HackFest Series: Airodumpng

Lisa Kachold lisakachold at obnosis.com
Fri Mar 20 07:34:28 MST 2009


Mike, 

You just admitted on an international board, that you are attempting to steal the private property key of a neighbor.  Can't I tell you how clueless you appear? Your technical skills are starting to get fairly good, so we don't want you to be taken for a long timeout in jail?

I, therefore will not help you to encroach your local neighbors WEP key.  Have you tried walking over and asking the neighbor?  That is generally the best approach, other than going to a coffee shop or sitting outside a hotel in the car running your notebook?  

There is a person attempting to use their accesspoint who you might be affecting?  They work and pay for their equipment?  Are you intelligent or are you another zombie of inanity born of lies?  

I can suggest the verification steps for the process (from your notes) in a lab only format: 

1) Verify that your wireless card IS on the list of those that can be placed into promiscious mode via airodump (although if you get a BSSID, using channel 3, it might appear you are happily promiscious)?

>      airodump-ng -w capture -c 6 wifi0
> using channel (-c) 
> -c 3 gets one BSSID variously flagging in contention with a second channel 3 (contending for channel)
> wait for it to appear again but a different MAC appears. <cntrl-c>
> So  I go on to the next step: I open  a new shell and type
>      aireplay-ng -0 10 -a <MAC> -c <I don't know my MAC>

YOUR mac can be displayed via ifconfig 

> so I try without my MAC... to no avail! on to the next step
>      aireplay-ng -3 -b <MAC> -h
> I don't know what value  to put after the h.
> ARGHHHH.

I can point you to a source for further information (for intellectual purposes only):
http://securitytube.net/AirodumpNG-Basics-(Part-I)-video.aspx

Again, I want to remind you that using BackTrack3/airodumpng and encroaching via a BT3/4 wireless tool is illegal, unethical and can land you in jail whereupon your only "technical tool" will be a very short dull penci
  
I am happy to assist you to learn the ins and outs of technology, practical lab testing, and personal as well as production internet security, but I will not assist you to steal, or hack unethically.

http://www.speedguide.net/read_articles.php?id=2724

Also, I would like to warn you clearly that there are people just hanging out waiting to hack you.  Airodumpng has a boundary condition error that will cause a buffer overflow.  In highly congested areas (Universities or security conventions) using Airodumpng will get YOU HACKED and PWN'd!
http://www.securityfocus.com/bid/23467

If you are not hacking ethically to learn, you are simply a script kiddie, a less evolved criminal and worse.  I will not write to you; you will join the many people who are awarded free ads on the back page of 2600 magazine, writing from jail for pen pals.


