aha, playing around with 'iw list' and 'iw set reg' to set country code has got injection working on 13, and has uncovered the other 5Ghz channels. No luck injecting on the 5Ghz range yet...
Re: Wireless: Alfa AWUS051NH
I've been testing on the 5Ghz range, currently iwlist wlan0 channel only allows (EU):
Channels 1-14 (2.4Ghz)
36-48 (5.18Ghz - 5.24Ghz)
149-165 (5.745Ghz - 5.825Ghz) - These are not allowed in EU!
It should be capable of the following (http://www.alfa.com.tw/in/front/bin/...egory=105483):
5.150-5.350 (Channels 34-64)
5.470-5.850 (Channels 100-165)
These are dependent upon country but channels 48-116, 132-140 should be available to Europe and America but are not showing up with current drivers. They have some restriction to do with dynamic frequency seleciton and tranmission power control between 52-140 but I'm not sure if thats why they aren't being picked up by drivers.
In Windows 7 it detects up to channel 64. Fails to see 100,116,136 (the highest my router will go to).
Re: Wireless: Alfa AWUS051NH
aha, playing around with 'iw list' and 'iw set reg' to set country code has got injection working on 13, and has uncovered the other 5Ghz channels. No luck injecting on the 5Ghz range yet...
Re: Wireless: Alfa AWUS051NH
Hi,
I would buy this card but I'm a little confused surfing the web: many people say that it dosn't work...
Does this card works in monitor e injection mode in a Virtual Machine? Or is it required many custom settings to use it?
Thanks
Riferimento: Re: Wireless: Alfa AWUS051NH
Originally Posted by gnomix
i'm interested in the card too...right now i'm using the embedded intel 5100 in my laptop and it works quite good, but there are some routers i can't fake auth to (and no chopchop attack too). so my question is: can alfa auth-fake auth-chopchop and everything else on any router? or is there a limited compatibility for this too?
Installation HowTo - Alfa AWUS051NH - Installation RT2870 tutorial
Hi, I'm new here, but I'd like to share my experiences with installing the Alfa AWUS051NH USB Stick on Backtrack 5 R2. This is a tutorial which can be used for installation of any RT2870 based USB Wifi device.
I can't open a thread in the HOWTO Forum, so I'll post it here. This is basically this tutorial: http://www.cyberciti.biz/tips/linux-...s-adapter.html, but I added some things (1.8) or made some changes (2.0) for better understanding or for avoiding problems.
By the way: If you are a root user on Backtrack (default), you don't have to use "sudo". (That should be clear)
Tools: I always have used gedit instead of vi for editing files. You can use what you are more familiar with.
1. driver installation:
1.1. deactivate default driver:
in file /etc/modprobe.d/blacklist.conf add the lines:
Save and close the file.Code:# for deactivating default drivers of RT2870 blacklist rt2800usb blacklist rt2x00lib blacklist rt2x00usb
1.2 if you have it: remove current driver
$ sudo modprobe -r rt2800usb
OR simply reboot the systems:
$ sudo reboot
1.3 Install Compilers
Genrally good: edit the file sources in /etc/apt and add the following line
deb http://updates.repository.backtrack-linux.org revolution main microverse non-free testing
Do a apt-get update and apt-get upgrade.
Then type the following command to install required packages so that you can compile source code:
$ sudo apt-get install build-essential fakeroot dpkg-dev
Finally, install Linux kernel headers so that you can compile kernel device drivers:
$ sudo apt-get install linux-headers-$(uname -r)
1.4. Download Driver, extract + edit:
Visit this page: http://www.ralinktech.com/en/04_supp...ort.php?sn=501 and download current driver RT2870USB(RT2870/RT2770)
extract your downloaded file. (In my case: 051NH_Linux_STA_v2.4.0.1.tar.bz2)
For Linux kernel 2.6.35 and later: (e.g. Backtrack 5 R2 and newer)
Open file include/os/rt_linux.h and replace
usb_buffer_alloc with usb_alloc_coherent
usb_buffer_free with usb_free_coherent
(do NOT replace rausb_buffer_alloc or rausb_buffer_free).
