Hi all,
I've recently bought an N900 (again ), because I got interested in security related stuff, and a mobile pen testing platform: how cool is that!
Anyway, I've been messing around with the device the last few days, and I've decided that I wanted to keep all my fiddling around in an Easy Debian image, so when I mess something up, I don't have to reflash my whole device every time again. Also, some stuff is just easier to install into easy debian than maemo, because of dependencies/repo's etc.
So I've installed the bleeding edge wifi drivers, and I installed aircrack-ng and some other tools in easy debian. I load the bleeding edge drivers and put the card into monitor mode in maemo, and start aircrack-ng in the debian terminal.
Injection works etc, but when airodumping my home network, I don't get a handshake. I tried manually disconnecting my notebook, and sending deauth packets, but I still don't get a handshake.
When analyzing the file in wireshark, there are also no handshake packets(using the filter eapol.keydes.type == 254).
HOWEVER, if I use aircrack-ng in maemo(decided to install it, because it worked there before), it does work, and I get a handshake as soon as my notebook connects.
Chroot =/= emulating, afaik?
The weird thing is that I can inject from easy debian lol.
And with backtrack, you mean neopwn? I guess I'll have to try it out then. I've read something about the leak being backdoored or something like that. What's a safe version?
Well, I wanted to try out the "Wifite" script, which required aircrack-ng 1.1 or later (and some other tools). I tried it with the standard aircrack from the repo, but somehow it didn't manage to actually get any handshakes/crack wep, where there was no problem when doing it manually.
I tried upgrading to 1.1, but that proved to be harder than I thought it would be (how hard can it be to install a program, lol). After apt-getting it from a debian repo, something else broke, and I figured that it might be easier to install all this stuff in debian.
Also, installing everything in Debian meant I could easily start over when something was wrong, by just copying the most recent, working modified image again, instead of reflashing and/or using some backup program for the phone. And I figured that it would keep the phone more clean, although I'm not sure if that really matters (as much) as it does in Windows.
The install proved to be a lot easier/straight forward, but now ofcourse it doesn't capture any handshakes, not even manually
), because I got interested in security related stuff, and a mobile pen testing platform: how cool is that!
