Lack of IV's

**Benny87** · 02-22-2009, 11:55 AM

Hi, i'm a total n00b when it comes to BT3, however through various tutorials i've managed to get to the point where i'm collecting IVs.

However after 1hr 40mins all i've managed to collect is 8 IV's from my AP.

Anyone got any idea's what i'm doing wrong or why it's only collected 8 IV's in such a long time.
I'm using IWL3945 chipset patched with IPWRAW using modprobe commands.

Thanks in advance.

**zoso10** · 02-22-2009, 02:59 PM

List the steps you used to get to this point. If you don't use a specific attack to expedite cracking WEP, then it's possible that it will take that long. We should be able to help you with a little more information.

**secure_it** · 02-22-2009, 03:47 PM

Generate some traffic to get more weak IV's

**Citruspers** · 02-22-2009, 11:32 PM

Originally Posted by secure_it

Generate some traffic to get more weak IV's

Perform a fragmentation attack with one of the 8 packets you have, generate an ARP with packetforge-ng, inject the arp with aireplay. Depending on your card, you will get 100-1000 IV's per second

Check out the various tutorials around here for more info

**killadaninja** · 02-23-2009, 12:28 AM

Originally Posted by Benny87

Hi, i'm a total n00b when it comes to BT3, however through various tutorials i've managed to get to the point where i'm collecting IVs.

However after 1hr 40mins all i've managed to collect is 8 IV's from my AP.

Anyone got any idea's what i'm doing wrong or why it's only collected 8 IV's in such a long time.
I'm using IWL3945 chipset patched with IPWRAW using modprobe commands.

Thanks in advance.

Whats the pwr rating?
Is a client connected?

**Benny87** · 02-23-2009, 09:08 PM

Originally Posted by zoso10

List the steps you used to get to this point. If you don't use a specific attack to expedite cracking WEP, then it's possible that it will take that long. We should be able to help you with a little more information.

here is the full list of commands i've used in the exact order that i do them:

airmon-ng
airmon-ng stop wlan0
ifconfig wlan0 down
macchanger --mac 00:11:22:33:44:55 wlan0
modprobe -r iwl3945
modprobe ipwraw
airmon-ng start wlan0
airodump-ng wifi0
CTRL+C
airodump-ng -c (channel) -w (filename) --bssid(bssid)
New Shell
aireplay-ng -1 0 -a (bssid) -h 00:11:22:33:44:55 -e (essid) wifi0
aireplay-ng -3 -b (bssid) -h 00:11:22:33:44:55 wifi0
New Terminal
aircrack-ng -n 64 -b (bssid) (filename).cap

Originally Posted by killadaninja

Whats the pwr rating?
Is a client connected?

the power rating shows zero i would post a picture of what i get but as i'm a new member i can't post links yet
However the image is hosted on photobucket, if you search BSG1987 you should the images its the one titled BT3 Snapshot.

Originally Posted by secure_it

Generate some traffic to get more weak IV's

At the time i tried the attack i had three laptops running youtube and other various websites, etc. I don't know how to ping traffic others i would have tried that.

Thanks again for your time and help.

Benny87

**Citruspers** · 02-24-2009, 07:21 PM

My bet is that you have not yet caught an ARP packet, which aireplay-ng -3 uses to generate traffic. I assume the output of aireplay-ng is something like "Read 3000 packets"?

**killadaninja** · 02-24-2009, 07:21 PM

Try Spoonwep, you are of coarse using BT3 final?, Airmon-ng wifi0 should load the drivers no problem.

BackTrack Linux - Penetration Testing Distribution

Thread: Lack of IV's

Thread Tools

Search Thread

Display

Lack of IV's

Lack of IV's

Posting Permissions