Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email email@example.com
RE: troubles with wireless pentest
From: Jerry Shenk (jshenkdecommunications.com)
Date: Thu Jun 24 2004 - 12:06:43 CDT
One 'gotcha' might be the slot that the key is in. This seems to be
more of an issue with Cisco gear but some others also. Try putting the
WEP key in all 4 key slots and trying each one as the active key.
From: zcrips xrabbitz [mailto:zcrips_xrabbitzhotmail.com]
Sent: Wednesday, June 23, 2004 4:57 AM
Subject: troubles with wireless pentest
i have been taking on my first large and blind wireless pentest
have nearly become lost in the jaws of a wireless network and would
appreciate any help. first i'lll state what i have so far done and seen
the network was encrypted but with wep and large traffic so i was able
bruteforce the key
The network in focus is quite large with multiple subnets and lots of
These I did.
Using kismet I sniffed a whole lot of packets. And decoded them with the
found wep key
Then using my conventional ettercap and ethereal I looked through the
i sniffed a lot more with ettereal and looked through them for a similar
address but all packets
had i local (destination) ip and mac address
Now The Problem.
I tried to connect to the net work
I used a nice ip to match one on the network
(8.5) i changed mac addresses to match the host i was spoofing.
then i tried to route packets to another client
which failed with the network unreachable error
i tried a traceroute to my target client but it failed too with the same
i used ettercap to passively watch traffic and came up with a
list of ip/mac addresses and tried to spoof most of them but still my
packets didn't get routed
i tried using etterape to watch traffic flow and come up with a route
figure out that nearly all traffic was internal most hosts were
to each other
HOW CAN I ROUTE PACKETS THROUGH TO OTHER CLIENTS OR BECOME A CLIENT
OR IS THERE A BETTER WAY I COULD DO THIS WHOLE PENTEST FROM THE BEGINING
PLS ANY HELP WOULD BE APPRECIATED.
MSN 8 with e-mail virus protection service: 2 months FREE*