thought was the br-lan interface, but are you saying is the wlan0 instead? Quote Link to comment Share on other sites More sharing options...
Foxtrot Posted January 28, 2014 Share Posted January 28, 2014 br-lan is the bridge between wlan and lan iirc. So obviously, you would run things like DNSSpoof, URLSnarf etc on br-lan. Quote Link to comment Share on other sites More sharing options...
thesugarat Posted January 28, 2014 Share Posted January 28, 2014 Honestly, Foxtrot is half correct. It really depends on your configuration when you are talking about tcpdump. If you want to catch all traffic on your pineapple you use br-lan. If you want to try to dump all avaiable traffic on the AP you're wlan1 is connected to (Client Mode) you could use wlan1. Quote Link to comment Share on other sites More sharing options...
Sabri Posted February 2, 2014 Author Share Posted February 2, 2014 Another question: what is the difference between putting in monitor mode wlan0 instead of wlan1? Thanks Quote Link to comment Share on other sites More sharing options...
Xcellerator Posted February 3, 2014 Share Posted February 3, 2014 Technically, its the same process. But putting wlan1 in monitor mode is preferred because its the 'free' card and is also the 'better' card (RTL8187). wlan0 is the Atheros card and will typically be in managed mode and act as an AP. Quote Link to comment Share on other sites More sharing options...
thesugarat Posted February 3, 2014 Share Posted February 3, 2014 Also, wlan0 has less TX power... Quote Link to comment Share on other sites More sharing options...
Sabri Posted February 4, 2014 Author Share Posted February 4, 2014 Thank you to all. Another question: what is the "formal" name for the wifi frames in which a client asks for the SSID in its list? Can I see these "question frames" via wireshark? Quote Link to comment Share on other sites More sharing options...
Sebkinne Posted February 4, 2014 Share Posted February 4, 2014 Thank you to all. Another question: what is the "formal" name for the wifi frames in which a client asks for the SSID in its list? Can I see these "question frames" via wireshark? These are called probe request. Best regards, Sebkinne Quote Link to comment Share on other sites More sharing options...
Sabri Posted February 4, 2014 Author Share Posted February 4, 2014 These are called probe request. Best regards, Sebkinne I knew that probe requests were the messages via which the Access Points can broadcast their SSIDs. I want to know how are called the message that the clients send. I hope I am clear now. Thanks again. Quote Link to comment Share on other sites More sharing options...
Sebkinne Posted February 4, 2014 Share Posted February 4, 2014 I knew that probe requests were the messages via which the Access Points can broadcast their SSIDs. I want to know how are called the message that the clients send. I hope I am clear now. Thanks again. No, I understood you, but you mixed the two up. Beacon frames are the ones the AP uses to send out it's SSID. Probe request are the ones that the client sends. The AP beacons, the client probes. Want to know more? Google "802.11 management frames" for more information. Best regards, Sebkinne Quote Link to comment Share on other sites More sharing options...
Sabri Posted February 5, 2014 Author Share Posted February 5, 2014 No, I understood you, but you mixed the two up. Beacon frames are the ones the AP uses to send out it's SSID. Probe request are the ones that the client sends. The AP beacons, the client probes. Want to know more? Google "802.11 management frames" for more information. Best regards, Sebkinne Yes, Seb. You're right. About that, I have just tried to switch on the wifi on my iPhone in order to see which probe requests sends. I saw that it sends only probe requeste with SSID "broadcast". How is it possible? Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.