(Source http://www.linuxcrew.de/blog/2010/10...10-10/?lang=en). Save.
1.5. Compile RT2870 Wireless Lan Linux Driver
First, edit config.mk file as follows so that Network Manager can be used to set WPA2 auth info:
$ vi os/linux/config.mk
Set it as follows:
Save and close the file. To compile the driver, enter:Code:# Support Wpa_Supplicant HAS_WPA_SUPPLICANT=y # Support Native WpaSupplicant for Network Manger HAS_NATIVE_WPA_SUPPLICANT_SUPPORT=y
$ make
Note: You may see a LOTs of warnings during the compilation, and this is *normal* so don't panic.
1.6. Install Driver
Type the following command:
$ sudo make install
1.7 Update Network interfaces list:
edit file /etc/network/interfaces and add the following lines
1.8 Load the driver on startup:Code:auto ra0 iface ra0 inet dhcp
edit the file /ect/modules and add the following line
rt2870sta
Save.
(1.9. Download Firmware (see http://www.cyberciti.biz/tips/linux-...s-adapter.html) - not tested yet)
2. driver configuration:
You need to edit /etc/Wireless/RT2870STA/RT2870STA.dat file
Check out: https://wiki.archlinux.org/index.php..._Configuration
For: Germany, WEP encryption, open authen., key 1 used (hex), wirelessmode=legacy 11b/g mixed:
Be careful with the Wireless Mode!Code:#The word of "Default" must not be removed Default CountryRegion=1 CountryRegionABand=1 CountryCode=DE ChannelGeography=1 SSID=ENTERROUTERSSIDHERE NetworkType=Infra WirelessMode=0 Channel=ENTERCHANNELNUMBERHERE BeaconPeriod=100 TxPower=100 BGProtection=0 TxPreamble=0 RTSThreshold=2347 FragThreshold=2346 TxBurst=0 PktAggregate=0 WmmCapable=1 AckPolicy=0;0;0;0 AuthMode=OPEN EncrypType=WEP WPAPSK= DefaultKeyID=1 Key1Type=0 Key1Str=ENTERYOURKEYHERE Key2Type=0 Key2Str= Key3Type=0 Key3Str= Key4Type=0 Key4Str= PSMode=CAM AutoRoaming=0 RoamThreshold=70 APSDCapable=0 APSDAC=0;0;0;0 HT_RDG=1 HT_EXTCHA=0 HT_OpMode=0 HT_MpduDensity=4 HT_BW=1 HT_BADecline=0 HT_AutoBA=1 HT_AMSDU=0 HT_BAWinSize=64 HT_GI=1 HT_MCS=33 HT_MIMOPSMode=3 HT_DisallowTKIP=0 IEEE80211H=0 TGnWifiTest=0 WirelessEvent=0 CarrierDetect=0 AntDiversity=0 BeaconLostTime=4
WirelessMode=10 (802.11a,g,n) can't connect to 802.11b,g Routers. So use WirelessMode=0 (802.11b,g) then instead.
By setting the correct WirelessMode, you will avoid the following annoying problem later when connecting with dhclient:
3. Reboot system to load the driver.Code:root@bt:~# dhclient ra0 There is already a pid file /var/run/dhclient.pid with pid 3491 killed old client process, removed PID file Internet Systems Consortium DHCP Client V3.1.3 Copyright 2004-2009 Internet Systems Consortium. All rights reserved. For info, please visit https://www.isc.org/software/dhcp/ Listening on LPF/ra0/ROUTERBSSID Sending on LPF/ra0/ROUTERSSID Sending on Socket/fallback DHCPREQUEST of 192.168.0.6 on ra0 to 255.255.255.255 port 67 DHCPREQUEST of 192.168.0.6 on ra0 to 255.255.255.255 port 67 DHCPDISCOVER on ra0 to 255.255.255.255 port 67 interval 7 DHCPDISCOVER on ra0 to 255.255.255.255 port 67 interval 11 DHCPDISCOVER on ra0 to 255.255.255.255 port 67 interval 21 DHCPDISCOVER on ra0 to 255.255.255.255 port 67 interval 18 DHCPDISCOVER on ra0 to 255.255.255.255 port 67 interval 4 No DHCPOFFERS received. Trying recorded lease 192.168.0.6 PING 192.168.0.1 (192.168.0.1) 56(84) bytes of data. --- 192.168.0.1 ping statistics --- 1 packets transmitted, 0 received, +1 errors, 100% packet loss, time 0ms No working leases in persistent database - sleeping.
