Results 1 to 6 of 6

Thread: aircrack taking way too long

  1. #1
    Junior Member whiterabbit7500's Avatar
    Join Date
    Feb 2010
    Location
    in your server
    Posts
    33

    Question aircrack taking way too long

    I'm in the beginning stages of a pen-test on a clients wireless network, and ran into a bit of an issue today I've never seen before. The client is running a WEP network, with no obvious special authentication or MAC filtering present, as I was able to authenticate and associate right away. There were no clients showing activity, so I proceeded to perform a clientless 0841 attack using aireplay-ng. I was capturing IV's just fine, and got to about 150k after about 30 mins, but aircrack was still unable to find the key. I've never run into this before, as all my WEP cracks have found the key after no more then 20 mins, even on WEP40. Any ideas what might be causing this need for so many IV's? I was no more then 30 yards away from the main building, and was receiving a decent strength signal.

  2. #2
    Just burned his ISO addyall's Avatar
    Join Date
    Mar 2010
    Posts
    12

    Default Re: aircrack taking way too long

    Its possible that the WEP key is is longer than 128-bits. When running aircrack-ng on the cap file try the -K argument. I ran into a problem like a just described when trying it on a 256-bit key.

  3. #3
    Junior Member
    Join Date
    Feb 2010
    Location
    Ireland
    Posts
    28

    Default Re: aircrack taking way too long

    I have had this several times before.

    What are the exact commands you are using with aircrack-ng?

  4. #4
    Very good friend of the forum Gitsnik's Avatar
    Join Date
    Jan 2010
    Location
    The Crystal Wind
    Posts
    851

    Default Re: aircrack taking way too long

    You could be dealing with some cisco kit - WEP-CKIP has caught me out in the past when I haven't had a reliable client connection to use.
    Still not underestimating the power...

    There is no such thing as bad information - There is truth in the data, so you sift it all, even the crap stuff.

  5. #5
    Junior Member whiterabbit7500's Avatar
    Join Date
    Feb 2010
    Location
    in your server
    Posts
    33

    Default Re: aircrack taking way too long

    the thought crossed my mind, but from what I've seen from this client so far, they don't have any sort of organized IT structure to implement something like that. Unfourtunatly, it's a black-box job, so I need to figure out as much as possible without asking them directly for the info. I tried going again today using my hawking/cantenna setup, but the opposite happened, as I received a much better signal, but got a VERY slow IV stream, only about 50-60 per minute.

    edit: Nevermind, after a quick refresh via google, it probably is CKIP giving me problems. Whats a workaround for this protocol, if any? I know it's more or less a evolution of LEAP, so would LEAP cracking tools work?
    Last edited by whiterabbit7500; 04-30-2010 at 12:22 AM. Reason: found more info

  6. #6
    Very good friend of the forum Gitsnik's Avatar
    Join Date
    Jan 2010
    Location
    The Crystal Wind
    Posts
    851

    Default Re: aircrack taking way too long

    TBH I've never looked into a workaround for it. I did always find it strange that it wasn't covered in the OSWP, so perhaps it's just not considered wide spread enough. Every time I encounter it, one either has a client to work with, or makes use of a second access point on the same network (assuming the infrastructure *has* two access points).

    A quick skim of this may prove useful, but YMMV.
    Still not underestimating the power...

    There is no such thing as bad information - There is truth in the data, so you sift it all, even the crap stuff.

Similar Threads

  1. WEP Cracking long?
    By jxer21 in forum OLD Newbie Area
    Replies: 5
    Last Post: 09-17-2009, 05:15 AM
  2. airolib database taking longer than advertised
    By LMNOParis in forum OLD Wireless
    Replies: 1
    Last Post: 01-16-2009, 11:13 PM
  3. Probloem with aircrack and a long list
    By adw g630 in forum OLD Newbie Area
    Replies: 7
    Last Post: 06-15-2008, 12:42 AM
  4. Taking A Screen shot in Back track
    By mike12121213 in forum OLD Newbie Area
    Replies: 4
    Last Post: 12-03-2007, 06:14 PM
  5. Taking eth1 out of monitor mode
    By bound4h in forum OLD Newbie Area
    Replies: 8
    Last Post: 05-22-2007, 11:39 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •