.

Backtrack wireless pentest

<<

cyber.spirit

User avatar

Sr. Member
Sr. Member

Posts: 356

Joined: Sun Feb 26, 2012 8:07 am

Location: in your heart!

Post Mon Feb 27, 2012 10:07 am

Backtrack wireless pentest

Hello again
i have a Dlink DWL 525 wireless card and backtrack 5 R1 can detect it.
and i can change my mac address with air crack Tools too
But I cant find any wireless access pionts around me is any body here who can help me
Thanks
ICS Academy Network Security Certified
<<

MaXe

User avatar

Hero Member
Hero Member

Posts: 671

Joined: Tue Aug 17, 2010 9:49 am

Post Mon Feb 27, 2012 11:08 am

Re: Backtrack wireless pentest

Do you know for a fact, that there actually are wireless access points near you?  ;D If your card e.g., doesn't work on BackTrack, but works on Windows, you start googling and find out you can try the ndiswrapper or other custom solutions.

Also, make sure your card is in the right mode, if you're using e.g., the gnome gui to look for wireless access points.
I'm an InterN0T'er
<<

cyber.spirit

User avatar

Sr. Member
Sr. Member

Posts: 356

Joined: Sun Feb 26, 2012 8:07 am

Location: in your heart!

Post Mon Feb 27, 2012 11:20 am

Re: Backtrack wireless pentest

yes i have my own wireless access point with WEP
when i boot with back track i enter the startx command
and gui mode i search for MY AP but i see not thing
and about ndiswrapper please explain more
ICS Academy Network Security Certified
<<

hayabusa

User avatar

Hero Member
Hero Member

Posts: 1662

Joined: Mon Jan 29, 2007 2:59 pm

Post Mon Feb 27, 2012 11:29 am

Re: Backtrack wireless pentest

ndiswrapper is sometimed a necessary solution, if your wireless adapter does not have a Linux driver.  ndiswrapper allows you to use a Windows driver, under Linux.

You said you can change the MAC, so I'd assume your driver is at least loading and usable.  

If you fire up kismet, does it detect any networks?

What other wireless tools have you tried?

Can you authenticate and use wireless at all with your card (NOT trying to crack, just trying to get on the network with it - from BackTrack)?
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'


OSCE, OSCP , GPEN, C|EH
<<

cyber.spirit

User avatar

Sr. Member
Sr. Member

Posts: 356

Joined: Sun Feb 26, 2012 8:07 am

Location: in your heart!

Post Mon Feb 27, 2012 11:44 am

Re: Backtrack wireless pentest

Backtrack 5 has Kismet by defualt/
and my problem is, i cant see any AP before i start any cracking proccess in normal GUI mode

can you give me a good reference about ndiswrapper please

and i can install the windows driver on backtrack with wine. is it
helpful

thank you  hayabusa
ICS Academy Network Security Certified
<<

hayabusa

User avatar

Hero Member
Hero Member

Posts: 1662

Joined: Mon Jan 29, 2007 2:59 pm

Post Mon Feb 27, 2012 1:41 pm

Re: Backtrack wireless pentest

Not meant to offend, so please don't take it that way, just that lmgtfy.com often lets me show someone a search, quicker, so it's a habit:

http://lmgtfy.com/?q=ndiswrapper

(See 4th link down, titled:
WifiDocs/Driver/Ndiswrapper - Community Ubuntu Documentation  )

If you can't see any AP prior to any cracking process, then your driver isn't working properly in Linux, or you haven't configured it properly. 

What does ifconfig show?
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'


OSCE, OSCP , GPEN, C|EH
<<

cyber.spirit

User avatar

Sr. Member
Sr. Member

Posts: 356

Joined: Sun Feb 26, 2012 8:07 am

Location: in your heart!

Post Mon Feb 27, 2012 1:51 pm

Re: Backtrack wireless pentest

i can see my wireless card in IWConfig

Can i Use Ubuntu + Kismet to do it?
ICS Academy Network Security Certified
<<

cyber.spirit

User avatar

Sr. Member
Sr. Member

Posts: 356

Joined: Sun Feb 26, 2012 8:07 am

Location: in your heart!

