Jump to content
Hak5 Forums
KenSC

airodump-ng no output?

Recommended Posts

Hi all, running airodump-ng, nothing shows up. i know i'f i'm in my Tetra's web interface, i can run a 15 second scan and see clients. I should see some text, right? all the tutorials say there should be columns of text in the interface.

Something like this:

 

  CH  9 ][ Elapsed: 4 s ][ 2007-03-24 17:51 
                                                                                                               
  BSSID              PWR RXQ  Beacons    #Data, #/s  CH  MB  ENC  CIPHER AUTH ESSID
                                                                                                               
  00:14:6C:7E:40:80   39 100       51        0    0   9  54  WPA2 CCMP   PSK  teddy                           
                                                                                                               
  BSSID              STATION            PWR  Lost  Packets  Probes    

 

Edited by KenSC

Share this post


Link to post
Share on other sites

Yes,  you should be seeing that. Is your adapter in monitor mode?

sudo airmon-ng start wlan0

Where you replace wlan0 with the name of your interface. 

I can't really give any other help than that based on the info that you provided. We're going to need a bit more about what you're trying in order to try to help you if the above doesn't solve the problem. 

Share this post


Link to post
Share on other sites

My Tetra won't sudo, but if i run

airmon-ng start wlan1

then wlan1mon appears, so that should be fine. I do get this error:

Found 1 processes that could cause trouble.
If airodump-ng, aireplay-ng or airtun-ng stops working after
a short period of time, you may want to run 'airmon-ng check kill'

 1898 root      1368 S    grep wpa_action\|wpa_supplicant\|wpa_cli\|dhclient\|

i run check kill, but the process keeps coming back

 

Share this post


Link to post
Share on other sites

Does your prompt end in "$" or "#"? If it's #, you're running as root, which means you don't need sudo. 

Check kill kills those processes, but those processes are necessary for networking to work, which means the pineapple has a script that keeps bringing them back. You can kill them manually:

killall -9 NAMEOFPROCESS

but if it's a revival script, it'll just keep bringing those processes back. I don't think you're able to do sniffing without killing a few processes, which is why your airodump is failing. You should look into what's running, using top. 

  • Like 1

Share this post


Link to post
Share on other sites

I'm running as root. Stupid question, but how do I tell which process it is that i need to kill?

Share this post


Link to post
Share on other sites

Use 

top

by default, you can see all users processes. You then take the pid (process id) of that program and type

kill 000000

Where 000000 is the process ID of the program you want to kill. If you're still confused, look into killing daemon processes on linux. 

If you already know the name of the process you want to kill, you can use the command I wrote above. 

  • Upvote 1

Share this post


Link to post
Share on other sites

Here's what i have:

5972   415 root     R     1376   1%   0% top
 1491     1 root     S    11280   9%   0% php-fpm: master process (/etc/php5-fp
 1493  1491 root     S    11280   9%   0% php-fpm: pool www
 1492  1491 root     S    11280   9%   0% php-fpm: pool www
 1602  1569 root     S     4268   3%   0% nginx: worker process
 1569     1 root     S     4044   3%   0% nginx: master process /usr/sbin/nginx
 1501     1 root     S     3284   3%   0% /usr/sbin/sshd -D
 1509     1 root     S     1904   2%   0% /usr/sbin/hostapd -P /var/run/wifi-ph
 1157     1 root     S     1496   1%   0% /sbin/netifd
    1     0 root     S     1408   1%   0% /sbin/procd
  415     1 root     S     1376   1%   0% -ash
 1622     1 root     S     1372   1%   0% /usr/sbin/ntpd -n -S /usr/sbin/ntpd-h
 1125     1 root     S     1040   1%   0% /sbin/logd -S 16
 5971     1 nobody   S      928   1%   0% /usr/sbin/dnsmasq -C /var/etc/dnsmasq
  393     1 root     S      888   1%   0% /sbin/ubusd
 1370     1 root     S      784   1%   0% /usr/sbin/autossh -M 20000    -i /etc
 1678     1 root     S      780   1%   0% log_daemon /tmp/pineap.log 30
    3     2 root     SW       0   0%   0% [ksoftirqd/0]
  250     2 root     SW       0   0%   0% [kworker/0:2]
^C 33     2 root     SW       0   0%   0% [kworker/0:1]

I also killed

1196     1 nobody   S      788   1%   0% /usr/sbin/atd

because nobody sounds shady as a user to me...anyway, if i kill or kill -9 5971 above, it just autorespawns.

