Networking Forums
Home Register Members Search Links
Member Login:

Networking Forums > Wireless Networking > Wireless Internet > Can't find any weak packets with Kismet

Reply
Thread Tools Display Modes

Can't find any weak packets with Kismet

 
 
James
Guest
Posts: n/a

 
      02-09-2004, 04:10 PM
I'm trying a Proof-of-Concept crack of my own home wireless network.
The plan is to use Kismet to capture cryptographically weak packets.
As it is a small network, my only goal right now is to capture AT
LEAST ONE "weak" packet. Once I've captured at least one of these, my
concept is proven.

To simulate a busier network than I've actually got (one WAP and two
clients), I am running a script on one of the WEP clients that sends
an anglish language dictionary file in cleartext from one machine to
another in an endless loop. This appears to saturate the network just
fine. I am running Kismet on the other WEP client.

Kismet detects the network just fine. The SSID shows up and it
displays as a WEP network. However, after running the above-described
script for 8 hours, I don't see what I expected to see. When I look at
my network in detail, I see:

Packets:
Data: 58
LLC: 38578
Weak: 0

I haven't been able to figure out the difference between "Data" and
"LLC" packets yet, but I expected to see a non-zero value in the
"Weak" slot.

Can anyone out there please explain why I haven't got any weak packets
yet? Here's the network details:

Using Linksys WAP11 access point with 40-bit WEP encryption enabled.
Client is a Windows XP machine using an Engenius wireless PCMCIA card.
This card uses the Prism2 chipset.
Sniffer is running Kismet with linux-wlan-ng drivers and a Hawking
Technologies PCMCIA card (Prism2).
The WAP11 is hard-wired to a linux server.
Network traffic consists of an infinite loop running on the windows xp
machine that uses netcat to transfer an ASCII file to the linux server
and repeat ad infinitum.

Anyone that can explain why I'm not seeing the weak packets, please
do.
Anyone that can tell me how I can manipulate this traffic in order to
detect some weak packets, please do also.

Thx.

-JamesP
:wq
 
Reply With Quote
 
 
 
 
gary
Guest
Posts: n/a

 
      02-09-2004, 10:43 PM
There aren't necessarily any weak packets. The weak IVs can be avoided
altogether without violating the 802.11 standard in any way. I think Orinoco
does this, and I wouldn't be surprised if other chips with the right
firmware or driver upgrades do it.

That doesn't mean WEP becomes uncrackable, it just means it will take
significantly more data (and time) to do it.

"James" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed) om...
> I'm trying a Proof-of-Concept crack of my own home wireless network.
> The plan is to use Kismet to capture cryptographically weak packets.
> As it is a small network, my only goal right now is to capture AT
> LEAST ONE "weak" packet. Once I've captured at least one of these, my
> concept is proven.
>
> To simulate a busier network than I've actually got (one WAP and two
> clients), I am running a script on one of the WEP clients that sends
> an anglish language dictionary file in cleartext from one machine to
> another in an endless loop. This appears to saturate the network just
> fine. I am running Kismet on the other WEP client.
>
> Kismet detects the network just fine. The SSID shows up and it
> displays as a WEP network. However, after running the above-described
> script for 8 hours, I don't see what I expected to see. When I look at
> my network in detail, I see:
>
> Packets:
> Data: 58
> LLC: 38578
> Weak: 0
>
> I haven't been able to figure out the difference between "Data" and
> "LLC" packets yet, but I expected to see a non-zero value in the
> "Weak" slot.
>
> Can anyone out there please explain why I haven't got any weak packets
> yet? Here's the network details:
>
> Using Linksys WAP11 access point with 40-bit WEP encryption enabled.
> Client is a Windows XP machine using an Engenius wireless PCMCIA card.
> This card uses the Prism2 chipset.
> Sniffer is running Kismet with linux-wlan-ng drivers and a Hawking
> Technologies PCMCIA card (Prism2).
> The WAP11 is hard-wired to a linux server.
> Network traffic consists of an infinite loop running on the windows xp
> machine that uses netcat to transfer an ASCII file to the linux server
> and repeat ad infinitum.
>
> Anyone that can explain why I'm not seeing the weak packets, please
> do.
> Anyone that can tell me how I can manipulate this traffic in order to
> detect some weak packets, please do also.
>
> Thx.
>
> -JamesP
> :wq
 
Reply With Quote
Reply

« TTLS - AVPs | WAP54G Bridge & WPC54G »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
kismet to kml miso@sushi.com Wireless Internet 0 06-13-2011 04:09 AM
how to modify the contents of a TCP/IP packet before it is delivered? Can this be done with ip helper api, can it be done with sockets? I can't seem to find any documentation on how to modify packets before they are delivered. dr Windows Networking 0 07-18-2007 04:36 AM
What is a "kismet drone" and why can't Kismet work on Windows with my wireless card? George D. Wireless Internet 7 07-16-2007 06:03 PM
Newbie wants to look at other people's packets (promiscuous mode fails to capture packets) George D. Wireless Internet 1 07-14-2007 07:09 AM
problem with D-link DWL 650, Debian and Kismet doesn't find any networks Oliver Herms Linux Networking 0 07-07-2004 09:28 PM


Forum Software Powered by vBulletin®, Copyright Jelsoft Enterprises Ltd.
SEO by vBSEO 3.3.2 ©2009, Crawlability, Inc.
Contact Us - Archive - Privacy Statement - Top

1 2 3 4 5 6 7 8 9 10 11