maemo.org - Talk

maemo.org - Talk (https://talk.maemo.org/index.php)
-   Applications (https://talk.maemo.org/forumdisplay.php?f=41)
-   -   [Maemo 5] fAircrack (Aircrack GUI) (https://talk.maemo.org/showthread.php?t=69009)

Estel 2011-06-30 13:55

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Negative. I use wlan driver selector applet, and everything is working fine. You just don't need to use "injection on" button if You loaded bleeding edge drivers already, but doing so doesn't hurt anyway.

Also, i would like to mention that some instructions from post 1 are incorrect. Yea, i know that this were mentioned many times before, but not in "concluded" form, so i post this here, to avoid another 213424 posts about injection not working:

1. Fake authentication doesn't create ARP. It creates ACK, but that doesn't help You. If You used "injection" (or manually aireplay-ng) and captured ARP, then You re-send it with MAC set to same as client, from whom You captured ARP, access point will accept them.

2. AFAIK the only real usage of fake auth on fAircrack (considering options that are possible now using GUI) is to check if access point got MAC filtering. It won't generate any ARP to replay - as stated in point 1 - at best it can make collecting IV's little easier (on some routers), but I'm not 100% sure about that. But, they're not skyrocketing, by any means.

3. On most situations, ARP is generated only, when new client authenticate to router by "legal" way (no fake auth), So, only possible solution to generate ARP on demand (to re-inject it) is just like with WPA handshake - force client to deauth. I've tested it countless times, with every possible configuration, and only deauthenticating client, while already running aireplay-ng (we're talking about using fAircrack GUI), generate ARP and start re-injecting it. Without that, You must wait quietly until someone connect to given router. Keep in mind, that powersaving idle features of wlan cards != deauthentication. Such a machine is still connected and authenticated, but traffic is suspended to almost 0. Same apply for our precious IVs ;)

As for now, deauthentication doesn't want to work in fAircrack, so You must google correct syntax to use it from terminal ;) No big deal thought.

---

Correct me if I'm wrong, but aireplay-ng activated via fAircrack work only in real time, i.e. all ARP's captured are lost when we close injection window? It would be great to add possibility to store them for future. It's little annoying, if You have to run everything from terminal, if You want to catch ARP and use it on hour better suiting Your needs.

Maybe they should be stored under "decrypt" tab, just as caps and keys, keeping them as default, then deleting on demand? Would be great if name contains not only AP ssid, but also MAC of client whom ARP was originated. Then, on "Access Point" page, we would have another button, called "injection via stored ARP".

What do You think, StefanL?

//Edit

As for repos and maintaining, I would love to help, but I'm as clueless as You ;) Ho ever, it seems that I must start learning it - it's another situation in past few days, where I can't provide useful support, cause lack of knowledge about packaging for maemo ;)

Mentalist Traceur gone much further and he's already maintaining aircrack-ng package - I'm 100% sure that he will be glad to help, thought.

Brian_7 2011-06-30 22:01

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Hi, i forgot to tell you that every time that i open the x-terminal i see this before i can use it:

http://www.imagengratis.org/images/screenshomy2om.png

It always appears. If i reboot my cellphone, it still appear. I think that it is related to my problem.

nicholes 2011-07-03 12:15

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
i have just falshed my N900(not emmc)
and now after doing all the stuff
faircrack does not launch from icon nor from xterm....

here is output

$ sh /home/user/MyDocs/FAS/launch.sh
Traceback (most recent call last):
File "Main.py", line 5, in <module>
from PyQt4 import QtGui,QtCore
ImportError: No module named PyQt4
~ $


__________________

stevomanu 2011-07-03 12:25

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
have you installed pyQT ?

nicholes 2011-07-03 12:29

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Quote:

Originally Posted by stevomanu (Post 1043865)
have you installed pyQT ?

no............

tell me how to .......should i use

apt-get installl pyQT

???