Share this post


Link to post
Share on other sites

Lol nobody is a user just like any other. Linux has easter eggs built into it, you'll learn that the more you play with it. Atd is a scheduling operation, which means it will tell certain scripts when to run. I don't personally have a pineapple, so I can't tell you what process you need to kill, as I don't know what the name of the process is that's reviving those daemons and putting you back into managed mode. However, I can ping @Sebkinne, as he built the WiFi pineapple, and hope that he should be able to help us figure out what's going on. 

  • Like 1

Share this post


Link to post
Share on other sites
1 minute ago, GarrukApex said:

Lol nobody is a user just like any other. Linux has easter eggs built into it, you'll learn that the more you play with it. Atd is a scheduling operation, which means it will tell certain scripts when to run. I don't personally have a pineapple, so I can't tell you what process you need to kill, as I don't know what the name of the process is that's reviving those daemons and putting you back into managed mode. However, I can ping @Sebkinne, as he built the WiFi pineapple, and hope that he should be able to help us figure out what's going on. 

Thanks, bud!

Share this post


Link to post
Share on other sites
On 2/9/2018 at 5:45 AM, KenSC said:

My Tetra won't sudo, but if i run


airmon-ng start wlan1

then wlan1mon appears, so that should be fine. I do get this error:


Found 1 processes that could cause trouble.
If airodump-ng, aireplay-ng or airtun-ng stops working after
a short period of time, you may want to run 'airmon-ng check kill'

 1898 root      1368 S    grep wpa_action\|wpa_supplicant\|wpa_cli\|dhclient\|

i run check kill, but the process keeps coming back

 

Have you tried turning it off and on again?

  • Like 1

Share this post


Link to post
Share on other sites
Just now, kbeflo said:

Have you tried turning it off and on again?

I always hear that with an irish accent for some reason haha. Yes, and also at several locations and accessed from different computers.

Share this post


Link to post
Share on other sites
3 minutes ago, Sebkinne said:

Did you happen to set up client mode?

Nope. ICS from my windows box.

Share this post


Link to post
Share on other sites
1 hour ago, KenSC said:

Any other thoughts?

let me get this straight, you can run a Recon scan and it gives you results but when you run "airodump-ng -i lwan1mon" it runs but you get no results?

Whats do you see with a "ifconfig -a' command in terminal?

Share this post


Link to post
Share on other sites

Hi, yeah when i run the airodump command, i just get a black screen. No ascii columns of text, or any other signs of activity at all. The screen keeps refreshing, but there's no output unless i ctrl-c back to the prompt.

Share this post


Link to post
Share on other sites
24 minutes ago, KenSC said:

Hi, yeah when i run the airodump command, i just get a black screen. No ascii columns of text, or any other signs of activity at all. The screen keeps refreshing, but there's no output unless i ctrl-c back to the prompt.

If I were you to save time and effort i would follow the "Firmware recovery" steps and re flash your tetra fresh. It should work without issues.  https://www.wifipineapple.com/pages/faq make sure you download the factory firmware bin file to use for firmware recovery.

Share this post


Link to post
Share on other sites
8 minutes ago, KenSC said:

Firmware recovery doesn't seem to change anything in the behaviour

its working on mine, so what is difference I wonder? Running a recon drops wlan1 into wlanmon and performs the scan. wlan1 remains in wlan1mon state after that until stopped so all i do is fire up a terminal and run airodump-ng -i wlan1mon etc... 

What do you see with "ifconfig -a"?