Post Tue Feb 28, 2012 9:48 am

Re: Backtrack wireless pentest

i have same problem with ubuntu i think i must install them because live cd of them.
ICS Academy Network Security Certified
<<

dynamik

Recruiters
Recruiters

Posts: 1119

Joined: Sun Nov 09, 2008 11:00 am

Location: Mile High City

Post Tue Feb 28, 2012 9:51 am

Re: Backtrack wireless pentest

What exactly are you trying to do and what are the results?

Can you paste the output of airmon-ng?
The day you stop learning is the day you start becoming obsolete.
<<

cyber.spirit

User avatar

Sr. Member
Sr. Member

Posts: 356

Joined: Sun Feb 26, 2012 8:07 am

Location: in your heart!

Post Wed Feb 29, 2012 10:24 am

Re: Backtrack wireless pentest

i want to use aircrack to break into my AP i can set these commands
successfully:

airmon-ng stop wlan0
ifconfig wlan0 down
macchanger --mac 00:11:22:33:44:55 wlan0
airmon-ng start wlan0

But when i set airodump-ng to find my AP i see not thing.'

and here is the airmon-ng report after i entered the above commnds:

airmon-ng:

Interface      Chipset        Driver

wlan0          Unknown        rt2800pci - [phy0]
mon0            Unknown        rt2800pci - [phy0]

but i can see a lot of APs include mine in windows
what is your idea? another Wireless card is needed?
ICS Academy Network Security Certified
<<

hayabusa

User avatar

Hero Member
Hero Member

Posts: 1662

Joined: Mon Jan 29, 2007 2:59 pm

Post Wed Feb 29, 2012 10:36 am

Re: Backtrack wireless pentest

Two things.

1.) never saw you "ifconfig wlan0 up" after you down'd it.  I haven't fired up my wireless pentest tools, lately, to recall if airmon-ng handles that for you, but if not, you'll need to.

2.) What does lspci show for that wireless adapter?
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'


OSCE, OSCP , GPEN, C|EH
<<

dynamik

Recruiters
Recruiters

Posts: 1119

Joined: Sun Nov 09, 2008 11:00 am

Location: Mile High City

Post Wed Feb 29, 2012 10:39 am

Re: Backtrack wireless pentest

What airodump-ng command are you using? You need to specify mon0 instead of wlan0.

You can find more information about wireless support in BT here: http://www.backtrack-linux.org/wiki/ind ... ss_Drivers

I'm not familiar with that driver off the top of my head. It may be able to capture, but not inject, etc. You're probably going to need to get another card to do everything you want to.

Also, you should consider the OffSec WiFu course; it covers all of this. Hacking Exposed: Wireless (2nd) is a great resource too.
The day you stop learning is the day you start becoming obsolete.
<<

MaXe

User avatar

Hero Member
Hero Member

Posts: 671

Joined: Tue Aug 17, 2010 9:49 am

Post Wed Feb 29, 2012 4:25 pm

Re: Backtrack wireless pentest

Chipset: Unknown
In case you can't even connect to an AP, I would give the ndiswrapper a try, to see if you can make it work without using any hacking related tools first, just to check whether; Will your drivers work (with or without ndiswrapper) on Linux? Yes or no  ;D

In this case, it looks like you may be able to capture on Linux, but packet injection, seems unlikely unless there's a custom fix, where the first step is: Find out which model, chipset, etc., you have, then google that and append: "linux fix" or similar.

If you don't have proper drivers, forget about packet injection. (Aka drivers does matter when it comes to Linux, so take it one step at a time, and when you can connect to an AP, try airodump-ng mon0 or whatever device is configured for monitoring.)

Alternatively, get one of those USB-devices that has builtin Wifi, and try that in BackTrack. You will most likely discover with the most well known of these, that at least packet capturing and association with AP's, will work right away.  :)
I'm an InterN0T'er

Return to Tutorials

Who is online

Users browsing this forum: No registered users and 0 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software