Trouble Deauthing my Laptop?

[MassAppeal]

Code:

 CH 11 ][ Elapsed: 8 mins ][ 2010-01-18 21:24

 BSSID              PWR RXQ  Beacons    #Data, #/s  CH  MB   ENC  CIPHER AUTH ESSID

  XX:XX:XX:XX:XX:XX   -8  83     4737      547    0  11  54   WPA  TKIP   PSK  XXX

 BSSID              STATION            PWR   Rate    Lost  Packets  Probes

 XX:XX:XX:XX:XX:XX  XX:XX:XX:XX:XX:XX  -30    1 -36      0      639

I tried first

Code:

aireplay-ng --deauth 10 -w wap -c 11 -b XX:XX:XX:XX:XX:XX -c XX:XX:XX:XX:XX:XX wlan0

And i was getting ACKS but still would not deauth the lappy

So i ran for about 5min

Code:

aireplay-ng --deauth 0 -w wap -c 11 -b XX:XX:XX:XX:XX:XX -c XX:XX:XX:XX:XX:XX wlan0

My lappy is 5-10m away and my ALFA Card is only 2-3m away from the router.

Any thoughts?

[trellis]

With all those XX:XX we can't know for sure if you're giving aireplay the correct parameters...

[MassAppeal]

There the correct MAC Addresses.

-a is my ap mac -c is my client mac

btw i no i wrote -b in my first post.

Could this be a driver problem i read on remote exploit forums that there are 2 drivers for this device.

I cant even sit & catch the WPA Handshake when i connect... how is that possible.

[ChrisTesla4]

why not trying the number instead of '--deauth?'. Take a quick scan through aireplay-ng's INFO page and see if you missed anything or if there's any help. Not to be rude, but RTFM really does work most of the time... Have fun!

[nullbyt3]

There could be many reasons why you cant deauth your "lappy" What kind of card are you using? Is is injectable? And not all WEP/WPA keys are crackable some filter mac addresses, etc. Try some different methods and tools to verify the problem.

Or give us more input..

[mfBaranian]

OK. So you know that you have to use -a flag for the ap's mac. Did you notice you've used the -c flag twice? You have no need to set the channel while using aireplay-ng 'cause you should already have your card in monitor mode on a desired channel. Is your card in monitor mode?
EDIT (addon)
You also have no need for the -w flag. You have no data to write while using the deauth attack. The only purpose is to deauth your "lappy" so it reconnects and you get the 4-way handshake.

[TAPE]

There could be many reasons why you cant deauth your "lappy" What kind of card are you using? Is is injectable? And not all WEP/WPA keys are crackable some filter mac addresses, etc. Try some different methods and tools to verify the problem.

Or give us more input..

Not quite sure how MAC filtering would prevent WEP or WPA hacking.. no connection needed to crack the passphrase.


Back on topic, should try to make sure the card supports injection.

Code:

aireplay-ng mon0 -9 e [essid] -a [bssid]

When you run the aireplay attack, is the wlan0 the correct interface to use when in monitor mode for you ?
I dont have an alpha, however would imagine that when starting the card with airmon-ng you should get the mon0 no ?

[mfBaranian]

I dont have an alpha, however would imagine that when starting the card with airmon-ng you should get the mon0 no ?

If he uses the mac80211 rtl8187 driver then yes he would get mon0, and if he uses the ieee80211 r8187 driver than it stays wlan0.

[MassAppeal]

I found the issue... the laptop is to far away, even though its only downstairs with a -30 to -35 power range. pretty bad for an ALFA 36'H + 5db antenna