August 21, 2017, 10:54:44 AM
Welcome, Guest. Please login or register.

telnet towel.blinkenlights.nl

Author Topic: How to get fast handshake.  (Read 1946 times)

Offline D4rk-50ld13r

  • Top Hat Member
  • Elite
  • ********
  • Posts: 877
  • Internets: +189/-0
  • I will hack for beer.
    • http://www.ghostsec.org/
How to get fast handshake.
« on: January 17, 2016, 05:00:42 PM »
Hi
These days i am dedicated to wifi hacking and i keep discovering new interesting things that i will share with you.

Preface :

Witch one is the best wifi card for aircrack-ng suite ?

I have tested :

DLINK DWL-G122 (RALINK RT2573)
ALFA AWUS036H (REALTEK RTL8187)
ALFA AWUS036NHR (REALTEK RTL8192)
TP-LINK TL-WN722N (ATHEROS AR9172)


This article will show the difference between the cards in term of flexibility and injection rate :




The winner

The winner of my tests is very clear: TP-LINK TK-WN722N




The trick :

In order to achieve the perfect injection rate and instant handshake capture,
we need to enter this code when enabling monitor mode on our card :

iw dev wlan1 set monitor fcsfail

Demo :




Enjoy :)

If you sat a monkey down in front of a keyboard, the first thing typed would be
a unix command.

Offline doctane

  • Top Hat Member
  • Experienced
  • ********
  • Posts: 154
  • Internets: +14/-0
  • Never should of trusted hollywood!
    • Public key
Re: How to get fast handshake.
« Reply #1 on: January 17, 2016, 09:28:35 PM »
cool write up! Makes me want to start back doing wireless testing!
---
Don't blink, don't move. You feel that, as your worries fade away? You hear that? That's the Sound of Madness, calling for you!

Offline Gingerbread Man

  • *High Tech Low-life*
  • Administrator
  • Elite
  • *****
  • Posts: 932
  • Internets: +93/-0
Re: How to get fast handshake.
« Reply #2 on: January 18, 2016, 02:21:39 PM »
I couldn't agree more...

The TP-LINK TL-WN722N is a GREAT little dongle with both great injection performance and the ability to use external antennas...

Offline D4rk-50ld13r

  • Top Hat Member
  • Elite
  • ********
  • Posts: 877
  • Internets: +189/-0
  • I will hack for beer.
    • http://www.ghostsec.org/
Re: How to get fast handshake.
« Reply #3 on: January 19, 2016, 03:49:07 PM »
I have just discovered that TP-LINK TL-WN722N proper driver is not installed in Kali-linux !
Although the Wifi card performing great using the Kali built in ath9k firmware !
The proper driver is : ath9k_thc  and needs to be installed in Kali.
Once its done , the performance goes to a higher level.
Further reading :  http://yo3iiu.ro/blog/?p=1301
The tx-power can be upgraded to 30dbm but not necessary , the card excel also on 20dbm.
If you sat a monkey down in front of a keyboard, the first thing typed would be
a unix command.

Offline darkc0d3

  • YOU CANNOT KILL AN IDEA
  • Top Hat Member
  • Elite
  • ********
  • Posts: 660
  • Internets: +35/-0
Re: How to get fast handshake.
« Reply #4 on: January 19, 2016, 04:41:56 PM »
Hi buddy very interesting, TP-LINK TL-WN722N have very good performance in did with kali atheros drivers. for ath9k_thc i have find this link here, https://wiki.debian.org/ath9k_htc#Installation  ...this the driver right; :) i have kali 2.0 amd64 and i try in lmde2 later.
''When you have the knowledge you are a king, share the knowledge and you are God''
darkc0d3

Offline D4rk-50ld13r

  • Top Hat Member
  • Elite
  • ********
  • Posts: 877
  • Internets: +189/-0
  • I will hack for beer.
    • http://www.ghostsec.org/
Re: How to get fast handshake.
« Reply #5 on: January 19, 2016, 05:05:17 PM »
Hi buddy very interesting, TP-LINK TL-WN722N have very good performance in did with kali atheros drivers. for ath9k_thc i have find this link here, https://wiki.debian.org/ath9k_htc#Installation  ...this the driver right; :) i have kali 2.0 amd64 and i try in lmde2 later.

