Results 1 to 10 of 10

Thread: need help with aireplay-ng and iwl4965

  1. #1
    Junior Member
    Join Date
    Feb 2010
    Location
    On Planet Earth
    Posts
    29

    Exclamation need help with aireplay-ng and iwl4965

    i have BT4, and I can easily set the monitor mode to the wlan0
    Code:
    airmon-ng start wlan0
    and it says it is now available monitor mode on mon0
    so i use mon0

    i wanna make test to to my Router
    its BSSID is exported to AP
    and my mac address is exported to WIFI

    i try
    Code:
    airodump-ng -c 10 -w test --bssid $AP mon0
    and
    Code:
    aireplay-ng -1  0 --bssid $AP -h $WIFI mon0
    it keep telling me
    Sending Authentication Request and sometimes it is successful and i get
    Sending Authentication Request
    Authentication Successful
    Sending Association Request
    Association Successful
    Code:
    aireplay-ng -3 -b $AP -h $WIFI mon0
    but i get read packets increased but 0 ARP requests and 0 ACKs
    so #Data doesn't get increased!!

  2. #2
    Member mixit's Avatar
    Join Date
    Jan 2010
    Posts
    104

    Default

    Do you have a client connected to the network?

    Also search the forum for "4965" and there is a huge thread on this card having issues with fake AP authentication. You may need to use a script provided in that very long thread. If you look towards the end, i posted a step by step

  3. #3
    Junior Member
    Join Date
    Feb 2010
    Location
    On Planet Earth
    Posts
    29

    Default

    yes I have a Desktop connected to it

  4. #4
    foster04
    Guest

    Default

    Quote Originally Posted by kmitnick View Post
    i have BT4, and I can easily set the monitor mode to the wlan0
    Code:
    airmon-ng start wlan0
    and it says it is now available monitor mode on mon0
    so i use mon0

    i wanna make test to to my Router
    its BSSID is exported to AP
    and my mac address is exported to WIFI

    i try
    Code:
    airodump-ng -c 10 -w test --bssid $AP mon0
    and
    Code:
    aireplay-ng -1  0 --bssid $AP -h $WIFI mon0
    it keep telling me
    Sending Authentication Request and sometimes it is successful and i get


    Code:
    aireplay-ng -3 -b $AP -h $WIFI mon0
    but i get read packets increased but 0 ARP requests and 0 ACKs
    so #Data doesn't get increased!!
    I believe that you should try aireplay-ng -1 0 -a "router mac add" -h "your mac add" your interface. Cheers.. make sure your virtual is actually injecting... sometimes it gives troubl...

  5. #5
    foster04
    Guest

    Default

    and remember that if there is no other machine connected to the router wireless then there is no traffic been generated... so you will need to use another method... ohhh something that worked for me once was... lets say you have two interfaces... you are using MON0 to do your thing. If you try to "connect" to the router using the eth0 or wlan interface that will create some traffic you can letter on use....

  6. #6
    Junior Member
    Join Date
    Feb 2010
    Location
    On Planet Earth
    Posts
    29

    Default

    thnx foster04
    1) router mac address is denoted by AP
    mine is WIFI
    and i am sure there is another client on the network but same result

  7. #7
    Member mixit's Avatar
    Join Date
    Jan 2010
    Posts
    104

    Default

    1. Does airodump-ng show that your mac is associated with the AP? I havent heard of anyone successfully fake authenticating/associating with the router with the iwl4965 chipset. From what i have read, everyone has had to use that fakeit.sh script that i referred you to earlier. I take it you didnt try that.

    2. Try disconnecting and reconnecting the desktop on your network while airodump is listening. This will assure that there is an ARP request going out.

    3.Is mac filtering disabled on your router?

  8. #8
    Junior Member
    Join Date
    Feb 2010
    Location
    On Planet Earth
    Posts
    29

    Default

    mac filtering is disabled,i tried to use fakeit.sh but i get an error that operation not supported and sth, so i digged a lil bit and found that the backtrack must be out of the box which i don't know what does it mean

  9. #9
    Member mixit's Avatar
    Join Date
    Jan 2010
    Posts
    104

    Default

    Oh, sorry. I didn't realize that was you in the other thread. "Out of the box" just means new. You haven't added any new programs or edited anything since you installed backtrack. If you're using a live cd and didnt install it to the hard drive, then it will always be "Out of the Box."

    I'm not sure what
    an error that operation not supported and sth
    means exactly. If you have a fresh installation of bt4 prefinal, then i believe that the fakeit.sh script should work. I had some issues with it that were resolved by restarting the network completely. I dont remember the exact command for it, but restarting your computer will do the same thing. Right after restart, follow the directions here in the last post.

    hxxp://forums.remote-exploit.org/bt4beta-working-hardware/20119-4965-agn-14.html

    Dont start your network manager or even connect to the internet before you follow that tutorial. Download the webpage and work offline or something. Maybe check your md5sum of your downloaded .iso to make sure the iso wasnt corrupted or something when you downloaded.

    That exhausts my list of ideas. Good luck and keep trying!

  10. #10
    Moderator KMDave's Avatar
    Join Date
    Jan 2010
    Posts
    2,281

    Default

    Moved to a better suiting section.
    Tiocfaidh ár lá

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •