1121aircrack-2.41

所属分类:其他
开发工具:Unix_Linux
文件大小:2071KB
下载次数:4699
上传日期:2006-10-27 15:18:21
上 传 者zdwdmail
说明:  用于wfi无线密码的破解,在linux或WINDOWS下,最好不要用intel的无线网卡
(wfi wireless password for the break in linux or windows, best not to use intel wireless card)

文件列表:
aircrack-2.41 (0, 2006-02-16)
aircrack-2.41\airmon.sh (8726, 2005-12-16)
aircrack-2.41\ChangeLog (10731, 2005-12-16)
aircrack-2.41\linux (0, 2006-02-16)
aircrack-2.41\linux\aircrack.c (76032, 2005-12-16)
aircrack-2.41\linux\airdecap.c (35106, 2005-12-16)
aircrack-2.41\linux\aireplay.c (74117, 2005-12-16)
aircrack-2.41\linux\airodump.c (51389, 2005-12-16)
aircrack-2.41\linux\arpforge.c (5529, 2005-12-16)
aircrack-2.41\linux\crctable.h (10013, 2005-12-16)
aircrack-2.41\linux\crypto.c (30210, 2005-12-16)
aircrack-2.41\linux\crypto.h (1471, 2005-12-16)
aircrack-2.41\linux\kismet.conf~ (13670, 2005-12-16)
aircrack-2.41\linux\mergeivs.c (1402, 2005-12-16)
aircrack-2.41\linux\patch (0, 2006-02-16)
aircrack-2.41\linux\patch\hostap-driver-0.3.9.patch (6417, 2005-12-16)
aircrack-2.41\linux\patch\madwifi-cvs-20051025.patch (4693, 2005-12-16)
aircrack-2.41\linux\patch\prism54-svn-20050724.patch (459, 2005-12-16)
aircrack-2.41\linux\patch\rtl8180-0.21.patch (3009, 2005-12-16)
aircrack-2.41\linux\patch\wlanng-0.2.1-pre26.patch (10831, 2005-12-16)
aircrack-2.41\linux\pcap.h (1037, 2005-12-16)
aircrack-2.41\linux\pcap2ivs.c (4205, 2005-12-16)
aircrack-2.41\linux\sha1-mmx.S (12873, 2005-12-16)
aircrack-2.41\linux\uniqueiv.c (4044, 2005-12-16)
aircrack-2.41\Makefile (1429, 2005-12-16)
aircrack-2.41\test (0, 2006-02-16)
aircrack-2.41\test\kstats.c (9938, 2005-12-16)
aircrack-2.41\test\Makefile (82, 2005-12-16)
aircrack-2.41\test\makeivs.c (1938, 2005-12-16)
aircrack-2.41\test\password.lst (16138, 2005-12-16)
aircrack-2.41\win32 (0, 2006-02-16)
aircrack-2.41\win32\aircrack.exe (80592, 2005-12-16)
aircrack-2.41\win32\airdecap (0, 2006-02-16)
aircrack-2.41\win32\airdecap.exe (81920, 2005-12-16)
aircrack-2.41\win32\airdecap\airdecap.c (33533, 2005-12-16)
aircrack-2.41\win32\airdecap\airdecap.dsp (4734, 2005-12-16)
aircrack-2.41\win32\airdecap\airdecap.dsw (541, 2005-12-16)
aircrack-2.41\win32\airdecap\airdecap.ico (766, 2005-12-16)
... ...

