Results 1 to 3 of 3

Thread: Pentest Vista WLAN with airbase-ng

  1. #1
    Just burned his ISO
    Join Date
    Feb 2010
    Posts
    13

    Default Pentest Vista WLAN with airbase-ng

    Hello,

    while doing a pentest against Windows Vista SP1 I tried to get connected via WLAN to a Station which is in the LAN an has WLAN switched on. Is there a possible way to get airbase-ng connect to any SSID configured on the Vista machine with the auto-connect feature enabled. Tried several options like -P an -0 but with no luck.

    Is there a need to patch the drivers when using airbase-ng like in karma or is there a way to use karma on Backtrack 4 by patching die madwifi drivers with karma and diginija extensions.

    The goal of the pentest is to connect to a wide range of Clients in the LAN with WLAN enabled to do further penting on the client and use them as "bridge" to the LAN.

    Thanks

    phobos

  2. #2

    Default Re: Pentest Vista WLAN with airbase-ng

    Hi,

    not 100% sure what you are writing, little bit confusing. Concerning Vista : Connecting to non-broadcast wireless networks in Windows Vista
    So the 'karma-style' attack works as long the wlan-client is looking (broadcasting) for his known/configured SSID-list (e.g. wireless zero config looks through the saved configuration profiles in a sequential order).

    BT4 is working fine to play the role of a fake access point, read through the forum, there are dozens of threads concerning setting up a this kind of rogue AP (incl. ready-to-go shell scripts).
    If you wanna setup something more reliable, I'd recommend Jasager/Karma on the fon
    good reference can be found in this thread: http://www.backtrack-linux.org/forum...ve-looked.html

    Airbase-ng/aircrack-ng is not running on Vista, besides you have the commercial AirPcap drivers/hardware ;-)


    /brtw2003
    Last edited by brtw2003; 02-20-2010 at 05:09 PM.

  3. #3
    Member xX_Spiidey_Xx's Avatar
    Join Date
    Jan 2010
    Location
    /dev/urandom
    Posts
    256

    Default Re: Pentest Vista WLAN with airbase-ng

    Quote Originally Posted by pho_bos View Post
    Is there a possible way to get airbase-ng connect to any SSID configured on the Vista machine with the auto-connect feature enabled. Tried several options like -P an -0 but with no luck.
    this sounds to be like you're trying to use a fake ap to connect to other aps, which afaik cannot be done using airbase-ng.

    check the wiki page @ airbase-ng [Aircrack-ng]

    -M MITM Attack

    This option is not implemented yet. It is a man-in-the-middle attack between specified clients and BSSIDs.
    thou shalt treat all computers as thou wouldst treat thyself, for thou art the creator of thine own problems.

Similar Threads

  1. Replies: 4
    Last Post: 02-17-2011, 09:23 PM
  2. Using Airbase-ng
    By lex0429 in forum Beginners Forum
    Replies: 3
    Last Post: 10-17-2010, 03:59 PM
  3. installed bt4final now windows vista isnt genuine?
    By alexduecker in forum BackTrack Bugs
    Replies: 2
    Last Post: 01-16-2010, 08:46 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •