Monthly news - September 2010

Aircrack-ng now has support to export WPA handshake information to Elcomsoft Wireless Security Auditor v3 project file since svn r1781 with '-E' thanks to beini's author.

As said in previous monthly news, migration mode attack (WPA Migration Mode: WEP is back to haunt you...) has been added to aireplay-ng and a few improvement were added to aircrack-ng. More details in r1769 commit.


Forum:

• Adding accurate chipset detection to airmon-ng. More details can be found here.
• Who has the longest airodump-ng session?
• Poor man's Aircrack-ng distributor - A tool to distribute aircrack-ng, developped in Python
• minidwep-gtk, a gui of aircrack-ng in shell script, has been updated for BT4 final and BT4R1.

Other:

• A few tools for generating passphrases lists.
• Live CD
• WEAKERTHAN2, another pentetration testing linux live cd was released a few weeks ago.
• Beini, a small Live CD base on TinyCore Linux, is one year old (chinese).
• Scripts
• Wi-fEye 0.5.1 was released. His author created 2 videos: video 1 and video 2.
• Wifite, another GUI written in Python for Aircrack-ng.

Aircrack-ng 1.1

Aircrack-ng 1.1 is released ;)

A lot of bug fixes (including the buffer overflow in different tools) and improvements have been done. The most noticeable changes are the addition of airdrop-ng by TheX1le and the interaction in airodump-ng.

Here is the changelog:
- airdrop-ng: New tool by TheX1le.
- airodump-ng, aircrack-ng, airdecap-ng, airbase-ng: Fixed buffer overflow in airodump-ng due to forged eapol frame.
- aircrack-ng: Fixed multicast detection (WPA handshake detection).
- airodump-ng: Added interaction (see wiki for the commands).
- airodump-ng: Fixed client time in netxml file.
- airtun-ng: Add WDS and bridge support.
- airbase-ng: automatically set privacy bit to 1 if WPA or WPA2 is used (-Z or -z option).
- airmon-ng: Updated iw URL for v0.9.19.
- airdriver-ng: Fixed link for madwifi-ng.
- aireplay-ng: Chopchop enhancement to not stop but wait on deauth packets.
- tkiptun-ng: Fixed segfault.
- wesside-ng: Fixed compilation bug with recent version of gcc.
- cygwin: Compiling sqlite isn't necessary anymore, libsqlite3-devel package can be used.
- osdep: Strict aliasing and x86_64 fix.
- osdep: Add tap support for Darwin/OS X. Still require tuntaposx from sourceforge to work.
- All: Fixed compilation on cygwin 1.7.
- All: Fixed compilation on recent version of OSX.
- manpages: Fixed aireplay-ng manpage for attack 0: not disassociation packets, deauth packets.
- manpages: Added the keys for interaction in airodump-ng.
- patches: Added regulatory domains override patches for atheros drivers (ath5k, ath9k and ar9170).
- patches: Added 2.6.32 patch for r8187 driver (ieee80211).
- Makefiles: Fixed make uninstall.

Download: aircrack-ng-1.1.tar.gz

Monthly news

A few things happened last month:
- The google phone, Nexus One was rooted and it has a bcm4329 chipset and it looks promising.
- Airodump-ng (in svn trunk) now has interactive mode: you can control it with keys. You can find the documentation in the wiki.
- A really small (only 10MB) distribution based on MicroCore Linux, console only.
- I'm sure you saw it, Backtrack 4 was released a few weeks ago.
- OSX Compiling (Ticket 687) should be fixed now (svn trunk revision 1657).
- New version of Beini: 1.0 RC5.2
- The developement of the GUI in C# (Mono) is quite active.

Last but not least, aircrack-ng will be 4 years old by the end of february :)

Airodump-ng with native wireless driver on Windows

EDIT: This was an April Fool :)

Altought this is not a final version (a work in progress), here is a version of airodump-ng that works on windows with the native drivers of your wireless card.

Here is a screenshot of the application:

Download link: airodump-ng-win-native-drivers.zip

Nearly all drivers in windows XP are NDIS. So, to allow/enable monitor mode in the drivers, you have to install a special "driver". Because MS may not like it, I prefer to distribute is via bittorrent: native_rfmon_winxp.torrent

Note: It was tested on Windows XP and with an Intel Pro/Set Wireless 2200. And it requires .NET 2.0.
Note 2: If your wireless card isn't listed, it means the adapter is disabled and you'll have to enable it and restart the application (Right click on "My Network Place" then select "Properties". In the list, right click on your wireless adapter and click on "Enable"). In the final version, it will be fixed and will only list wireless interfaces.

Edit: Here is the video (sorry for the quality, it's not easy to record the screen with a camera).