RE: Wireless wep crackin on windows

From: Chuck Herrin (me@chuckherrin.com)
Date: Thu May 20 2004 - 16:55:40 EDT


 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi All,

AFAIK, there are no tools to crack WEP in Windows. (Somebody correct
me if I'm wrong!) Knoppix is a good portable place to start - also
look into PHLAK (www.phlak.org), the Professional Hacker's Linux
Assault Kit. Sweet.

Also, keep in mind that if you only have a few days to do this, it
may not be feasible to crack the WEP in Linux either, depending on
the amount of traffic coming across the ether. You can do some
things to create traffic, but if they're running an AP in a
conference room that doesn't get used very often (once a week, etc.),
you may have a hard time building enough of a key table to crack it
even if you had a *nix box.

Just my $0.02,

Chuck Herrin, CISSP, MCSE, CEH, blah, blah
www.chuckherrin.com

- -----Original Message-----
From: Jerry Shenk [mailto:jshenk@decommunications.com]
Sent: Thursday, May 20, 2004 4:32 PM
To: securityfocus@arkam.it; pen-test@securityfocus.com
Subject: RE: Wireless wep crackin on windows

The latest Knoppix-STD has a bunch of wireless stuff on it. I
haven't used it but that might be a good way to go if you're wanting
to get some experience. There's a lot more stuff for Linux that
Windows 'cuz it seems the developers have a better time addressing
the hardware with Linux.

If you can see the network with NetStumbler, then using something
like Kismet isn't gonna help you "find" it. Kismet would however
give you the ability to see the traffic. You can tell from that if
it's encrypted or not. You can also collect MAC addresses to get an
idea for how many machines are on the network and possibly even the
makeup of the hardware by looking up the MAC addresses. You can also
get a good idea for how much traffic there is on the WLAN.

Once you've collected some traffic you might find some interesting
info if you run strings against the raw dump files. You'll need to
use grep to cut out a bunch of repeating data like SSIDs, etc. Use
something like 'strings filename.dump | grep -v SSID | less'.

I believe Airsnort is on that knew knoppix-std CD also.

- -----Original Message-----
From: securityfocus@arkam.it [mailto:securityfocus@arkam.it]
Sent: Thursday, May 20, 2004 3:58 PM
To: pen-test@securityfocus.com
Subject: Wireless wep crackin on windows

Hi all,

one of my clients want to see how secure is his wireless network, so
had asked me to try to enter his wlan. I've never done wireless
pentesting before, so I'm here to ask ^_______^

I'm basically using a windows machine, and i've already used
netstumbler with my centrino wireless card to enumerate wlan
networks, and with a gps receiver I can locate them on a map. I know
there are many tools on linux for wep cracking, just like airsnort
and others, but since I have little experience with linux OS, and
I've to do this work in a few days, I'm searching for a wep cracker
that can run on windows xp. Is there any one? Google did not help me
^_______^

Thanks in advance,

- --

Luca Dell'Oca
CISSP Certified
OPSA certified Analyst
BS7799 Lead Auditor
Arkam snc
Via al Lago 68
21026 Gavirate (VA)

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>

iQA/AwUBQK0bS6bL2AcPBTOlEQINQwCfTAZ2+Z+WS7OBYEjkhNmVvie3Tm4Anjzh
stJCtWPBJ2fqz3bQpAwIqA50
=TBuq
-----END PGP SIGNATURE-----



This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:54 EDT