![Page 1: Changing several characteristics of the wireless card · Changing several characteristics of the wireless ... To see the characteristics of the wireless extensions of the ... it captures](https://reader031.vdocument.in/reader031/viewer/2022022600/5b44c1537f8b9a80228b463d/html5/thumbnails/1.jpg)
Changing several characteristics of the wireless card Basic tools Toretrievealistofinterfaces(eventheinactiveones)ifconfig–a
Typically,wirelessinterfacesarerepresentedaswlanXXIfthewirelessinterfaceisontheDOWNstate(disabled),thenweshouldenableitbeforedoinganythingmeaningfulwithitifconfig<interface>upToseethecharacteristicsofthewirelessextensionsoftheinterfacesonoursystemiwconfig
![Page 2: Changing several characteristics of the wireless card · Changing several characteristics of the wireless ... To see the characteristics of the wireless extensions of the ... it captures](https://reader031.vdocument.in/reader031/viewer/2022022600/5b44c1537f8b9a80228b463d/html5/thumbnails/2.jpg)
Inthecaseofourexampletheonlywirelessinterfaceisthewlan1Changing the channel Tochangethechannelofthecardiwconfig<interface>channel<channelnumber>Afterdoingso,ifyouruntheiwconfigcommandagainyouwillnoticethatthecardissetto2.412GHzwhichcorrespondstothefrequencyofthefirstchannel.
![Page 3: Changing several characteristics of the wireless card · Changing several characteristics of the wireless ... To see the characteristics of the wireless extensions of the ... it captures](https://reader031.vdocument.in/reader031/viewer/2022022600/5b44c1537f8b9a80228b463d/html5/thumbnails/3.jpg)
Changing the transmission power Theregionofthedeviceisanimportantsettingwhichindirectlydictatesthestrengthofthesignalinwhichthecardtransmits.Differentcountrieshavedifferentlegislationsregardingthemaximumstrengthofthesignalofawirelesscard.Forpentestingpurposesitistothebestbenefittohaveacardsettothemaximumsupportingpower.Togetthecurrentregioniwregget
![Page 4: Changing several characteristics of the wireless card · Changing several characteristics of the wireless ... To see the characteristics of the wireless extensions of the ... it captures](https://reader031.vdocument.in/reader031/viewer/2022022600/5b44c1537f8b9a80228b463d/html5/thumbnails/4.jpg)
Tochangetheregionthus,thetransmissionpowerofthecardifconfig<interface>downiwregset<regioncode>ifconfig<interface>upiwregget
![Page 5: Changing several characteristics of the wireless card · Changing several characteristics of the wireless ... To see the characteristics of the wireless extensions of the ... it captures](https://reader031.vdocument.in/reader031/viewer/2022022600/5b44c1537f8b9a80228b463d/html5/thumbnails/5.jpg)
Acomprehensivelistofregioncodescanberetrievedhere:https://en.wikipedia.org/wiki/ISO_3166-1_alpha-2 Changing the operation mode Typically,wirelesscardsaresettomanagedmode,sotheycanfunctionasclientstoinfrastructurebasednetworks.Monitormodeallowscardstoreadalltrafficincludingpacketsthatoriginatefromnon-associatednetworks.Tosetthecardinmonitormodeonecanrelyonthetoolairmon-ngoftheaircracksuiteairmon-ngstart<interface>Changing the mac address ItispossibletochangetheMACaddressoftheNICcardIfconfig<interface>downmacchanger–m<newmacaddress><interface>Ifconfig<interface>up
Analyzing Traffic Whenawirelesscardissetinmonitormodeitcapturesallpacketsfromtheairinterface.Itispossiblewiththerighttoolstoview,analyzeandstorethesepackets.The airodump-ng tool ToviewalistofalltheAPsintheareaandtheSTAsconnectedtoeachoneairodump-ng<interfaceinmonitormode>
![Page 6: Changing several characteristics of the wireless card · Changing several characteristics of the wireless ... To see the characteristics of the wireless extensions of the ... it captures](https://reader031.vdocument.in/reader031/viewer/2022022600/5b44c1537f8b9a80228b463d/html5/thumbnails/6.jpg)