4. Connecting to a network
4.1 (You connecting with the wict network manager. It doesn't work for me.) If wict can't connect, do the following instead:
5. Enjoy.Code:ifconfig ra0 down ifconfig ra0 up iwconfig ra0 essid "YOURROUTER ESSID" key YOURKEYHERE enc on dhclient ra0
I don't know if its necessary to know: I use BT not in a VM. I run it on a notebook which (of course) has another WLAN chip that runs as wlan0.
Re: Installation HowTo - Alfa AWUS051NH - Installation RT2870 tutorial
Didn't it work out of the box? Has been pretty good for me with default drivers, what does changing them bring?
Re: Installation HowTo - Alfa AWUS051NH - Installation RT2870 tutorial
Same here..seems to work out of the box except injection seems to be erratic.. here is my take:
Hi, just thought I share my experience with Blueway BT-N9200 9dBi High-Gain B/G/N Wireless USB Adapter which has got exactly the same chip as in ALFAAWUS036NH card. It seems to work very well with my BT5 R2 64bit Gnome. I am using Backtrack from my HDD and not Virtual Machine. Please see the output as I run through air-crack-ng command suites.
Note my USB card is wlan1
Note the Tx-Power=30 dBmCode:root@bt:~# uname -a Linux bt 3.2.6 #1 SMP Fri Feb 17 10:34:20 EST 2012 x86_64 GNU/Linux root@bt:~# lsusb ------snip--------- Bus 001 Device 004: ID 148f:3070 Ralink Technology, Corp. RT2870/RT3070 Wireless Adapter ------snip--------- root@bt:~# ifconfig ----snip----- wlan1 Link encap:Ethernet HWaddr 00:0d:a3:10:97:e2 inet addr:192.168.1.12 Bcast:192.168.1.255 Mask:255.255.255.0 inet6 addr: fe80::20d:a3ff:fe10:97e2/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:543301 errors:0 dropped:0 overruns:0 frame:0 TX packets:280946 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:764439964 (764.4 MB) TX bytes:26757486 (26.7 MB) root@bt:~# ifconfig wlan1 down root@bt:~# iw reg set BO root@bt:~# iwconfig wlan1 txpower 30 root@bt:~# ifconfig wlan1 up root@bt:~# iwconfig wlan1 wlan1 IEEE 802.11bgn ESSID:off/any Mode:Managed Frequency:2.452 GHz Access Point: Not-Associated Tx-Power=30 dBm Retry long limit:7 RTS thr:off Fragment thr:off Encryption key:off Power Management:on
Note that I am using the standard driver with Backtrack (rt2800usb).Code:root@bt:~# airmon-ng start wlan1 Found 3 processes that could cause trouble. If airodump-ng, aireplay-ng or airtun-ng stops working after a short period of time, you may want to kill (some of) them! PID Name 2379 dhclient3 2599 dhclient3 5229 dhclient Process with PID 2599 (dhclient3) is running on interface wlan0 Interface Chipset Driver wlan1 Ralink RT2870/3070 rt2800usb - [phy2] (monitor mode enabled on mon0) wlan0 Atheros AR9285 ath9k - [phy0]
Now let's run some aircrack-ng suite tools.
