before you do the injection test use the command
this will isolate your ap and stop channel hoppingCode:airodump-ng -c 6 --bssid 00:11:95:9D:E0:7E rausb0
That works, but before i would want to start airodump i would still want to check if i am close enough to the ap to get the 4 way hand shake...Originally Posted by m1cha3l
i did find this, i found it quite umm interesting and i think i am going to give it a go... check it out
aircrack-ng.org/doku.php?id=cantenna_directional_antenna_with_gain
(sorry still cant post links)
glad I helped
have a look at this dude for a slightly more professional cantenna
http://www.cantenna.com/
Or this for an effective and easy to make homemade alternative:glad I helped
have a look at this dude for a slightly more professional cantenna
http://www.cantenna.com/
www.freeantennas.com
-Monkeys are like nature's humans.
Thanks every one... i think i am almost there... but i am still having a few problems..
That was me testing on other router (not my testing one) and i am still having no luck? and i cant work out whats wrongCode:bt ~ # airodump-ng -c 11 --bssid 00:11:50:FA:4A:20 -w psk rausb0 CH 11 ][ BAT: 51 mins ][ Elapsed: 0 s ][ 2008-07-10 11:15 BSSID PWR RXQ Beacons #Data, #/s CH MB ENC CIPHER AUTH ESSID 00:11:50:FA:4A:20 100 0 18 2 0 11 54 WPA TKIP PSK TheHighSide BSSID STATION PWR Rate Lost Packets Probes bt ~ # aireplay-ng --test -a 00:11:50:FA:4A:20 rausb0 11:15:30 Waiting for beacon frame (BSSID: 00:11:50:FA:4A:20) on channel 11 11:15:30 Trying broadcast probe requests... 11:15:32 No Answer... 11:15:32 Found 1 AP 11:15:32 Trying directed probe requests... 11:15:32 00:11:50:FA:4A:20 - channel: 11 - 'TheHighSide' 11:15:38 0/30: 0%any ideas?
That dose look cool... perhaps when i get a new wireless card ill look into getting one that will work with that... Don't think that cantenna will work with my little usb one...glad I helped
have a look at this dude for a slightly more professional cantenna
http://www.cantenna.com/
I think i might have a go at making them... could be fun
Being able to successfully inject to the AP will not actually tell you if you are close enough to capture a 4-way WPA handshake. The reason is that even though the test will confirm that you are able to hear the AP as well as inject to it, it will not tell you if a client, often using a weak internal wireless card, will be close enough for you to be able to capture his side of the handshake as well.
Also, have you tried to inject to the AP, for example performing a fake-auth attack with aireplay-ng, instead of using the test command?
It is, and they actually boost both the signal strength and reception quality quite nicely as well.I think i might have a go at making them... could be fun
-Monkeys are like nature's humans.
Same problem here, Linksys wusb54g ralink rt73 - put it on monitor mode, started airodump and no networks found, even having backtrack 3. Adapter is not faulty, works perfectly ok with kismac.
Posting Permissions