Note:bydefault,airodump-ngforcesthecardtohopamongchannels.Keepinmindthattoachievethis,thecardspendsonlyaportionoftimeoneachchannel.However,whenlisteningtoachannelallpacketstransmittedtotherestofthechannelswillevadethemonitoring.Torestrainthemonitoringtoaspecificchannelairodump-ng<interfaceinmonitormode>-c<numberofdesiredchannel>ThisisusuallydonewhentheattackerhaslocatedthevictimAPorSTAandwishestocaptureasmanypacketsaspossibleforfurtheranalysis.Airodumphasthecapabilityofsavingallpacketsonthedisk.airodump-ng<interfaceinmonitormode>-c<numberofdesiredchannel>-w<nameoffile>Notethatairodump-ngsavespacketsonlyrelevanttoWEPkeycrackingorpentesting.Therefore,thecreatedfilewillnotcontainallthepacketsinthechannel.Formoreinformationonthecapabilitiesofairodump-ngtoolvisit:http://www.aircrack-ng.org/doku.php?id=airodump-ngThe Wireshark tool
![Page 7: Changing several characteristics of the wireless card · Changing several characteristics of the wireless ... To see the characteristics of the wireless extensions of the ... it captures](https://reader031.vdocument.in/reader031/viewer/2022022600/5b44c1537f8b9a80228b463d/html5/thumbnails/7.jpg)
ItispossibletoassociateWireshark’soutputwithawirelessnetworkinterfacethus,gaininginsighttothepacketsofthelivecapture.Moreover,onecanapplydifferentkindsoffiltersregardingvariousfieldsofthepackets(e.g.theirtypeandsubtype).Thiscanbedonebyinsertingthemnemonicandthedesiredvalueinthefilterinputfield.Alternatively,filteringcanbeachievedbylocatingapacketwithadesiredattributeandsettingitasanexamplefilter.Moreover,itispossibletocombinemultiplefiltersbyapplyingthestandardCoperators(e.g.,==,!=,>,<=,!,&&,||etc.).Someofthemostimportantfiltersforwirelesscapturecanberetrievedfromhere:https://www.wireshark.org/docs/dfref/w/wlan.htmlhttps://www.wireshark.org/docs/dfref/w/wlan_mgt.htmlThesubtypecodesof802.11framescanberetrievedhere:https://supportforums.cisco.com/document/52391/80211-frames-starter-guide-learn-wireless-sniffer-tracesThetrafficcapturedwithWiresharkcanbesavedasabinaryfile(pcap)oranotherfiletypeincludingtextualformats(e.g.,CSV).Thisisusefulforprocessingwithconventionaltoolsandmethods.TodothatinWiresharkonesimplycanchooseFile->ExportPacketDissections->as“CSV”.
![Page 8: Changing several characteristics of the wireless card · Changing several characteristics of the wireless ... To see the characteristics of the wireless extensions of the ... it captures](https://reader031.vdocument.in/reader031/viewer/2022022600/5b44c1537f8b9a80228b463d/html5/thumbnails/8.jpg)
Availability Attacks Itispossibletoreducetheavailabilityofawirelessnetworkorcausedenial-of-service(DoS)againstspecificclientsbyforgingandtransmittingspecificmanagement(inmostcases)frames.Thissteamsfromthefactthatin802.11networksmanagementframesaretransmittedunencrypted.Deauthentication attack Thisattackisbasedonthetransmissionofdeauthenticationframes.ItisconsideredtheeasiestandmosteffectivewayofcreatingaDoSattackagainstallorspecificclientsofthenetwork.Theaircracksuitehastoolsthatautomatethisprocess.TounleashadeauthenticationattackagainstallclientsconnectedtoaspecificAP,firstonehastoknowtheMACaddressofthevictimAP.Thiscanbeeasilydoneviaairodump-ngorwireshark.Then,byusingthe-0(or--deauth)optionoftheaireplay-ngtoolonecancauseafloodofdeauthenticationframestobetransmitted.aireplay-ng--ignore-negative-one-0<packetstobesent>-a<APMACAddress><interfaceinmonitormode>
Noticethatyoucaninsert0insteadofapredefinednumberofpacketsandtheprocesswillcarryonindefinitely.Anothertoolthatcanunleashadeautheticationattackismdk3.Actually,thespecifictoolfollowsadeadliermethodology(butatthesametimemoreobvioustointrusiondetectionsystems)forthisattack.Toexecuteadeauthenticationattackwithmdk3
![Page 9: Changing several characteristics of the wireless card · Changing several characteristics of the wireless ... To see the characteristics of the wireless extensions of the ... it captures](https://reader031.vdocument.in/reader031/viewer/2022022600/5b44c1537f8b9a80228b463d/html5/thumbnails/9.jpg)
mdk3<interface>d