Hi

The proper driver is not supplied by Debian .

Here is how you do it in Kali  " This will work on Kernel 4.0.0 only "


cd /usr/src/
wget https://www.kernel.org/pub/linux/kernel/projects/backports/stable/v4.0.1/backports-4.0.1-1.tar.gz
tar xvf backports-4.0.1-1.tar.gz
cd backports-4.0.1-1
wget http://patches.aircrack-ng.org/mac80211.compat08082009.wl_frag+ack_v1.patch
patch -p1 < mac80211.compat08082009.wl_frag+ack_v1.patch
wget -Ocompatdrivers_chan_qos_frag.patch http://www.pastie.org/pastes/8846771/download
patch -p1  < compatdrivers_chan_qos_frag.patch
make defconfig-ath9k
make
make install
reboot


*** to change the tx-power , you need to follow the instructions in the article above and the drivers folder is
     located in :  /usr/src/backports-4.0.1-1/drivers/net/wireless/ath/ath9k

Good luck
« Last Edit: January 19, 2016, 05:10:17 PM by D4rk-50ld13r »
If you sat a monkey down in front of a keyboard, the first thing typed would be
a unix command.

Offline darkc0d3

  • YOU CANNOT KILL AN IDEA
  • Top Hat Member
  • Elite
  • ********
  • Posts: 660
  • Internets: +35/-0
Re: How to get fast handshake.
« Reply #6 on: January 19, 2016, 05:42:49 PM »
Thanks dark very nice,  i try it right now :)
''When you have the knowledge you are a king, share the knowledge and you are God''
darkc0d3

Offline D4rk-50ld13r

  • Top Hat Member
  • Elite
  • ********
  • Posts: 877
  • Internets: +189/-0
  • I will hack for beer.
    • http://www.ghostsec.org/
Re: How to get fast handshake.
« Reply #7 on: January 22, 2016, 07:28:16 AM »
Hi

This is an update to the initial post :

With the new 4.3.0-kali-1 kernel , aircrack-ng is behaving strangely .
The code mentioned above for putting the wifi interface on monitor  : " iw dev wlan1 set monitor fcsfail "
Does not work correctly, therefore you need to put the interface down before issuing the command :



Then you can run airodump-ng



Error " negative channel-1 " is gone and packets injection is working 100%



That's it for now :)
If you sat a monkey down in front of a keyboard, the first thing typed would be
a unix command.

Offline ocb

  • Prospect
  • *
  • Posts: 4
  • Internets: +0/-0
Re: How to get fast handshake.
« Reply #8 on: April 26, 2016, 12:23:31 PM »
Quote
Hi

The proper driver is not supplied by Debian .

Here is how you do it in Kali  " This will work on Kernel 4.0.0 only "


cd /usr/src/
wget https://www.kernel.org/pub/linux/kernel/projects/backports/stable/v4.0.1/backports-4.0.1-1.tar.gz
tar xvf backports-4.0.1-1.tar.gz
cd backports-4.0.1-1
wget http://patches.aircrack-ng.org/mac80211.compat08082009.wl_frag+ack_v1.patch
patch -p1 < mac80211.compat08082009.wl_frag+ack_v1.patch
wget -Ocompatdrivers_chan_qos_frag.patch http://www.pastie.org/pastes/8846771/download
patch -p1  < compatdrivers_chan_qos_frag.patch
make defconfig-ath9k
make
make install
reboot

Is there any way to do that with current kali linux ? It has a differnet kernel, thats why i asked.