User Tools

Site Tools


interactive_packet_replay

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
interactive_packet_replay [2008/12/02 21:21]
darkaudax Fixed typos.
interactive_packet_replay [2010/11/21 09:05] (current)
sleek typos
Line 1: Line 1:
 ====== Interactive packet replay ====== ====== Interactive packet replay ======
- 
- 
 ===== Description ===== ===== Description =====
  
 This attack allows you to choose a specific packet for replaying (injecting). ​ The attack can obtain packets to replay from two sources. ​ The first being a live flow of packets from your wireless card.  The second being from a pcap file.  Standard Pcap format (Packet CAPture, associated with the libpcap library http://​www.tcpdump.org),​ is recognized by most commercial and open-source traffic capture and analysis tools. ​ Reading from a file is an often overlooked feature of aireplay-ng. ​ This allows you read packets from other capture sessions or quite often, various attacks generate pcap files for easy reuse. ​ A common use of reading ​ a file containing a packet your created with [[packetforge-ng]]. This attack allows you to choose a specific packet for replaying (injecting). ​ The attack can obtain packets to replay from two sources. ​ The first being a live flow of packets from your wireless card.  The second being from a pcap file.  Standard Pcap format (Packet CAPture, associated with the libpcap library http://​www.tcpdump.org),​ is recognized by most commercial and open-source traffic capture and analysis tools. ​ Reading from a file is an often overlooked feature of aireplay-ng. ​ This allows you read packets from other capture sessions or quite often, various attacks generate pcap files for easy reuse. ​ A common use of reading ​ a file containing a packet your created with [[packetforge-ng]].
  
-In order to use the interactive packet replay successfully,​ it it important to understand a bit more about the wireless packet flow.  You cannot simply capture and replay any packet. ​ Only certain packets can be replayed successfully. ​ Successfully means that it is accepted by the access point and causes a new inititialization vectory ​(IV) to be generated since that is the whole objective.+In order to use the interactive packet replay successfully,​ it it important to understand a bit more about the wireless packet flow.  You cannot simply capture and replay any packet. ​ Only certain packets can be replayed successfully. ​ Successfully means that it is accepted by the access point and causes a new initialization vector ​(IV) to be generated since that is the whole objective.
  
 To do this, we either have to select a packet which naturally will be successful or manipulate a captured packet into a natural one.  We will now explore these two concepts in more detail. To do this, we either have to select a packet which naturally will be successful or manipulate a captured packet into a natural one.  We will now explore these two concepts in more detail.
Line 49: Line 47:
 ==== Natural Packet Replay ==== ==== Natural Packet Replay ====
  
-For this example, you do not need do a fake authenticaion ​first, since the source MAC address is already associated with the access point. ​ The source MAC address is from the existing wireless client.+For this example, you do not need do a fake authentication ​first, since the source MAC address is already associated with the access point. ​ The source MAC address is from the existing wireless client.
  
 Putting it all together: Putting it all together:
Line 291: Line 289:
 Check the [[i_am_injecting_but_the_ivs_don_t_increase|I am injecting but the ivs don't increase tutorial]]. Check the [[i_am_injecting_but_the_ivs_don_t_increase|I am injecting but the ivs don't increase tutorial]].
  
-One situation that may affect interactive replay: Exception of wireless client separation option - http://​tinyshell.be/​aircrackng/​forum/​index.php?​topic=194+One situation that may affect interactive replay: Exception of wireless client separation option - http://​forum.aircrack-ng.org/​index.php?​topic=194
  
 Also see the general aireplay-ng troubleshooting ideas: [[aireplay-ng#​usage_troubleshooting|aireplay-ng usage troubleshooting]]. Also see the general aireplay-ng troubleshooting ideas: [[aireplay-ng#​usage_troubleshooting|aireplay-ng usage troubleshooting]].
  
interactive_packet_replay.1228249280.txt.gz ยท Last modified: 2008/12/02 21:21 (external edit)