Search:

Type: Posts; User: vertigo; Keyword(s):

Search: Search took 0.00 seconds.

  1. Replies
    4
    Views
    4,121

    For WPA-PSK cracking needs 4-way hanshake...

    For WPA-PSK cracking needs 4-way hanshake capture. IVS pertains to WEP cracking. Don't miss these two things.
  2. Replies
    1
    Views
    4,813

    WPA TKIP RC4 keystream discovery attack Part.2

    Run TKIP keystream discovery attack:
    root@bt:~# tkiptun-ng -a 00:18:39:D3:FB:A0 -h 00:1E:65:F8:BA:A8 -m 80 -n 100 wlan0
    Blub 2:38 E6 38 1C 24 15 1C CF
    Blub 1:17 DD 0D 69 1D C3 1F EE
    Blub 3:29 31...
  3. Replies
    0
    Views
    4,864

    WPA TKIP RC4 keystream discovery attack Part.1

    Victim:
    Model: HP 6310b
    CPU: Intel(R) Core(TM) Duo CPU P8700 2.53GHz
    Memory: 4GB
    OS: Windows 7
    Wireless Interface: Intel(R) WiFi Link 5100 AGN
    WiFi security:WPA2/WPA-Enterprise with...
  4. Replies
    26
    Views
    5,787

    From my expierence if PWR level is less than 22...

    From my expierence if PWR level is less than 22 in airodump-ng, DeAuthentication doesn't work and WPA/WPA2 handshake couln't be done between victim and WAP. Use more powerfull card as Alfa card or...
  5. Replies
    46
    Views
    20,387

    Described attack works only with one essential...

    Described attack works only with one essential restriction: WAP and wireless client doesn't "see" each other:

    "An access point and a client cannot be communicated directly since the
    interval...
  6. Replies
    4
    Views
    4,257

    It' s seems that You have problems with...

    It' s seems that You have problems with configuration or adapter. In my test lab airedecap-ng from BT3F runs nicely, all packets can be decrypted: WPA1, WPA2 authentication with TKIP or CCMP data...
  7. Replies
    1
    Views
    1,773

    Ralink wireless driver vulnerability

    Secunia and Heise have written about this vuln. Anybody know more about subj. ?
  8. Replies
    9
    Views
    3,253

    From my expierence, run to airodump-ng and look...

    From my expierence, run to airodump-ng and look on PWR level interface performing deauth operations, if level is less than 23 dB, handshake capture would be impossible, use more powerfull card as...
  9. Discussioni: Cafe Latte Hack

    by vertigo
    Replies
    30
    Views
    10,258

    Yes, I have performed cafe-latte attack against...

    Yes, I have performed cafe-latte attack against ska wep +dhcp ip client configuration ( WinXP sp3 wireless supplicant) successfully and crack wep key after 21 min using airbase-ng -c 6 -e cuckoo -L...
  10. Discussioni: Cafe Latte Hack

    by vertigo
    Replies
    30
    Views
    10,258

    I wil try to run cafe-latte attacks with...

    I wil try to run cafe-latte attacks with aireply-ng -6 and airbase-ng -L commands today...according cafe-latte attack researcers from Airtight, most fastest attacks are in SKA wep and DHCP client ip...
  11. Replies
    1
    Views
    1,159

    AWUS036H card and wpa_supplicant

    How to enforce AWUS036H high power usb card to run wpa_supplicant(wpa-psk), for example, from BT3?:confused:
  12. Replies
    46
    Views
    20,387

    Battered but not smashed

    I will say, that word sequence "Crack WPA" is very loudly...

    This is a TKIP flaw... and Tews-Becker attack is based on old fashioned Korek's chopchop inductive packet guess idea. Idea is realized...
  13. Replies
    16
    Views
    15,879

    tkiptun-ng

    Please, read carefully aircrack-ng doku note in site:

    "NOTE: The tkiptun-ng SVN version is not fully working. A working version will be released shortly. ""
Results 1 to 13 of 13