Saturn 2011-07-03 12:30

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
you need these four packages:

python2.5
python2.5-qt4-gui
python2.5-qt4-core
python2.5-qt4-maemo5

nicholes 2011-07-03 12:34

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
i found in FAM
pyQT demo
pyQT demo(Qt 4.7 experimental)
pyQT Full install
pyQT Full install (Qt4.7 experimental)

do i need that all, or some, or nothing, from them???
or
apt-get installl pyQT


EDIT :ok ok i am doing right now you post before me thanks!

nicholes 2011-07-03 12:41

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Quote:

Originally Posted by Saturn (Post 1043868)
you need these four packages:

python2.5
python2.5-qt4-gui
python2.5-qt4-core
python2.5-qt4-maemo5

ok thanks man it worked now
thanks to all!!!!!!!

nicholes 2011-07-03 12:46

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
so now start packet caprure does not work nothing happens when i click on "start packet capture"(after enableing injection, monitor mode and scaning the WEP )

Del 2011-07-03 15:29

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
can somebody tell me if he hack WPA\WPA2 network ?

and how !!

dekor 2011-07-03 19:10

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Quote:

Originally Posted by Del (Post 1043945)
can somebody tell me if he hack WPA\WPA2 network ?

and how !!

To be honest, no. To decrypt a WPA would take a loooooong time from what I have read. We are talking months on a computer, on a phone, years!

q6600 2011-07-03 19:23

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
@ del
if you look back you will see this post
http://talk.maemo.org/showpost.php?p...&postcount=832

Del 2011-07-03 23:51

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
dekor
q6600


guys .. i did it .. in 4 hours and 31 min =)

dekor 2011-07-04 08:13

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Was it quite a simple key?

verrnum 2011-07-05 23:06

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Hi,

Thanks for your post.

I following your instructions but i can't enable the monitor.(nothing happen when i click on enabble button)
I installed as wrote here (step 4)

Then i loaded the custom driver (step 6)

I launch faircrack with hildon shortcut..

For information, my mac address is not displayed...

Thanks for your help guys.

PS : aircrack-ng and john are installed

q6600 2011-07-06 20:17

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
did you install
> PyQt
> Sudser
> Aircrack-ng
> John the Ripper
> Bleeding-edge packet injection drivers by lxp
> Macchanger (optional)

verrnum 2011-07-07 22:09

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Quote:

Originally Posted by q6600 (Post 1046018)
did you install
> PyQt
> Sudser
> Aircrack-ng
> John the Ripper
> Bleeding-edge packet injection drivers by lxp
> Macchanger (optional)

Thanks, Sudser was missing.

Regards

verrnum 2011-07-07 22:29

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Hi,

Just one question :

" You will normally need at least 50,000 IVs in order to perform a successful decryption, so if it is much less than this then you may as well close this window."

How to see the number of IVs ?

Best Regards

verrnum 2011-07-07 22:40

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Quote:

Originally Posted by verrnum (Post 1046716)
Hi,

Just one question :

" You will normally need at least 50,000 IVs in order to perform a successful decryption, so if it is much less than this then you may as well close this window."

How to see the number of IVs ?

Best Regards

I found it sorry.

The number is displayed when starting to decrypt caps.

Regards

kingoddball 2011-07-08 11:08

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
I made an auto install and setup script. Have a looksee around. All you have to do is have the bleeding edge folder in MyDocs. It will do the rest.

View and try this: http://talk.maemo.org/showthread.php?t=73580

nicholes 2011-07-08 13:27

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
so normally how long would a msg "WPA Handshake" take ???
can anyone conferm for me plz

fatcobrah 2011-07-08 13:52

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Quote:

Originally Posted by nicholes (Post 1047087)
so normally how long would a msg "WPA Handshake" take ???
can anyone conferm for me plz

about 10 sec :)

Estel 2011-07-08 18:31

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Quote:

Originally Posted by verrnum (Post 1046718)
I found it sorry.

The number is displayed when starting to decrypt caps.

Regards

You don't need to do that. During packet capture, column "Data" contain number of captured IVs. Info about using decrypt to check number of IVs is wrong, despite being in 1st post.

verrnum 2011-07-08 19:40

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Quote:

Originally Posted by Estel (Post 1047241)
You don't need to do that. During packet capture, column "Data" contain number of captured IVs. Info about using decrypt to check number of IVs is wrong, despite being in 1st post.

