AWUS036H no ARPs/ACKs workaround
Hi everyone,
At first, I want to apologize for my poor english (I'm not a native speaker).
I had problems with injection although the injection test said everything would work (I got no ARPs or ACKs).
To solve this problem i searched the forums for neraly a week, but didn't find anything.
Anyway, I solved this problem and want to share this knowledge with other people who still have this problem.
Instead of first associating with the network and then starting the arp-replay attack, I first start the arp-replay attack and THEN associate with the network.
Sometimes this still doesn't work, so after I associate with the network, I start a deauth attack.
If this still doesn't work, I use a MAC wich is already associated with the network (works in 99% of all cases).
In summary:
1. arp-replay
2. fakeauth
3. deauth (10 times worked better than 1 time)
greetz, crazy
Re: AWUS036H no ARPs/ACKs workaround
usually all this isn't a problem if you have associated macs on the ap and at least 1 is creating traffic, if there are no client macs associated then their is no need for a wireless router to send out address resolution protocol packets, it won't broadcast to no one
Wielder of the spoon of doom
Summercon, Toorcon, Defcon, Bsides, Derbycon, Shmoocon oh my
Come hang out with hackers on twitter @gunrunr556
Re: AWUS036H no ARPs/ACKs workaround
Before you start to do a fake authentication and injection you should see what is the channel of AP with aireplay-ng .After this stop monitor mode and start again specifying AP channel.
Re: AWUS036H no ARPs/ACKs workaround
If you know the mac of a connected client why would you fakeauth anyway?
Re: AWUS036H no ARPs/ACKs workaround
With my AWUS036H I haven't had success with airmon-ng setting the channel for me. I have always had to start airmon-ng without telling it what channel to use and then use
to get it to actually set the channel to listen on.Code:iwconfig mon0 channel #
I would get the same problem as you experienced until I was able to get the channel set properly. Hope this helps.
Re: AWUS036H no ARPs/ACKs workaround
Shouldn't the OP also start airodump-ng to monitor if he is truly injecting packets and you can specify what channel mon0 should listen to?
\m/Code:airodump-ng --bssid (ap's mac) -c (insert channel here) -w (output file) mon0
It's time to free yer Mind; It's time to cleanse yer Soul
Respuesta: AWUS036H no ARPs/ACKs workaround
There is a lot of manuals and wikis that didn't work because behind them are a lot nonsense concepts about wireless, usually in blogs and newbees forums.
Discard them.
Posting Permissions