aircrack documentation ------------------------------------------------------------------------------- What is aircrack ? aircrack is a set of tools for auditing wireless networks: + airodump: 802.11 packet capture program + aireplay: 802.11 packet injection program + aircrack: static WEP and WPA-PSK key cracker + airdecap: decrypts WEP/WPA capture files This document has been translated in spanish language (thanks to ShaKarO). Is there an aircrack discussion forum ? Sure: http://100h.org/forums/. Also, check out #aircrack on irc.freenode.net Where to download aircrack ? The official download location is http://www.cr0.net:8040/code/network/. However, if you can't access port 8040 for some reason, you may use this mirror instead: http://100h.org/wlan/aircrack/. Aircrack is included in the Troppix LiveCD, which features { Prism2 / PrismGT / Realtek / Atheros / Ralink } drivers patched for packet injection, as well as the acx100, ipw2200 (Centrino) and zd1211 drivers. It says "cygwin1.dll not found" when I start aircrack.exe. You can download this library from: http://100h.org/wlan/aircrack/. To use aircrack, drag&drop your .cap or .ivs capture file(s) over aircrack.exe. If you want to pass options to the program you'll have to start a shell (cmd.exe) and manually type the command line; there is also a GUI for aircrack, developed by hexanium. Example: C:\TEMP> aircrack.exe -n *** -f 8 out1.cap out2.cap ... See below for a list of options. How do I crack a static WEP key ? The basic idea is to capture as much encrypted traffic as possible using airodump. Each WEP data packet has an associated 3-byte Initialization Vector (IV): after a sufficient number of data packets have been collected, run aircrack on the resulting capture file. aircrack will then perform a set of statistical attacks developped by a talented hacker named KoreK. How do I know my WEP key is correct ? There are two authentication modes for WEP: + Open-System Authentication: this is the default mode. All clients are accepted by the AP, and the key is never checked: association is always granted. However if your key is incorrect you won't be able to receive or send packets (because decryption will fail), so DHCP, ping etc. will timeout. + Shared-Key Authentication: the client has to encrypt a challenge before association is granted by the AP. This mode is flawed and leads to keystream recovery, so it's never enabled by default. In summary, just because you seem to have successfully connected to the access point doesn't mean your WEP key is correct ! To check your WEP key, try to decrypt a capture file with the airdecap program. How many IVs are required to crack WEP ? WEP cracking is not an exact science. The number of required IVs depends on the WEP key length, and it also depends on your luck. Usually, 40-bit WEP can be cracked with 300.000 IVs, and 104-bit WEP can be cracked with 1.000.000 IVs; if you're out of luck you may need two million IVs, or more. There's no way to know the WEP key length: this information is kept hidden and never announced, either in management or data packets; as a consequence, airodump can not report the WEP key length. Thus, it is recommended to run aircrack twice: when you have 250.000 IVs, start aircrack with "-n ***" to crack 40-bit WEP. Then if the key isn't found, restart aircrack (without the -n option) to crack 104-bit WEP. I can't seem to capture any IVs ! Possible reasons: + You are standing too far from the access point. + There is no traffic on the target wireless network. + There is some G traffic but you're capturing in B mode. + Something is wrong with your card (firmware problem ?) By the way, beacons are just unencrypted announcement packets. They're totally useless for WEP cracking. I've been unable to crack this AP ! Shit happens. Why is there no Windows version of aireplay ? The PEEK driver doesn't support 802.11 packet injection; I will not port aireplay on Win32. However, there are commercial alternatives: Prism cards: http://www.tuca-software.com/transmit.php Atheros cards: http://www.tamos.com/htmlhelp/commwifi/pgen.htm Is my card compatible with airodump / aireplay ? First of all, search Google to find which chipset your card has. For example, if you have a Linksys WPC54G search for "wpc54g chipset linux". +----------------------------------------------------------------------+ | | Supported by | Supported by | Supported by | | Chipset | airodump for | airodump for Linux | aireplay for | | | Windows ? | ? | Linux ? | |-------------+-------------------+--------------------+---------------| | | YES (Agere driver | YES (patched | NO (firmware | | HermesI | ) | orinoco driver) | corrupts the | | | | | MAC header) | |-------------+-------------------+--------------------+---------------| | | | YES (HostAP or | YES (PCI and | | | NO, but see | wlan-ng driver), | CardBus only, | | Prism2/3 | LinkFerret for an | STA firmware 1.5.6 | driver | | | alternative | or newer required | patching | | | | | required) | |-------------+-------------------+--------------------+---------------| | | | FullMAC: YES ( | YES (driver | | PrismGT | YES (PrismGT | prism54 driver, | patching | | | driver) | SoftMAC: NOT YET ( | recommended) | | | | prism54usb) | | |-------------+-------------------+--------------------+---------------| | | CardBus: