fragmentation
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
fragmentation [2007/02/13 02:50] – darkaudax | fragmentation [2007/04/13 16:35] – raimund | ||
---|---|---|---|
Line 4: | Line 4: | ||
===== Description ===== | ===== Description ===== | ||
- | This attack, when successful, can obtain 1500 bits of PRGA (pseudo random generation algorithm). This attack does not recover the WEP key itself, but merely obtains the PRGA. The PRGA can then be used to generate packets with [[packetforge-ng]] which are in turn used for various injection attacks. | + | This attack, when successful, can obtain 1500 bytes of PRGA (pseudo random generation algorithm). This attack does not recover the WEP key itself, but merely obtains the PRGA. The PRGA can then be used to generate packets with [[packetforge-ng]] which are in turn used for various injection attacks. |
- | Basically, the program | + | Basically, the program |
- | The original paper by Andrea Bittau at http:// | + | The original paper by Andrea Bittau at http:// |
===== Usage ===== | ===== Usage ===== | ||
Line 38: | Line 38: | ||
===== Usage Example ===== | ===== Usage Example ===== | ||
- | Notes: | ||
- | *The source MAC address used in the attack must be associated with the access point. | ||
- | *For madwifi-ng drivers (Atheros chipset), you must change MAC address of your card to the MAC address you will injecting with otherwise the attack will not work. | ||
Essentially you start the attack with the following command then select the packet you want to try:\\ | Essentially you start the attack with the following command then select the packet you want to try:\\ | ||
Line 83: | Line 80: | ||
You have successfully obtained the PRGA which is stored in the file named by the program. | You have successfully obtained the PRGA which is stored in the file named by the program. | ||
+ | |||
+ | ===== Usage Tips ===== | ||
+ | |||
+ | *The source MAC address used in the attack must be associated with the access point. | ||
+ | |||
+ | *For madwifi-ng drivers (Atheros chipset), you must change MAC address of your card to the MAC address you will injecting with otherwise the attack will not work. | ||
+ | |||
+ | ===== Usage Troubleshooting ===== | ||
+ | |||
+ | Also see the general aireplay-ng troubleshooting ideas: [[aireplay-ng# | ||
+ | |||
fragmentation.txt · Last modified: 2009/09/05 23:32 by mister_x