Gerix-Wifi-Cracker + Hidden SSID

[Snayler]

Trying to associate with a network that has an hidden SSID will produce an error message "No network selected [failure]".

IMHO, it seems like an expected error since aireplay's fakeauth attack needs an SSID to work. A possible workaround would be to add an option to deauth a client, making him to reveal the network SSID (some clients already do this even when they are connected).

[kiloraw]

But what if its WEP and no clients?
Is there a work around for that?

[Snayler]

But what if its WEP and no clients?
Is there a work around for that?

There are brute force attacks. I red it somewhere, i think that the tool used for this attack is MDK. Also a possible option to add to gerix.

[kiloraw]

Do you know how to add the MDK to gerix?

[Snayler]

Do you know how to add the MDK to gerix?

No, I don't. Even if gerix-wifi-cracker is open source (which I don't know if it is), I don't have enough knowledge in programming to do that myself (or maybe I have, but I don't feel like checking at the moment... ). Anyway, and if I recall correctly, MDK's hidden SSID cracking attack need a wordlist to work, it would be like cracking WPA.

[SWFu64]

A nice option would to include an option to use a dictionary attack using MDK3 with the ssid list used in the CoWF tables or user specified one.

[TAPE]

To crack hidden SSIDs, MDK3 can either use a dictionary attack, or a bruteforce attack.

Mind you the bruteforce approach is not recommended for anything over 4 characters really..

For info, I put a vid up on it a while agoon the old forums;

MDK3 - Cracking hidden SSIDs in back|track 4 - Remote Exploit Forums

[portos]

so... Gerix does not work with hidden SSID?