YES ( | | | | | Atheros driver), | YES (PCI and | YES (driver | | Atheros | PCI: NO (see | CardBus only, | patching | | | CommView WiFi | madwifi driver) | required) | | | instead) | | | |-------------+-------------------+--------------------+---------------| | | | YES ( | UNSTABLE | | RTL8180 | YES (Realtek | rtl8180-sa2400 | (driver | | | driver) | driver) | patching | | | | | required) | |-------------+-------------------+--------------------+---------------| | | YES? (Cisco | YES (airo driver, | NO (firmware | | Aironet | driver) | firmware 4.25.30 | issue) | | | | recommended) | | |-------------+-------------------+--------------------+---------------| | | | YES (rt2500 / | YES (driver | | Ralink | NO | rt2570 driver) | patching | | | | | required) | |-------------+-------------------+--------------------+---------------| | | | PARTIAL: the | | | Centrino b | NO | ipw2100 driver | NO | | | | doesn't discard | | | | | corrupted packets | | |-------------+-------------------+--------------------+---------------| | Centrino b/ | | YES (ipw2200 | NO (firmware | | g | NO | driver, 1.0.6 | drops | | | | recommended) | packets) | |-------------+-------------------+--------------------+---------------| | | Old models only ( | NOT YET (bcm43xx | | | Broadcom | BRCM driver) | driver, Linux >= | NO | | | | 2.6.14 required) | | |-------------+-------------------+--------------------+---------------| | TI (ACX100 | NO | UNTESTED (acx100 | NO | | / ACX111) | | driver) | | |-------------+-------------------+--------------------+---------------| | ZyDAS 1201 | NO | YES (zd1211 driver | NO | | | | ) | | |-------------+-------------------+--------------------+---------------| | Others | NO | UNKNOWN | NO | | (Marvel...) | | | | +----------------------------------------------------------------------+ The PEEK driver does not recognize my card. Some cards are not recognized by the Windows drivers above, even though they have the correct chipset. In this case, open the hardware manager, select your card, "Update the driver", select "Install from a specific location", select "Don't search, I will choose the driver to install", click "Have disk", set the path to where the driver has been unzipped, uncheck "Show compatible hardware", and finally choose the driver. I have a Prism2 card, but airodump / aireplay doesn't seem to work ! First step, make sure you aren't using the orinoco driver. If the interface name is wlan0, then the driver is HostAP or wlan-ng. However if the interface name is eth0 or eth1, then the driver is orinoco and you must disable the driver (use cardctl ident to know you card identifier, then edit /etc/pcmcia/config, replace orinoco_cs with hostap_cs and restart cardmgr). Also, it can be a firmware problem. Old firmwares have trouble with test mode 0x0A (used by the HostAP / wlan-ng injection patches), so make sure yours is up to date -- see below for instructions. The recommended station firmware version is 1.7.4. If it doesn't work well (kismet or airodump stalls after capturing a couple of packets), try STA 1.5.6 instead (either s1010506.hex for old Prism2 cards, or sf010506.hex for newer ones). On a side note, test mode 0x0A is somewhat unstable with wlan-ng. If the card seems stuck, you will have to reset it, or use HostAP instead. Injection is currently broken on Prism2 USB devices w/ wlan-ng. Note: a Windows XP driver for Prism2 cards with WPA/TKIP support can be found here: http://100h.org/wlan/winxp/wpc11v3.0_wpa_dr.exe. I have an Atheros card, and the madwifi patch crashes the kernel / aireplay keeps saying enhanced RTC support isn't available. There are quite a few problems with some versions of the Linux 2.6 branch (especially before 2.6.11 was released) that will cause a kernel panic when injecting with madwifi. Also, on many 2.6 kernels enhanced RTC support is just broken. Thus, is it highly recommended to use either Linux 2.6.11.x or newer. How do I update my Prism2 firmware ? The simplest is to upgrade the firmware with WinUpdate - this requires to have the WPC11 driver v2.5 installed. Both can be found at: http://100h.org /wlan/linux/prism2/. You may also update the firmware with patched HostAP (see below for instructions on how to patch and install HostAP). Alternatively, you may boot the Troppix Live CD (which already has a patched hostap driver and the prism2_srec utility). Now that HostAP is loaded, you can check your firmware's primary and station version with this command: # dmesg | grep wifi hostap_cs: Registered netdevice wifi0 wifi0: NIC: id=0x800c v1.0.0 wifi0: PRI: id=0x15 v1.1.1 (primary firmware is 1.1.1) wifi0: STA: id=0x1f v1.7.4 (station firmware is 1.7.4) wifi0: registered netdevice wlan0 If the NIC id above is between 0x8002 and 0x8008, you have an old Prism2 and MUST use STA firmware version 1.5.6 (s1010506.hex). Otherwise, you should use PRI 1.1.1 / STA 1.7.4 which is the most stable firmware version for newer Prism2 cards. Do NOT use firmware 1.7.1 or 1.8.x, people have reported having trouble with them. To update the firmware, you'll need prism2_srec from the hostap-utils package; if it's not present on your system, download and compile hostap-utils: wget http://100h.org/wlan/linux/prism2/hostap-utils-0.4.0.tar.gz