Wireless(broadcom)/driver Issues...help :)
Hi,
Firstly, pretty much new to linux...so will try my best to explain my steps and see if you guys know what im talking about :lol: The reason im wanting to use BackTrack is basically to test my wep key (and see if i can get in)...if so...i would also like to do some testing in my work - might mean i get a better job (i hope haha) Ok, I managed to get BackTrack installed on my usb drive with an app called MySlax http://myslax.bonsonno.org/ Boots up pretty quickly too...thought it would take a while. I tried a quick scan, but dont think my wireless card in the HP NX6325 is working correctly...seen people saying that they purchased a card specially for doing this. The following where mentioned: http://www.proxim.com/products/cp/pc.html (+Cheap +802.11b/g +external aerial can be added if you want) http://www.dealtime.co.uk/xPO-Cisco-...T-ANT-FCC-CNFG ( -Expensive +High Sensitivity) http://www.broadbandbuyer.co.uk/Shop...?ProductID=711 (+Cheap +Best all rounder) Said best to get a card with the Atheros chipset? When checking the spec for the my laptop card, it only comes up with the following: Wireless technologies Broadcom 802.11a/b/g, Bluetooth http://h10010.www1.hp.com/wwpc/uk/en...&lang=en&cc=uk I found a post which a guy asked somebody to use the following command: lspci -v 02:02.0 Network Controller: Broadcom Corp BCM4318 [AirForce One 54g] 802.11g Wireless LAN Controller (rev 02) Subsystem: Hewlett-Packard Company: Unknow device 1356 Flags: Bus master, fast desel, latency 64, IRQ 5 Memory at d00100000 (32-bit, non-prefetchable] [size=8k] I have been seen a few posts talking about "Ndiswrapper" to install the broadcom driver...but im not too sure how to get this going with backtrack on my usb drive. Can i not add the drivers to BackTrack via MySlax then put in on my USB drive? The HP site only seems to have Win drivers...tried google and foudn nothing. BUT i did find two files bcmwl5.inf bcmwl564.sys from the following post: http://www.linuxquestions.org/questi...errerid=195877 The guy is using "ndiswrapper"...which i read is only any use for basic connectivity. If you need to use monitor mode, etc, then it's not a good solution? Is this correct? I also found the madwifi-0.9.2.1 driver...but dont think this is any use for me. (i think?) Any points on where im going wrong? Or are there too many to mention :D Thanks in advance! |
Quote:
The driver worked quite well a couple of kernel versions ago (2.6.17.*), but seems to be broken in 2.6.19. |
Just to make sure all things are covered... Did you enable the interface? Backtrack boots with no interfaces enabled, unlike most other live distros.
I think backtrack has broadcom drivers already, but I can't remember for sure. Use the lsmod command to see what drivers are loaded. It probably starts with bcm. lspci tells us your card is recognized, so see if the driver is loaded. Also, which backtrack are you using? A stable or beta version? And just my opinion... wep vulnerabilities are well documented and there is no need to test a key. It can be cracked. If you're just trying to convince your boss, get permission in writing. If you're just trying to get into an encrypted wireless network, don't. In either case, it probably won't get you a promotion. |
Firstly, thank you both for replying!
Quote:
Will let you know how i get on! Although, i made some progress last night on a friends laptop...will post up my results. Quote:
But enough about how crap my job is hahaha...when i was at my friends house, he recently purchased a new Acer Aspire (AMD Dualcore, under 500!!!) I entered the "iwconfig" command and found ath0 along with lo, eth0 + wifi0. Nice! ath0 i read was the best? When trying to use airodump: airodump-ng --write out --ivs --abg ath0 It wasnt working, i then found out in another forum, i had to put the card into monitor mode(this is when i found out i screwed up the test on my laptop)...this wasnt working. I then found the following command: wlanconfig ath1 create wlandev wifi0 wlanmode monitor ath1 (im almost 100% sure this is correct, cant find the post with i got this from and im currently in work...will post up the proper one if any different tonight-sorry) BUT this seemed to work, after hitting enter, i was given ath1 in a blank line. I then used airodump-ng --write out --ivs --abg ath1 But keep getting Unreconized option --abg When i take out --abg it works, i managed to pick up some access points...so wrote down the BSSID + Channel number. I hit Ctrl C airodump-ng --channel 11 --write out --ivs ath1 Brings up a window, but nothing was coming up... Is this because im taking out the --abg (i know that its to search the a,b + g bands) but im not getting whats displayed at http://www.i-hacked.com/content/view/231/42/ Click here to see what i should get: http://www.i-hacked.com/images/stori...rodump-ng2.jpg Any suggestions? Thanks in advance guys :) |
Not to steal your thread fracmo but Im having similiar problems although with different hardware. I just have one question to ask for help with that is along the same lines, it might even help solve yours.
My distro (PCLinuxOS) comes with ndiswrapper and I entered the lsmod command and on the list there were two drivers for prism2 usb devices. The device Im trying to use is a D-Link DWL-G122 which I read is prism 2 based. When I open Wireless Assistant or Wireless Network on my distro both cant find the device. Where did I screw up? |
fracmo
As far as putting the wireless into monitor mode I use: Code:
ifconfig wlan0 up The abg options are mutually exclusive, they tell airodump to scan only in 2.4GHz or 5GHz. You can't tell it to scan in 2.4 only and 5 only. B and G can be combined. At least that's what I gather from the man page - not 100% sure. Quote:
Code:
airodump-ng -w out c- 0 --ivs ath0 |
Quote:
Yeah, i tried the above (using ath0 instead)...but it didnt work, i read somewhere to use madwifi drivers i must create an interface using: wlanconfig ath1 create wlandev wifi0 wlanmode monitor BUT, im only going with what worked with some other guy with a similar problem. When doing this, it does appear to work. Quote:
Quote:
Cheers for the advice...wish me luck :study: |
The -ivs switch will save only unique packets. This is useful if you just want to crack the key.
Without it enabled, it will capture everything. You can then decrypt your out file using Air Decap once you get the key. It can then be opened with a tool like ethereal to examine all the traffic. Also, I have no experience using atheros cards. I believe they can use the packet injection with Aireplay and speed up the process. It will take some time to gather enough packets without it (unless there is ton of wireless traffic). |
ryan
I haven't tried any usb wireless adapters. From what I've read, a lot of people have problems. Drivers for specific chipsets sometimes work with only one type of hardware interface (typically pci, pcmcia, usb). Fortunately, the prism2 chipset is widely supported and you may have luck. If you haven't already, post your question with hardware info in the wireless networking forum. It will get a lot more views that way. |
All times are GMT -5. The time now is 07:11 PM. |