Obnosis | (503)754-4452




PLUG Linux Security Labs 2nd Saturday Each Month at Noon - 3PM

> Date: Fri, 20 Mar 2009 06:26:40 +0000
> Subject: Re: rausb0 up
> From: bmike1 at gmail.com
> To: plug-discuss at lists.plug.phoenix.az.us
> 
> youknow.... I am following the instructions given to the best of my
> ability/ (durn tool).
>      airodump-ng -w capture -c 6 wifi0
> and the return line gives the BSSID  PWR... etc... but there is
> nothing under them. So I think that maybe if the channel (-c) is
> changed thaaat will help. That does not help until I get to -c 3 but
> only one BSSID appearsafter 30 seconds.... and then disappears. So I
> wait for it to appear again but a different MAC appears. <cntrl-c>
> So  I go on to the next step: I open  a new shell and type
>      aireplay-ng -0 10 -a <MAC> -c <I don't know my MAC>
> so I try without my MAC... to no avail! on to the next step
>      aireplay-ng -3 -b <MAC> -h
> I don't know what value  to put after the h.
> ARGHHHH.
> I am trying to crack a neighbors password for my sister in law. I use
> sprint broadband but she can't always use my computer. I'm telling you
> this so I don't waste your time if you have a problem with that:D
> 
> On 3/20/09, Lisa Kachold <lisakachold at obnosis.com> wrote:
> >
> > Mike Backtrack is a strange beast.
> >
> > Use the wireless tools in the system menu to start and stop and setup the
> > wireless.
> >
> > Obnosis | (503)754-4452
> >
> >
> >
> >
> > PLUG Linux Security Labs 2nd Saturday Each Month at Noon - 3PM
> > Date: Thu, 19 Mar 2009 13:24:40 -0400
> > Subject: Re: rausb0 up
> > From: bmike1 at gmail.com
> > To: plug-discuss at lists.plug.phoenix.az.us
> >
> > stranger still! This time I went 'ifconfig wifi0 down' and it went down but
> > 'wifi0 up' wouldn't turn it back on.
> >
> > I never learnwd how to verify the checksum. How is it done? I always figured
> > that if it would load everything was good.
> >
> >
> > On Wed, Mar 18, 2009 at 11:00 PM, Lisa Kachold <lisakachold at obnosis.com>
> > wrote:
> >
> >
> >
> >
> >
> >
> > Often with Backtrack3 the iso download gets schnerbed.  So the BT3 disk
> > boots partially on one try and completely on the next.
> >
> > It's incredibly annoying, but with any ISO burn, if it doesn't work
> > consistently, toss the disk, verify the checksum, and rebui;rn!
> >
> >
> > These cards have been tested to work in BT3:
> > http://backtrack.offensive-security.com/index.php?title=HCL:Wireless
> >
> > Find your card and see the recommendations.
> >
> > # dmesg
> > # ifconfig -a
> >
> > You should see your card loaded, and you should see a device.
> >
> > #lspci
> >
> > Generally with BT3, your best bet is going to be using the Wireless tools in
> > the menus, until you determine what is what.
> >
> >
> > Hey also, if you are on a shared wireless network check out the SMB4k - be
> > careful not to get into trouble here.
> >
> > Ethical hackers learn they do not impact the systems they study, (unless
> > paid) and they DO NOT GO TO JAIL!
> >
> >
> > And USE THE SOURCE:  http://backtrack.offensive-security.com/index.php/Tools
> >
> >
> > Obnosis | (503)754-4452
> >
> >
> >
> >
> >
> > PLUG Linux Security Labs 2nd Saturday Each Month at Noon - 3PM
> >
> >
> >
> >
> >
> >
> > Date: Wed, 18 Mar 2009 22:36:03 -0400
> > Subject: rausb0 up
> > From: bmike1 at gmail.com
> > To: PLUG-discuss at lists.plug.phoenix.az.us
> >
> >
> > it is strange. after I had downloaded backtrack3 and fired it up and the
> > distro automaGICALY FOUND THE WIRELESS CARD AND i HAD WEB-ACCESS. the two
> > subsequnt times I loaded it I didn't have web-access and that left me
> > dum-founded. So I looked around and found that 'rausb0 up' is the comand I
> > need to use but linux told me that that wasn't the device name. So please
> > tell me, what is it that is assigned to an internal wireless card. How
> > should I find out if you can't tell me.
> >
> >
> >
> > You know.... I just looked at what I thought the device is called and just
> > realived (DUHHHHH) it isn'r a USB device
> > --
> > :-)~MIKE~(-:
> >
> > Windows Live™ Contacts: Organize your contact list.  Check it out.
> >
> >
> > ---------------------------------------------------
> >
> > PLUG-discuss mailing list - PLUG-discuss at lists.plug.phoenix.az.us
> >
> > To subscribe, unsubscribe, or to change your mail settings:
> >
> > http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
> >
> >
> > --
> > :-)~MIKE~(-:
> >
> > _________________________________________________________________
> > Express your personality in color! Preview and select themes for Hotmail®.
> > http://www.windowslive-hotmail.com/LearnMore/personalize.aspx?ocid=TXT_MSGTX_WL_HM_express_032009#colortheme
> 
> 
> -- 
> :-)~MIKE~(-:
> ---------------------------------------------------
> PLUG-discuss mailing list - PLUG-discuss at lists.plug.phoenix.az.us
> To subscribe, unsubscribe, or to change your mail settings:
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss

_________________________________________________________________
Get quick access to your favorite MSN content with Internet Explorer 8. 
http://ie8.msn.com/microsoft/internet-explorer-8/en-us/ie8.aspx?ocid=B037MSN55C0701A
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.PLUG.phoenix.az.us/pipermail/plug-discuss/attachments/20090320/633bf1db/attachment.htm 


More information about the PLUG-discuss mailing list