I bet he's trying to use a 4to6 tunnel service. I'm trying to enable the IPv6 stack to do some link local scanning from BT but I can't get it to work.

@TS: Did you enable the v6 stack and if so,...

First and foremost, have asked for permission to exhaust all the addresses in the "wifi somewhere"? The way you phrase yourself doesn't seem legitimate at all. This is essentially a denial-of-service...

Try running netstat -napt in BT4 for more information. It will show what process created the connection. I'm guessing it's ntp. ntp.ubuntu.com resolves to 91.189.94.41.

There's been so many of these questions. Look here: http://www.backtrack-linux.org/forums/backtrack-howtos/68-password-cracking-guide.html

Flush your victim computer's DNS cache.

To mitigate this kind of trace, one needs to add a rule to drop egress ICMP TTL expired messages. Correct?

But how does it work?

Edit: Nvm. Fired up Wireshark and looked it up. It's just as a regular traceroute but with TCP it seems. :)

I'm running it in a VM right now. I think that the .34 kernel has been introduced in BT4 R1 btw.

I can't comprehend how SSLstrip works. Is there any SSL connection at all in this scenario? Is all traffic from the client going to dst port 443 redirected to dst port 80 by the attacker? Maybe it's...

Fair enough!

I scoured the net for a good Swedish word list and found all to be inadequate. Hence, I've created a script that formatted Göran Andersson's "Den stora svenska ordlistan" so it could be used for...

Try to penetrate and exploit the services on live cd's such as De-ice, Metasploitable and others. I'm sure that you will find a few after a search or two. Tutorials exists on this forum as how to...

No confusion. I just didn't know which chipset AWUS036NH was using. I suspected it to be RTL8187B but I stand corrected!

Realtek RTL8187L Chipset Comments

Cards containing the Realtek RTL8187L chipset work quite well and is recommended. The driver patch for this chipset has been continuously improved and quite good...

Wow, hehe. Ok, now I'm less confused. Thank you for clearing that up Snayler. I thought wireshark using promiscuous was all that was needed. I didn't know monitor mode and promiscuous was two...

Ok! So each wireless client has it's own key for recieving/transmitting data within the WPA2 protected network and without that key intercepting data sent from client to AP (and vice versa) will be...

Thanks for the responses so far. But let's say I'm connected to an encrypted WPA2 network. Should not all plaintext logins from wireless clients in my proximity be available for me to intercept? If I...

I see. Apologies.

I don't know why but the latest compat-wireless doesn't work. Try this one and it shall grant you success:...

I'm trying to listen for passwords with ettercap without using arp poisoning. From what I gather it should be possible to intercept passwords from wireless clients using a wireless network card in...

Works fine after some fixes and workarounds. Not perfect.

In order to use the Geforce G210M card in the machine you have to go into the bios and change the SATA compatibility mode to "enhanced"....

try


macchanger -l | grep "OUI"

;)

Ok folks. It seems I wasn't really clear in my first post. I'm running BT4 from a USB Pendrive and not my SSD due to that BT4 lacks TRIM support (introduced in .34 kernel). Without TRIM the SSD wears...

I got a UL30VT with Intel WiFi Link 1000. Fake auth does not work for me either.

wpa_supplicant workaround works though. It's a bit of a pain though. Would like to see this fixed. Don't know if...

About TRIM: TRIM - Wikipedia, the free encyclopedia

Support was introduced in the 2.6.33 kernel. Without TRIM, none will want to run BT4 on his/hers SSD drive. Right now I have to run it from a...