tar -xvzf hostap-utils-0.4.0.tar.gz cd hostap-utils-0.4.0 make Some Prism2 cards have been restricted to a certain set of channels because of country regulation. You can activate all 14 channels with the following commands: ./prism2_srec wlan0 -D > pda; cp pda pda.bak Edit pda and put 3FFF at offset 0104 (line 24) Finally, download the firmware and flash your card. If the NIC id is between 0x8002 and 0x8008: wget http://100h.org/wlan/linux/prism2/s1010506.hex ./prism2_srec -v -f wlan0 s1010506.hex -P pda Otherwise: wget http://100h.org/wlan/linux/prism2/pk010101.hex wget http://100h.org/wlan/linux/prism2/sf010704.hex ./prism2_srec -v -f wlan0 pk010101.hex sf010704.hex -P pda If you get the message "ioctl[PRISM2_IOCTL_HOSTAPD]: Operation not supported", the HostAP driver is not loaded and you must install it. If you get the message "ioctl[PRISM2_IOCTL_DOWNLOAD]: Operation not supported", then your HostAP driver has not been patched for non-volatile download support. Which is the best card to buy ? The best chipset nowadays is Atheros; it is very well supported under Linux, and also under Windows (PCMCIA/CardBus only). The latest madwifi patch makes it possible to inject raw 802.11 packets either in Managed and Monitor mode at arbitrary b/g speeds. Ralink makes some nice b/g chipsets, and has been very cooperative with the open-source community to release GPL drivers. Packet injection is now fully supported under Linux on PCI/CardBus RT2500 cards, and also works on USB RT2570 devices. Here's a list of recommended cards: +----------------------------------------------------------------------+ | Card | Type | Chipset | Antenna | Price | Windows | Linux | | name | | | | | support | support | |----------+---------+---------+----------+-------+----------+---------| | MSI | PCI | Ralink | RP-SMA | E30 | No | Yes | | PC54G2 | | | | | | | |----------+---------+---------+----------+-------+----------+---------| | MSI | CardBus | Ralink | Internal | E30 | No | Yes | | CB54G2 | | | | | | | |----------+---------+---------+----------+-------+----------+---------| | Linksys | | | | | | | | WMP54G | PCI | Ralink | RP-SMA | E40 | No | Yes | | v4 | | | | | | | |----------+---------+---------+----------+-------+----------+---------| | Linksys | | | | | | | | WUSB54G | USB | Ralink | Internal | E40 | No | Yes | | v4 | | | | | | | |----------+---------+---------+----------+-------+----------+---------| | D-Link | USB | Ralink | Internal | E45 | No | Yes | | DWL-G122 | | | | | | | |----------+---------+---------+----------+-------+----------+---------| | Netgear | USB | PrismGT | Internal | E40 | airodump | No | | WG111 | | SoftMAC | | | | | |----------+---------+---------+----------+-------+----------+---------| | Netgear | PCI | Atheros | RP-SMA | E50 | CommView | Yes | | WG311T | | | | | WiFi | | |----------+---------+---------+----------+-------+----------+---------| | Netgear | CardBus | Atheros | Internal | E50 | airodump | Yes | | WG511T | | | | | | | |----------+---------+---------+----------+-------+----------+---------| | Netgear | CardBus | Atheros | Internal | E100 | airodump | Yes | | WAG511 | | | | | | | |----------+---------+---------+----------+-------+----------+---------| | Proxim | CardBus | Atheros | MC + | E110 | airodump | Yes | | 8470-WD | | | Int. | | | | +----------------------------------------------------------------------+ Note: there are some cheaper models with a similar name (WG511, WG311 and DWL-G520+); those cards are not Atheros-based. Also, the Peek driver does not support recent Atheros cards, so you'll have to use CommView WiFi instead. How do I use airodump for Windows ? First of all, make sure that your card is compatible (see table above) and that you have installed the proper driver. When running airodump, you should specify: + The network interface index number, which must be picked in the list displayed by airodump. + The network interface type ('o' for HermesI and Realtek, 'a' for Aironet, Atheros, Broadcom and PrismGT). + The channel number, between 1 and 14. You can also specify 0 to hop between all channels. + The output prefix. For example, if the prefix is "foo", then airodump will create foo.cap (captured packets) and foo.txt (CSV statistics). If foo.cap already exists, airodump will resume the capture session by appending the packets to it. + The "only IVs" flag. Specify 1 if you just want to save the IVs from WEP data packets. This saves space, but the resulting file (foo.ivs) will only be useful for WEP cracking. To stop capturing packets, press Ctrl-C. You may get a blue screen, this is due to a bug in the PEEK driver not cleanly exiting monitor mode. Also, the capture file may be empty. The cause of this bug is unknown. Why can't I compile airodump and aireplay on BSD / Mac OS X ? Both airodump and aireplay sources are linux-specific. There are no plans to port them on any other operating system. How do I use airodump for Linux ? Before running airodump, you may start the airmon.sh script to list the detected wireless interfaces. It is possible, but not recommended, to run Kismet and airodump at the same time. usage: airodump [channel] [IVs flag] Specify 0 as the channel to hop between 2.4 GHz channels. S ... ...

近期下载者

相关文件


收藏者