Results 1 to 5 of 5

Thread: Fail to capture handshake, wpa psk

  1. 08-08-2009, 04:29 AM #1
    Locaj
    Locaj is offline
    Just burned his ISO
    Join Date
    Aug 2009
    Posts
    3

    Default Fail to capture handshake, wpa psk

    Hi

    Obviously don’t know much.

    Got bt4beta running on VMware from .vmx file.
    Got Dlink DWL-122. Running default bt4. Got Sky broadband Netgear DG834GT.
    Set my router to wep and was fine. Set my sister pc as station and was able to get password.

    Got problem with wpa. Cant get handshake, will show my case. All commands copied from konsole. Screens will show basics.

    Power on normal holds 70-80. PWR during deauth drops to 2-7 only. Is that true I need at least 20-25 for successful deauth handshake capture?

    airodump-ng --write 803 --channel 1 --bssid 00:***:EC wlan0

    aireplay-ng -0 10 -x 300 -a 00:***:EC -c 00:***:60 wlan0

    aircrack-ng 803-01.cap

    Link to photo.
    h t t p : //img80.imageshack.us/img80/667/99642698.jpg

    Im not sure whats wrong. Tried deauth for around 4 hours. Got kk packets and quite a lot of data.
    Please teach me. If you need any more info happy to provide.

    Thanks
  2. 08-08-2009, 05:00 AM #2
    kazalku
    kazalku is offline
    Member kazalku's Avatar
    Join Date
    Feb 2009
    Posts
    416

    Default

    Check whether your card is capable of injecting. Go here.
    If you can't explain it simply, you don't understand it well enough -- Albert Einstein
  3. 08-08-2009, 07:34 AM #3
    Locaj
    Locaj is offline
    Just burned his ISO
    Join Date
    Aug 2009
    Posts
    3

    Default

    thanks !

    i doesn't work. I got only one ap but anyway.

    Code:
    root@bt:~# aireplay-ng -9 wlan0
For information, no action required: Using gettimeofday() instead of /dev/rtc
07:19:34  Trying broadcast probe requests...
07:19:36  No Answer...
07:19:36  Found 1 AP

07:19:36  Trying directed probe requests...
07:19:36  00:***:EC - channel: 1 - '***'
07:19:42   0/30:   0%
    So is it my card fault? like i said i got dlink dwl-g122, i thought when its on list compatible it will be fine, or is it something completely else?

    omg i got injection to work. I found on net that i have to unplug and plug again my usb adaptor.

    Code:
    oot@bt:~# aireplay-ng -9 wlan0
For information, no action required: Using gettimeofday() instead of /dev/rtc
07:32:27  Trying broadcast probe requests...
07:32:27  Injection is working!
07:32:28  Found 1 AP

07:32:28  Trying directed probe requests...
07:32:28  00:***:EC - channel: 1 - '***'
07:32:35   0/30:   0%
    So that means deauth and handshake capture should work?
    I would never think that unplugging it may do such a big difference.

    Thank ! ! !

    PS couldnt do edit yet... sry

    Thanks.... I sort it out. Thought let you know coz its quite funny.

    I was using usb extend cable to get more possibilities to move antena around. When i was unplugin and plugin in i was receiving some succesful injections on my router.

    When i connected usb adaptor directly to pc i got 100%.

    It looks like the extend cable was fault. Not sure was there dodgy connection or cable was catching some interferences.
    I also noticed that it matters where i am in my room! When i move around in my room i got around 50-60%, when i stand still in one place i got 100% (tested for long time, many times).

    thanks

    i sort out injection but i still cant get my handshake.

    Injection is working 100%.
    Code:
    For information, no action required: Using gettimeofday() instead of /dev/rtc
15:42:10  Trying broadcast probe requests...
15:42:10  Injection is working!
15:42:11  Found 1 AP

15:42:11  Trying directed probe requests...
15:42:11  00:***:EC - channel: 1 - '***'
15:42:13  Ping (min/avg/max): 16.773ms/59.616ms/79.766ms Power: -62.40
15:42:13  30/30: 100%
    Is DATA important? Can i get handshake without data?
    Im following previous instructions and i cant seem to get handshake.

    Normally PWR is 61-62. When i try to deauth its either 0 or 12. Is it enough?

    I got alot of ACKs, everything seems to be better than before but sill nothing. Sometimes station pc is not shown on airodump list and than it comes back again. Is it low signal strength problem?

    Please see screen for some more info...

    h t t p : //img146.imageshack.us/img146/6392/hmm1.jpg
  4. 08-08-2009, 01:24 PM #4
    kazalku
    kazalku is offline
    Member kazalku's Avatar
    Join Date
    Feb 2009
    Posts
    416

    Default

    I can see that it's showing "Injection is working!", however "0/30: 0%" is not expected. It should not be 0%. Go test your card with another AP (may be friends' with permission). If it shows 80% or 100%, then may be your router is rejecting the injections.

    Above link says "The injection test uses broadcast probe requests. Not all APs respond to broadcast probe requests. So the injection test may fail because the APs are ignoring the broadcast packets. As well, you quite often can receive packets from APs further away then your card can transmit to. So the injection test may fail because your card cannot transmit far enough for the AP to receive them. "
    If you can't explain it simply, you don't understand it well enough -- Albert Einstein
  5. 08-09-2009, 04:07 PM #5
    Locaj
    Locaj is offline
    Just burned his ISO
    Join Date
    Aug 2009
    Posts
    3

    Default

    Is it true that it will not work with interface wlan0? Do i have to use mon0?
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules