add support for Npcap on Windows

[hsluoyz]

Hi.

Thanks for creating the amazing aircrack-ng first!

I'm the author of Npcap, a fork of WinPcap but supports 802.11 packets capturing (e.g. using Wireshark). It's like Airpcap, but it doesn't need a USB hardware, Npcap just uses the stock wireless adapter to do its work. And more importantly it's free and open-source.

I noticed that aircrack-ng supports Airpcap. So is there any possibility to support Npcap as well? Some info about 802.11 capturing is here: https://github.com/nmap/npcap/releases/tag/v0.06-r15

[dernyn]

Hi, hsluoyz

I think this Idea is a great one, but what you are after is done in a different way, let me explain.

The windows version of Aircrack-ng seems to rely on a windows kernel mode driver which replaces the original wireless card driver with that of CACE airPcap driver which allows the card to be placed on monitor mode. You can simply create a version of this type of driver to control the card into that mode. https://support.riverbed.com/content/support/software/steelcentral-npm/airpcap.html

No, disrespect but, Your NDIS 6 driver may not work in the way you want it to function, a new kernel driver may have to be created.

You can extract the packaged executable from CACE latest version 4.1.3.3348 and examine the goods particularly the airpcap.sys and it's INF, airpcap.inf

[hsluoyz]

Hi @dernyn ,

I know the current implementation of Npcap Wi-Fi may have difference with CASE. But it is really a who can become the standard issue. Once Riverbed (which acquired CASE) wants to integrate the AirPcap code into Npcap. However, things don't go that way for now.

Currently Aircrack-ng only supports AirPcap, I don't know if it's too hard to support Npcap at the same time. Or should Npcap and AirPcap unify the API first.

I know we can reverse-engineer the AirPcap driver but I'm sure if it's legal to do this. As it will be used on an open-source software, this kind of problems need to be especially noticed.

[binarymaster]

osdep directory in the source tree contains the API functions used to control the wireless interface, each file with different implementation for each operating system.

I see two possible ways adding Npcap support:

1. Modify cygwin.c with some IFDEF's.
2. Write npcap.c from scratch with needed APIs, then add some IFDEFs to osdep.h.

[quantumcore]

If I'm not mistaken, Airpcap is only supported for 64bit Windows not 32bit. I already have npcap installed on my 32bit Machine and It works.

Npcap support needs to be Added to Windows. I support this idea.

[TimeTravelersHackedMe]

Hey, is anyone actively working on this feature? If so, is there any road map for it?

[aircrack-ng]

Not yet, some other changes are underway.