Now injection test. This is where I have seen failure though injection does work.Code:root@bt:~# airodump-ng mon0 CH 3 ][ Elapsed: 20 s ][ 2012-06-08 10:57 BSSID PWR Beacons #Data, #/s CH MB ENC CIPHER AUTH ESSID 1A:52:4A:DA:52:5A -1 12 0 0 11 54 WEP WEP rosenburg 00:26:44:29:37:4D -1 0 68 2 158 -1 WPA <length: 0> 72:1D:67:A1:F3:9C -51 22 3 0 11 54e WPA TKIP PSK labrynth 6A:C7:14:14:7F:0C -52 15 0 0 9 54e WPA TKIP PSK simon 00:21:29:0C:65:A8 -68 25 0 0 6 54 . WPA2 CCMP PSK <length: 0> 00:24:D2:90:EE:70 -62 14 0 0 6 54 WPA TKIP PSK My Wireless Router E0:CA:94:97:B5:45 -66 14 0 0 6 54e WPA TKIP PSK WirelessHome 00:17:9A:12:4B:86 -68 8 0 0 6 54 . WPA TKIP PSK DLINK_WIRELESS 00:24:17:97:57:D3 -72 14 0 0 1 54 WPA2 CCMP PSK hiya C0:83:0A:4F:A1:59 -76 13 0 0 13 54 . WPA TKIP PSK random 72:C0:6F:6A:52:74 -77 8 0 0 3 54e WPA TKIP PSK penrith BSSID STATION PWR Rate Lost Frames Probe 1A:52:4A:DA:52:5A 00:00:48:DD:EE:AD -72 0 - 1 39 12 00:26:44:29:37:4D 68:A3:C4:BF:B8:70 -56 0 -24 259 84 (not associated) 00:11:D9:24:67:DE -60 0 - 1 0 7 alaska 72:1D:67:A1:F3:9C 78:A3:E4:E9:FD:41 -64 2e-18 0 10 6A:C7:14:14:7F:0C CC:08:E0:1D:9B:B7 -127 0 -36 0 5 simon 72:1D:67:A1:F3:9C 78:A3:E4:E9:FD:41 -66 2e-18 0 4 E0:CA:94:97:B5:45 70:DE:E2:CA:1F:D1 -1 1e- 0 0 1
So the question I am asking why do we need to use another driver? What is the benefit please?Code:root@bt:~# aireplay-ng -9 mon0 11:01:19 Trying broadcast probe requests... 11:01:21 No Answer... 11:01:21 Found 2 APs 11:01:21 Trying directed probe requests... 11:01:21 72:C0:6F:6A:52:74 - channel: 3 - 'penrith' 11:01:27 0/30: 0% 11:01:27 00:21:29:0C:65:A8 - channel: 6 - '' 11:01:28 Ping (min/avg/max): 2.650ms/8.545ms/29.472ms Power: -89.30 11:01:28 30/30: 100% 11:01:28 Injection is working!
Re: Wireless: Alfa AWUS051NH
Hey im using backtrack for a while now and i just bought the alfa AWUS051NH, I run backtrack trough parallels on my mac (that why i bought the alfa AWUS051NH it also works on the newer versions of mac) so i tried to just plug it in and it didnt work! I already tried allot also the tutorial a few post above, so my question is: is it possible to get it working trough parallels or is an other virtual machine better.(also parallels keeps crashing forcing me to restart my whole computer, with al kind of crazy annoying failures) So i prefer another virtualbox but wich will detect the usb? parallels does detect my mouse and an other wireless i own. so why not this one?
thanks for your time and effort,
greets
Re: Installation HowTo - Alfa AWUS051NH - Installation RT2870 tutorial
Cornfirming, same here - works out of the box.
Re: Wireless: Alfa AWUS051NH
At the time I was conducting 802.11 audits requiring that I be able to validate both spectrums. I also needed to be able to scan all channels. Which, as I recall, the 51NH supported. Had to set the appropriate country codes to do it.
jk
Posting Permissions