Hi,

What is the column number (i don't see the column while processing) ?

Is it possbile to decrypt during capturing ?

If i stop the capture, and the IV are not enough to decrypt, do i need to restart all capture from begining ?

Thanks for your help and great job !!

verrnum 2011-07-08 23:15

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Quote:

Originally Posted by verrnum (Post 1047303)
Hi,

What is the column number (i don't see the column while processing) ?

Is it possbile to decrypt during capturing ?

If i stop the capture, and the IV are not enough to decrypt, do i need to restart all capture from begining ?

Thanks for your help and great job !!

I found it.

It works very fine...

I decrypted a WEP key in fews minutes...

Thanks a lot for this application !

Estel 2011-07-08 23:58

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Quote:

Originally Posted by verrnum (Post 1047303)
Hi,

What is the column number (i don't see the column while processing) ?

Is it possbile to decrypt during capturing ?

If i stop the capture, and the IV are not enough to decrypt, do i need to restart all capture from begining ?

Thanks for your help and great job !!

2. Yes

3. Unfortunately, yes. I wonder if there is a method to merge many .cap files? I'm afraid it's just my lack of knowledge here - I'm sure that this question was covered somewhere on aircrack-ng site.

Mentalist Traceur 2011-07-09 01:16

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Quote:

Originally Posted by Estel (Post 1047526)
2. Yes

3. Unfortunately, yes. I wonder if there is a method to merge many .cap files? I'm afraid it's just my lack of knowledge here - I'm sure that this question was covered somewhere on aircrack-ng site.

You can just specify more than one packet containing file at once when running aircrack-ng, and it'll combine all of them. So if you have:

WiFiNet-01.cap
WiFiNet-02.cap
WiFiNet-03.cap
WiFiNet-04.cap

you can just run "aircrack-ng WiFiNet-*.cap" and get all of them. (Assuming your shell processes the wildcard correctly of course. I have this vague memory that stock busybox didn't, but I know busybox-power does. Either way, "aircrack-ng WiFiNet-*" would do it in the above example.

There's also "ivstools", included in aircrack-ng that can extract only ivs from packet captures and can combine ivs packet capture files.

Estel 2011-07-09 01:28

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Nice info, Mentalist! So, StefanL, can this option be added to fAircrack? Either processing via ivstools, or selecting more than 1 cap in "decrypt" tab, and decrypting them together as one, via "decrypt" button? Or both options? ;)

StefanL 2011-07-09 17:25

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Quote:

Originally Posted by Estel (Post 1042173)
Correct me if I'm wrong, but aireplay-ng activated via fAircrack work only in real time, i.e. all ARP's captured are lost when we close injection window? It would be great to add possibility to store them for future. It's little annoying, if You have to run everything from terminal, if You want to catch ARP and use it on hour better suiting Your needs.

Maybe they should be stored under "decrypt" tab, just as caps and keys, keeping them as default, then deleting on demand? Would be great if name contains not only AP ssid, but also MAC of client whom ARP was originated. Then, on "Access Point" page, we would have another button, called "injection via stored ARP".

What do You think, StefanL?

ARPs are captured from the injection screen to the user root directory ~ or /home/user. I have been thinking about what to do with these ARP packets and came up with similar conclusion (ie. add ARP tab to the WEP/WAP/Keys screen). Still need to work out how to direct these packets to a different directory. Also the gui in the current form is not flexible enough to do any of the more complicated attacks seemlessly.

StefanL 2011-07-09 17:26

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Quote:

Originally Posted by Estel (Post 1047558)
Nice info, Mentalist! So, StefanL, can this option be added to fAircrack? Either processing via ivstools, or selecting more than 1 cap in "decrypt" tab, and decrypting them together as one, via "decrypt" button? Or both options? ;)

Yep, I guess the list just got longer ;). There is a multi-select behaviour that should facilitate this quite nicely.

Keep coming with the suggestions, they are always appreciated.