Edited by Just_a_User

Share this post


Link to post
Share on other sites
root@Pineapple:~# ifconfig -a
br-lan    Link encap:Ethernet  HWaddr 00:13:37:A6:6F:7B
          inet addr:172.16.42.1  Bcast:172.16.42.255  Mask:255.255.255.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:50 errors:0 dropped:0 overruns:0 frame:0
          TX packets:531856 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:4980 (4.8 KiB)  TX bytes:22338252 (21.3 MiB)

eth0      Link encap:Ethernet  HWaddr 00:13:37:A6:6F:7D
          UP BROADCAST MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:0 (0.0 B)  TX bytes:0 (0.0 B)
          Interrupt:5

eth1      Link encap:Ethernet  HWaddr 00:13:37:A6:6F:7B
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:540886 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:0 (0.0 B)  TX bytes:22753372 (21.6 MiB)
          Interrupt:4

lo        Link encap:Local Loopback
          inet addr:127.0.0.1  Mask:255.0.0.0
          UP LOOPBACK RUNNING  MTU:65536  Metric:1
          RX packets:362291 errors:0 dropped:0 overruns:0 frame:0
          TX packets:362291 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:29464146 (28.0 MiB)  TX bytes:29464146 (28.0 MiB)

wlan0     Link encap:Ethernet  HWaddr 00:13:37:A6:6F:7B
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:494319 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:0 (0.0 B)  TX bytes:29692112 (28.3 MiB)

wlan0-1   Link encap:Ethernet  HWaddr 02:13:37:A6:6F:7B
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:494320 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:0 (0.0 B)  TX bytes:29692176 (28.3 MiB)

wlan1mon  Link encap:UNSPEC  HWaddr 00-13-37-A6-6F-7C-00-44-00-00-00-00-00-00-00-00
          UP BROADCAST NOTRAILERS RUNNING PROMISC ALLMULTI  MTU:1500  Metric:1
          RX packets:101538780 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:26698538045 (24.8 GiB)  TX bytes:0 (0.0 B)

root@Pineapple:~#

 

Share this post


Link to post
Share on other sites

nothing out of the ordinary, I don't need to kill any process and mine runs fine.

If you run "airodump-ng" on its own what version is it?

As an afterthought, try

opkg update && opkg install horst && horst -i wlan1mon

Edited by Just_a_User

Share this post


Link to post
Share on other sites

root@Pineapple:~# airodump-ng

  Airodump-ng 1.2 rc4 - (C) 2006-2015 Thomas d'Otreppe

then running your commands:

root@Pineapple:~# opkg update && opkg install horst && horst -i wlan1mon
Downloading https://www.wifipineapple.com/nano/packages/Packages.gz.
Downloading https://downloads.openwrt.org/chaos_calmer/15.05/ar71xx/generic/packages/base/Packages.gz.
Downloading https://downloads.openwrt.org/chaos_calmer/15.05/ar71xx/generic/packages/packages/Packages.gz.
Downloading https://downloads.openwrt.org/chaos_calmer/15.05/ar71xx/generic/packages/management/Packages.gz.
Downloading https://downloads.openwrt.org/chaos_calmer/15.05/ar71xx/generic/packages/routing/Packages.gz.
Collected errors:
 * opkg_download: Failed to download https://www.wifipineapple.com/nano/packages/Packages.gz, wget returned 4.
 * opkg_download: Failed to download https://downloads.openwrt.org/chaos_calmer/15.05/ar71xx/generic/packages/base/Packages.gz, wget returned 4.
 * opkg_download: Failed to download https://downloads.openwrt.org/chaos_calmer/15.05/ar71xx/generic/packages/packages/Packages.gz, wget returned 4.
 * opkg_download: Failed to download https://downloads.openwrt.org/chaos_calmer/15.05/ar71xx/generic/packages/management/Packages.gz, wget returned 4.
 * opkg_download: Failed to download https://downloads.openwrt.org/chaos_calmer/15.05/ar71xx/generic/packages/routing/Packages.gz, wget returned 4.

 

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.

×