Thanks to Thex1le for his work on this...
Follow-up to my original post regarding Network Stumbling with Kismet & Airodump-ng ( http://forums.remote-exploit.org/showthread.php?t=20574 )
There's a few threads in the forum mentioning airgraph-ng, but here is a quick How-To in using the tool...
Works on my BT4b HDD system, but LiveCD(DVD) version should work as well.
Assumptions:
1. You are running BT4b, and have already stumbled thru your WiFi environment using airodump-ng.
2. You wish for your captured data to be plotted in simple, graphical form.
Steps
1. On your BT4b system, go find the set of files that airodump-ng wrote. You will need the the .txt file for this exercise. For me, this is always:
Code:
root@bt:~/Desktop/captures#
2. Move or copy the .txt file into the airgraph-ng directory:
Code:
root@bt:~/Desktop/captures# cp cap1-02.txt /pentest/wireless/aircrack-ng/airgraph-ng
3. Decide if you want Client to AP, or Client Probe graph. I've included both examples here.
4. cd to the airgraph-ng sub directory, run your collected .txt file thru airgraph-ng:
Code:
root@bt:~/Desktop/captures# cd /pentest/wireless/aircrack-ng/airgraph-ng
root@bt:/pentest/wireless/aircrack-ng/airgraph-ng# ./airgraph-ng.py -i cap1-02.txt -o all4.png -g CAPR
If all goes well, expect to see:
Code:
Warning Images can be large!
Creating your Graph, Depending on your system this can take a bit. Please standby..............
Graph Creation Complete!
root@bt:/pentest/wireless/aircrack-ng/airgraph-ng#
My simple, simple capture file cap1-02.txt produced:
Next, use the -CPG option:
Code:
root@bt:/pentest/wireless/aircrack-ng/airgraph-ng# ./airgraph-ng.py -i cap1-02.txt -o all3.png -g CPG
My simple, simple capture file cap1-02.txt produced:
Errors Encountered
It seems that you need to move or copy the .txt file into airgraph-ng's directory to get it working. Here's what happened when I disregarded this advice:
Code:
root@bt:~/Desktop/captures# /pentest/wireless/aircrack-ng/airgraph-ng/airgraph-ng.py -i cap1-02.txt -o all3.png -g CAPR
Support libary import error does lib_Airgraphviz exist?
README
Finally for completeness, here's the README file:
Code:
Welcome to airgraph-ng
!!! Please note due to a lack of PNG support in Graphviz under BackTrack 3 Airgraph-ng is not currently supported here. I am aware of the issue i just havent had time to fix it!!!!!!
airgraph-ng's purpose is to graph the txt file that is created when you run airodump with the -w option
The idea is that we are showing the relationships of the clients to the AP's so dont be shocked if you see only one mapping as you may only have captured one client
airgraph-ng depends are as follows
graphviz with png support
airodump >= 1.0
python
The program usage is as follows
airgraph-ng -i [your txt file] -o [the output file in png format] -g [graph Format option is either CAPR or CPG]
I am happy to indroduce an option for graph types
There are two current graph types
CAPR or Client to AP Relationship
This shows you all the clients attached to a particular AP
CPR or Client Prob Graph
This showes you all the clients that are sending out probe requests for the same ESSID's
;-) Fake AP any one?
Once you have airgraph-ng set up and installed i have included some test data to allow you to quickly see if airgraph-ng is working. This data can be found in the test directory inside the libs directory
Airgraph-ng sets graphviz to use the latin character set if this is a problem for you please let me know. I did this to clear up a bug i had with the CPG graphs
dumpjoin.py is a short support script that will allow you to join two airodump CSV files into one. Run the program with no arugments to see the usage
This is still a work in progress if you have questions contact TheX1le at thex1le <AT> gmail.com
Comments, Corrections, Clarifications & Amplifications welcome.
Best Regards.
[HowTo] Airgraph-ng Network Plotting from Airodump-ng output
Originally Posted by onryo
Posting Permissions