StefanL 2011-07-09 17:38

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
1 Attachment(s)
At last here is the latest update :D. Not much really in this one mainly some minor ui changes:

1) AP details are properly cleared and only displayed once an AP has been selected.
2) Scan button only activates when Monitor Mode is enabled.
3) Deauthentication button added to Access Point Tab with basic deauth functionality (ie. no client deauth yet :(). (This one is for @Trine:p)

As per usual, make a back-up copy of the files to be replaced, copy the archive to the FAS directory on your N900 and extract with-in xterm in the FAS directory:

tar -xzvf faircrack0.42.tar.gz

Enjoy :p

Note: Most of the attacks on the Access Point Screen work better once capturing packets. So just hit the buttons top to bottom (ie. cap packets, auth, deauth, inject).

PS: APs with spaces in names are working in this version, my test AP is WEP with a space in it. ;)

Note 2: Install version 0.3 from post no 1 in this thread, then apply my update.

AgentZ 2011-07-09 22:30

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
i'm not seeing the app in my programs,but can open it in xterm,how do I get to open from the desktop?

DashX0 2011-07-09 23:23

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Hey nice app, can I just install this version (v42) and start testing or do I still need to install the bleeding edge driver and any other dependencies (if any).

Thanks in advance.

nicholes 2011-07-10 03:03

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
1 Attachment(s)
Quote:

Originally Posted by AgentZ (Post 1047988)
i'm not seeing the app in my programs,but can open it in xterm,how do I get to open from the desktop?

(i have not tested it yet but i thinkg it shuld work)

get files and open xterminal and type....


Code:

tar -xzvf /home/user/MyDocs/hildon.tar.gz

Code:

sudo gainroot

Code:

mv faircrack.desktop /usr/share/applications/hildon/

Code:

mv faircrack.png /usr/share/icons/hicolor/48x48/hildon/

StefanL 2011-07-10 08:01

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Quote:

Originally Posted by AgentZ (Post 1047988)
i'm not seeing the app in my programs,but can open it in xterm,how do I get to open from the desktop?

Quote:

Originally Posted by DashX0 (Post 1047997)
Hey nice app, can I just install this version (v42) and start testing or do I still need to install the bleeding edge driver and any other dependencies (if any).

Thanks in advance.

My update needs to be installed on top of 0.3. So you should have a 0.3 working version (check first post ;)) before applying my update. Everything as per first post is still applicable.

q6600 2011-07-12 15:59

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
my n900 is make me madddd. i can not crack my on wep key network ( o arp and no injection ) i rest the roter bla bla bla still nothing. today i went in town and waiting for some one i sad to my self to try my n900 on a wep net. surprise n900 crack the wep in 3 min.

Estel 2011-07-12 19:24

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Quote:

Originally Posted by StefanL (Post 1047850)
Note: Most of the attacks on the Access Point Screen work better once capturing packets. So just hit the buttons top to bottom (ie. cap packets, auth, deauth, inject).

PS: APs with spaces in names are working in this version, my test AP is WEP with a space in it. ;)

I would suggest placing inject before deauth - using them in order set now, one can deauth clients' but fail to catch and re-inject ARP packets on time. Keep in mind, that ARP's are generated (mostly) when legitimate client authenticate with network (false auth doesn't generate ARP's).

/Estel

AgentZ 2011-07-12 20:06

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Yep did all that, but it still didn't show up played with it some more and it showed up, but just as a blue square. Where can I copy the other icon in the beginning of this thread to,so I can use it instead of the blue square.
thanks

q6600 2011-07-12 21:01

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
and can you please, make the faricrack 0.42 to show the name of the network on the cap.
logitech01.cap
now is just 01.cap

Estel 2011-07-13 03:22

Re: [Maemo 5] fAircrack (Aircrack GUI)
 
Hehe, I also got only blue default icon - for unknown reason, shipped icon don't work for me. I tried to debug it for a while, but nothing seemed to be wrong, and it's not big deal, so i left it as it.

Of course i followed guide from page 1, installed fAircrack 0.41 (that was few weeks ago). Then, yesterday installed 0.42 - icon still don't show.

As for .cap name issue, I confirm it. It worked before update to 0.42, now ssid isn't included.


All times are GMT. The time now is 21:53.

vBulletin® Version 3.8.8